Prosím o preventivku
Napsal: 05 pro 2019 08:00
Ahoj, prosím o preventivní kontrolu mého PC, děkuji moc 
¨
LOG RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman at 2019-12-05 08:03:37
Microsoft Windows 10 Pro
System drive C: has 26 GB (21%) free of 121 GB
Total RAM: 4094 MB (29% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:03:40, on 05.12.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe
C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
C:\Program Files\trend micro\Roman.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [HDD Regenerator] "C:\Program Files (x86)\HDD Regenerator\Shell.exe" /1
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [TeamsMachineInstaller] %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Xvid] WScript "C:\Program Files (x86)\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files (x86)\Xvid\CheckUpdate.ps1"
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Roman\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2651452621-253113433-2049451952-1006\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'postgres')
O4 - HKUS\S-1-5-21-2651452621-253113433-2049451952-1006\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'postgres')
O4 - Global Startup: Exor4 for XDMS_T.lnk = C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe
O4 - Global Startup: Twonky Server.lnk = C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: vw-wi - {0F3C833F-FB28-40EA-8CB9-6A55B996C3F6} - D:\ElsaWin\bin\wiprot.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_f7aba34 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: hddrsrv - Unknown owner - C:\Program Files (x86)\HDD Regenerator\hrsrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ELSA Administration Service (LcSvrAdm) - Volkswagen AG - D:\ElsaWin\bin\LcSvrAdm.exe
O23 - Service: ELSA Auftragsverwaltungs Service (LcSvrAuf) - Volkswagen AG - D:\ElsaWin\bin\LcSvrAuf.exe
O23 - Service: ELSA DBA Server (LcSvrDba) - Volkswagen AG - D:\ElsaWin\bin\LcSvrDba.exe
O23 - Service: ELSA Historie Server (LcSvrHis) - Volkswagen AG - D:\ElsaWin\bin\LcSvrHis.exe
O23 - Service: ELSA PASS Server (LcSvrPAS) - Volkswagen AG - D:\ElsaWin\bin\LcSvrPas.exe
O23 - Service: ELSA APOSpro Server (LcSvrSaz) - Volkswagen AG - D:\ElsaWin\bin\LcSvrSaz.exe
O23 - Service: McAfee WebAdvisor - McAfee, Inc. - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: postgresql-x64-9.2 - PostgreSQL Server 9.2 (postgresql-x64-9.2) - PostgreSQL Global Development Group - C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe
O23 - Service: RealtekWlanU - Realtek - C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RtlService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek DHCP Service (RTLDHCPService) - Realtek - C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RTLDHCP.exe
O23 - Service: RunSwUSB - Unknown owner - C:\Windows\runSW.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TwonkyServer - PacketVideo - C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16635 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k NetworkService -s TermService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s UmRdpService
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k netsvcs -s CertPropSvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s SessionEnv
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\HDD Regenerator\hrsrv.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RtlService.exe"
C:\Windows\runSW.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe" -serviceversion 0
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
dashost.exe {e5027dbe-4d5a-443d-87ed6c16f550ed55}
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files (x86)\Twonky\TwonkyServer\TwonkyServer.exe" -serviceversion 0
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Browny02\BrYNSvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s fhsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\McAfee\WebAdvisor\UIHost.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"ctfmon.exe"
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19102.525.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
AvastUI.exe /nogui
"D:\Program Files\iTunes\iTunesHelper.exe"
"C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --ran-launcher --started-from-shortcut
"C:\Program Files\Opera\65.0.3467.48\opera_crashreporter.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktop --annotation=ver=65.0.3467.48 --initial-client-data=0x304,0x308,0x30c,0x300,0x310,0x7ffd626bafe8,0x7ffd626baff8,0x7ffd626bb008
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=gpu-process --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=2548206920212369142 --mojo-platform-channel-handle=1840 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=utility --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --service-sandbox-type=network --enable-quic --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --service-request-channel-token=13228033424979277797 --mojo-platform-channel-handle=1920 /prefetch:8
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=9967517500812645825 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2692 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4716407363222818322 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3144 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17265108724048928667 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4227952735661223419 --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3560 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=utility --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --service-sandbox-type=audio --enable-quic --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --service-request-channel-token=4526929815189185983 --mojo-platform-channel-handle=4012 /prefetch:8
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=16899186332993126219 --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4648 /prefetch:1
"C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe" -f "C:\ProgramData\Roche\Exor4\Bin\XDMS_T.conf"
"C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
C:\Windows\System32\RuntimeBroker.exe -Embedding
-BootProc
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --approot=SOFTWARE\Autodesk --appAgent=/AUTODESKDESKTOPAPP/7.0.7.232/cs-CZ/0001 --lang=cs-CZ --cache-path="C:\Users\Roman\AppData\Local\Autodesk\Autodesk Desktop App\BrowserCache" --peerPid=7056
"C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe" /AUTORUN
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="9248.0.812812658\1907241190" --no-sandbox --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=7056 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,54 --gpu-vendor-id=0x1002 --gpu-device-id=0x9588 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.970.100.9001 --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=7056 --mojo-platform-channel-handle=1288 /prefetch:2
-BootProc
"HDD Regenerator.exe"
"HDD Regenerator.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe" "-launchedbyvulcan-19316 C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --use-gl=swiftshader-webgl --field-trial-handle=3116,2675131088847896869,8395158872780267827,131072 --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --disable-gpu-compositing --service-pipe-token=3473676564194371821 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.9.0.504" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=3473676564194371821 --renderer-client-id=3 --mojo-platform-channel-handle=3132 /prefetch:1
"C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\main.js"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --use-gl=swiftshader-webgl --field-trial-handle=3116,2675131088847896869,8395158872780267827,131072 --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --disable-gpu-compositing --service-pipe-token=10698237124911341216 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.9.0.504" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=10698237124911341216 --renderer-client-id=4 --mojo-platform-channel-handle=3888 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12283459558724276065 --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6800 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.35.14003.0_x64__8wekyb3d8bbwe\GameBar.exe" -ServerName:App.AppXbdkk0yrkwpcgeaem8zk81k8py1eaahny.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.35.14003.0_x64__8wekyb3d8bbwe\GameBarFT.exe" /InvokerPRAID: App
C:\WINDOWS\System32\svchost.exe -k smphost
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=6504,14291208295048887196,2534832665850186713,131072 --no-sandbox --log-file="C:\Users\Roman\AppData\Roaming\AVAST Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (19.8.2393)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=1341014890813843013 --mojo-platform-channel-handle=6316 /prefetch:2
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=13548096157454592386 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6812 /prefetch:1
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe" -ServerName:App.AppXbdz14xebceycqvrazxqtnx89wn9e0ebz.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5696819151671529655 --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8924 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe143_ Global\UsGthrCtrlFltPipeMssGthrPipe143 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 752 756 764 8192 760
C:\WINDOWS\system32\AUDIODG.EXE 0x5d0
"C:\Users\Roman\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\simplitec Power Suite (Autopilot.exe).job - C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
C:\WINDOWS\tasks\simplitec Power Suite.job - C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe -task
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-09-25 221664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-11-17 1356368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-17 166360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-04-23 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-11-17 1043128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-23 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-03-19 84992]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2019-10-09 268680]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-10 509936]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2019-10-08 2872400]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-11-30 4047480]
"iTunesHelper"=D:\Program Files\iTunes\iTunesHelper.exe [2019-07-19 302904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-11-21 1585000]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-01-12 5263040]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2017-02-03 2007576]
"Xvid"=WScript C:\Program Files (x86)\Xvid\CheckUpdateLauncher.vbs C:\Program Files (x86)\Xvid\CheckUpdate.ps1 []
"com.squirrel.Teams.Teams"=C:\Users\Roman\AppData\Local\Microsoft\Teams\Update.exe [2019-10-13 1789552]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2015-07-12 563416]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2017-12-19 706392]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2013-12-05 139776]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2014-05-22 4513792]
"HDD Regenerator"=C:\Program Files (x86)\HDD Regenerator\Shell.exe [2013-05-08 90336]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-11-30 4047480]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2019-07-19 76600]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2019-07-05 2623032]
"TeamsMachineInstaller"=C:\Program Files\Teams Installer\Teams.exe --checkInstall --source=PROPLUS []
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Exor4 for XDMS_T.lnk - C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe
Twonky Server.lnk - C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\gnsdk_fp.dll
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2019-11-14 20:12:19 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-11-14 20:12:19 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2019-11-14 20:12:19 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2019-11-14 20:12:18 ----A---- C:\WINDOWS\system32\cdp.dll
2019-11-14 20:12:17 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2019-11-14 20:12:17 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2019-11-14 20:12:17 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2019-11-14 20:12:16 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2010CustomActions.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.AppAgent.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\uwfservicingapi.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\mf.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevTemplateConfigItemGenerator.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevTemplateBaselineGenerator.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevAppMonitor.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevAgentPolicyGenerator.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncController.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncConditions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncCommon.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SmbSyncProvider.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.MonitorSyncProvider.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernSync.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppData.WinRT.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Management.WmiAccess.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Management.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ManagedEventLogging.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.LocalSyncProvider.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.EventLogMessages.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Common.WinRT.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CmUtil.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CabUtil.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\AgentService.exe
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\AcXtrnal.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-11-14 20:11:48 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\reg.exe
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\wscinterop.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\AcXtrnal.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\AcLayers.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\tsgqec.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\msimsg.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\msi.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2019-11-14 20:11:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-11-14 20:11:44 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2019-11-14 20:11:44 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-11-14 20:11:43 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-11-14 20:11:43 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-11-14 20:11:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\werui.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\StorSvc.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\jscript.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-11-14 20:11:40 ----A---- C:\WINDOWS\HelpPane.exe
2019-11-14 20:11:18 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-14 20:11:18 ----A---- C:\WINDOWS\system32\reg.exe
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\KBDJPN.DLL
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\kbd106.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\upnphost.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\upnpcont.exe
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\udhisapi.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\usp10.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Utilman.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\sethc.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\EaseOfAccessDialog.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\cmd.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\AtBroker.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\accessibilitycpl.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-11-14 20:10:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2019-11-14 20:10:21 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2019-11-14 20:10:21 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\system32\RMapi.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\system32\posetup.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\msIso.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\edgeIso.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2019-11-14 20:10:18 ----A---- C:\WINDOWS\system32\urlmon.dll
2019-11-14 20:10:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\wincredui.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\omadmapi.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\cryptui.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\winnsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\nsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\winnsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\winlogon.exe
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\usp10.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\nsisvc.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\nsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\lpk.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\dciman32.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\atmlib.dll
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\Wldap32.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\WinTypes.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\winhttp.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\wincorlib.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\weretw.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\wer.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\webio.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\utcutil.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\tzres.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\profsvc.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\crypt32.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\uxtheme.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\twinui.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\combase.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\aepic.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\srpapi.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\shell32.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\applockerfltr.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\devinv.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\appidtel.exe
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\Utilman.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\SRH.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\sethc.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcalua.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcaevts.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcadm.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\osk.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\Narrator.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\Magnify.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\invagent.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\AtBroker.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-11-14 20:08:44 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2019-11-14 20:08:43 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\vss_ps.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\win32u.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\win32k.sys
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\usosvc.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\cmd.exe
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\wfapigp.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\user32.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\icfupgd.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\fwbase.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-11-14 20:08:37 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-11-14 20:08:37 ----A---- C:\WINDOWS\system32\tquery.dll
2019-11-14 20:08:37 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssph.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssitlb.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\wups2.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\wuauclt.exe
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\cdd.dll
2019-11-14 20:08:33 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-14 20:08:33 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2019-11-14 20:08:32 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\dstokenclean.exe
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-14 20:08:08 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-14 20:08:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-11-14 20:08:07 ----A---- C:\WINDOWS\system32\vdsbas.dll
2019-11-14 20:08:07 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscsvc.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscproxystub.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscisvif.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscapi.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscadminui.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\Wpc.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\splwow64.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\explorer.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\tellib.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\BTAGService.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\autopilot.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\AarSvc.dll
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\iscsilog.dll
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2019-11-14 19:41:14 ----D---- C:\Program Files (x86)\Roche
2019-11-14 19:39:43 ----D---- C:\ProgramData\Roche
2019-11-14 19:36:12 ----A---- C:\WINDOWS\system32\poqexec.exe
2019-11-14 19:36:10 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
======List of files/folders modified in the last 1 month======
2019-12-05 08:03:39 ----D---- C:\Program Files\trend micro
2019-12-05 08:03:34 ----AD---- C:\ProgramData\TEMP
2019-12-05 08:01:30 ----D---- C:\WINDOWS\Temp
2019-12-05 08:01:30 ----D---- C:\WINDOWS\INF
2019-12-05 07:54:17 ----D---- C:\WINDOWS\Prefetch
2019-12-05 07:54:09 ----D---- C:\FRST
2019-12-05 07:52:49 ----SHD---- C:\System Volume Information
2019-12-05 07:50:25 ----D---- C:\WINDOWS\system32\sru
2019-12-05 07:48:56 ----D---- C:\WINDOWS\AppReadiness
2019-12-05 07:46:25 ----D---- C:\ProgramData\TwonkyServer
2019-12-03 20:08:05 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-12-03 19:32:39 ----D---- C:\WINDOWS\system32\SleepStudy
2019-12-02 05:43:04 ----D---- C:\Program Files\Opera
2019-12-01 18:08:26 ----RD---- C:\WINDOWS\Microsoft.NET
2019-11-26 21:08:29 ----HD---- C:\Program Files\WindowsApps
2019-11-23 08:21:41 ----SHDC---- C:\WINDOWS\Installer
2019-11-23 08:21:41 ----SHD---- C:\Config.Msi
2019-11-23 08:21:14 ----D---- C:\Program Files\Common Files\microsoft shared
2019-11-23 08:18:42 ----D---- C:\Program Files\Microsoft Office
2019-11-21 21:40:29 ----D---- C:\WINDOWS\system32\Tasks
2019-11-20 23:49:20 ----D---- C:\WINDOWS\system32\config
2019-11-20 21:48:15 ----D---- C:\WINDOWS\System32
2019-11-20 21:48:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-20 21:42:42 ----D---- C:\ProgramData\boost_interprocess
2019-11-20 21:39:43 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2019-11-20 20:22:58 ----DC---- C:\Users\Roman\AppData\Roaming\vlc
2019-11-20 16:34:14 ----D---- C:\WINDOWS\system32\drivers
2019-11-20 07:43:00 ----D---- C:\WINDOWS\WinSxS
2019-11-20 07:02:22 ----D---- C:\WINDOWS\system32\cs-CZ
2019-11-20 06:56:05 ----D---- C:\WINDOWS\CbsTemp
2019-11-19 21:33:02 ----D---- C:\WINDOWS\system32\catroot2
2019-11-19 20:45:19 ----SD---- C:\Users\Roman\AppData\Roaming\Microsoft
2019-11-17 19:31:03 ----D---- C:\WINDOWS\system32\DriverStore
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SYSWOW64\wbem
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SYSWOW64\migration
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SysWOW64
2019-11-14 21:56:36 ----D---- C:\WINDOWS\SystemResources
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\wbem
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\ru-RU
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\ro-RO
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\pt-PT
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\pl-PL
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\nl-NL
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\migration
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\en-US
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\en-GB
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\el-GR
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\Boot
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\ar-SA
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\appraiser
2019-11-14 21:56:34 ----RD---- C:\WINDOWS\PrintDialog
2019-11-14 21:56:34 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-11-14 21:56:34 ----D---- C:\WINDOWS\ShellExperiences
2019-11-14 21:56:34 ----D---- C:\WINDOWS\ShellComponents
2019-11-14 21:56:34 ----D---- C:\WINDOWS\PolicyDefinitions
2019-11-14 21:56:34 ----D---- C:\WINDOWS\DiagTrack
2019-11-14 21:56:34 ----D---- C:\WINDOWS\bcastdvr
2019-11-14 21:56:34 ----D---- C:\WINDOWS\apppatch
2019-11-14 21:56:34 ----D---- C:\Windows
2019-11-14 21:56:34 ----D---- C:\Program Files (x86)\Windows Media Player
2019-11-14 20:36:19 ----D---- C:\WINDOWS\system32\MRT
2019-11-14 20:31:25 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-11-14 19:41:14 ----RD---- C:\Program Files (x86)
2019-11-14 19:39:43 ----HD---- C:\ProgramData
2019-11-14 19:29:04 ----D---- C:\WINDOWS\system32\Macromed
2019-11-14 19:29:03 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2019-11-06 06:44:42 ----D---- C:\Program Files (x86)\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2019-10-09 37616]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2019-10-09 209552]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2019-10-09 65120]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2019-10-09 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2019-10-09 83792]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2019-10-09 316528]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2019-09-12 252944]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2013-09-30 19152]
R0 PxHlpa64;PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [2013-09-03 56336]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-03-19 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2019-10-09 204824]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2019-10-09 274456]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2019-10-09 276952]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2019-10-09 42736]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2019-10-09 110320]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2019-10-09 848432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2019-10-09 460448]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2019-11-02 161544]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2019-10-09 236024]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-11-14 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-10-09 117048]
R3 dtlitescsibus;@oem23.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-01-25 30264]
R3 dtliteusbbus;@oem5.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-01-25 47672]
R3 MTsensor;@oem4.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-03-19 662528]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-03-19 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-14 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2019-08-10 137528]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2019-08-10 174392]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2019-08-10 153912]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-12 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-11-14 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2019-11-14 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-11-14 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-11-14 98304]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 dg_ssudbus;@oem14.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-09 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-11-14 84488]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-14 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2013-09-30 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-03-19 987152]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
S4 RsFx0153;RsFx0153 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0153.sys [2012-06-29 321992]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2017-12-19 1364904]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-10 88136]
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2019-07-05 816184]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2019-10-08 3147344]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2019-10-08 2914896]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2019-04-29 96056]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2019-10-09 996880]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2019-10-09 57504]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_f7aba34;Uživatelská služba platformy připojených zařízení_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-11-17 11650416]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 hddrsrv;hddrsrv; C:\Program Files (x86)\HDD Regenerator\hrsrv.exe [2013-05-08 82144]
R2 McAfee WebAdvisor;McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [2019-11-17 913208]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2018-07-19 794904]
R2 OneSyncSvc_f7aba34;Hostitel synchronizace_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 RealtekWlanU;RealtekWlanU; C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RtlService.exe [2014-10-09 48856]
R2 RunSwUSB;RunSwUSB; C:\Windows\runSW.exe [2014-12-15 44760]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2019-10-12 6085360]
R3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2013-09-25 282112]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_f7aba34;Uživatelská služba schránky_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-01-12 3480768]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-07-19 658232]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_f7aba34;Data kontaktů_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-25 107848]
S2 LcSvrAdm;ELSA Administration Service; D:\ElsaWin\bin\LcSvrAdm.exe [2017-03-14 262656]
S2 LcSvrDba;ELSA DBA Server; D:\ElsaWin\bin\LcSvrDba.exe [2017-03-14 435712]
S2 LcSvrHis;ELSA Historie Server; D:\ElsaWin\bin\LcSvrHis.exe [2017-03-14 387072]
S2 LcSvrPAS;ELSA PASS Server; D:\ElsaWin\bin\LcSvrPas.exe [2017-03-14 519680]
S2 LcSvrSaz;ELSA APOSpro Server; D:\ElsaWin\bin\LcSvrSaz.exe [2017-03-14 438784]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 MSSQL$ELSAWINDB;SQL Server (ELSAWINDB); C:\Program Files\Microsoft SQL Server\MSSQL10_50.ELSAWINDB\MSSQL\Binn\sqlservr.exe [2012-06-29 62218696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 postgresql-x64-9.2;postgresql-x64-9.2 - PostgreSQL Server 9.2; C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N postgresql-x64-9.2 -D C:/Program Files/PostgreSQL/9.2/data -w []
S2 RTLDHCPService;Realtek DHCP Service; C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RTLDHCP.exe [2014-10-09 262360]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_f7aba34;Agent Activation Runtime_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-11-14 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_f7aba34;Uživatelská služba pro GameDVR a vysílání her_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_f7aba34;Služba pro podporu uživatelů Bluetooth_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_f7aba34;CaptureService_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_f7aba34;ConsentUX_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 CredentialEnrollmentManagerUserSvc_f7aba34;CredentialEnrollmentManagerUserSvc_f7aba34; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_f7aba34;DeviceAssociationBroker_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_f7aba34;DevicePicker_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_f7aba34;Tok zařízení_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-09-12 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2018-01-26 1591264]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-08-10 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe [2019-11-16 1110512]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-25 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LcSvrAuf;ELSA Auftragsverwaltungs Service; D:\ElsaWin\bin\LcSvrAuf.exe [2017-03-14 1352704]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_f7aba34;Služba zasílání zpráv_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 264504]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_f7aba34;PrintWorkflow_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2019-08-10 828216]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 59744]
-----------------EOF-----------------
¨LOG RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman at 2019-12-05 08:03:37
Microsoft Windows 10 Pro
System drive C: has 26 GB (21%) free of 121 GB
Total RAM: 4094 MB (29% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:03:40, on 05.12.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe
C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
C:\Program Files\trend micro\Roman.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [HDD Regenerator] "C:\Program Files (x86)\HDD Regenerator\Shell.exe" /1
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [TeamsMachineInstaller] %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Xvid] WScript "C:\Program Files (x86)\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files (x86)\Xvid\CheckUpdate.ps1"
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Roman\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2651452621-253113433-2049451952-1006\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'postgres')
O4 - HKUS\S-1-5-21-2651452621-253113433-2049451952-1006\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'postgres')
O4 - Global Startup: Exor4 for XDMS_T.lnk = C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe
O4 - Global Startup: Twonky Server.lnk = C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: vw-wi - {0F3C833F-FB28-40EA-8CB9-6A55B996C3F6} - D:\ElsaWin\bin\wiprot.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_f7aba34 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: hddrsrv - Unknown owner - C:\Program Files (x86)\HDD Regenerator\hrsrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ELSA Administration Service (LcSvrAdm) - Volkswagen AG - D:\ElsaWin\bin\LcSvrAdm.exe
O23 - Service: ELSA Auftragsverwaltungs Service (LcSvrAuf) - Volkswagen AG - D:\ElsaWin\bin\LcSvrAuf.exe
O23 - Service: ELSA DBA Server (LcSvrDba) - Volkswagen AG - D:\ElsaWin\bin\LcSvrDba.exe
O23 - Service: ELSA Historie Server (LcSvrHis) - Volkswagen AG - D:\ElsaWin\bin\LcSvrHis.exe
O23 - Service: ELSA PASS Server (LcSvrPAS) - Volkswagen AG - D:\ElsaWin\bin\LcSvrPas.exe
O23 - Service: ELSA APOSpro Server (LcSvrSaz) - Volkswagen AG - D:\ElsaWin\bin\LcSvrSaz.exe
O23 - Service: McAfee WebAdvisor - McAfee, Inc. - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: postgresql-x64-9.2 - PostgreSQL Server 9.2 (postgresql-x64-9.2) - PostgreSQL Global Development Group - C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe
O23 - Service: RealtekWlanU - Realtek - C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RtlService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek DHCP Service (RTLDHCPService) - Realtek - C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RTLDHCP.exe
O23 - Service: RunSwUSB - Unknown owner - C:\Windows\runSW.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TwonkyServer - PacketVideo - C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16635 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k NetworkService -s TermService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s UmRdpService
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k netsvcs -s CertPropSvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s SessionEnv
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\HDD Regenerator\hrsrv.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RtlService.exe"
C:\Windows\runSW.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe" -serviceversion 0
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
dashost.exe {e5027dbe-4d5a-443d-87ed6c16f550ed55}
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files (x86)\Twonky\TwonkyServer\TwonkyServer.exe" -serviceversion 0
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Browny02\BrYNSvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s fhsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\McAfee\WebAdvisor\UIHost.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"ctfmon.exe"
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19102.525.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
AvastUI.exe /nogui
"D:\Program Files\iTunes\iTunesHelper.exe"
"C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --ran-launcher --started-from-shortcut
"C:\Program Files\Opera\65.0.3467.48\opera_crashreporter.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Roman\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktop --annotation=ver=65.0.3467.48 --initial-client-data=0x304,0x308,0x30c,0x300,0x310,0x7ffd626bafe8,0x7ffd626baff8,0x7ffd626bb008
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=gpu-process --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=2548206920212369142 --mojo-platform-channel-handle=1840 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=utility --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --service-sandbox-type=network --enable-quic --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --service-request-channel-token=13228033424979277797 --mojo-platform-channel-handle=1920 /prefetch:8
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=9967517500812645825 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2692 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4716407363222818322 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3144 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17265108724048928667 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4227952735661223419 --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3560 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=utility --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --service-sandbox-type=audio --enable-quic --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --service-request-channel-token=4526929815189185983 --mojo-platform-channel-handle=4012 /prefetch:8
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --extension-process --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=16899186332993126219 --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4648 /prefetch:1
"C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe" -f "C:\ProgramData\Roche\Exor4\Bin\XDMS_T.conf"
"C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
C:\Windows\System32\RuntimeBroker.exe -Embedding
-BootProc
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --approot=SOFTWARE\Autodesk --appAgent=/AUTODESKDESKTOPAPP/7.0.7.232/cs-CZ/0001 --lang=cs-CZ --cache-path="C:\Users\Roman\AppData\Local\Autodesk\Autodesk Desktop App\BrowserCache" --peerPid=7056
"C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe" /AUTORUN
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="9248.0.812812658\1907241190" --no-sandbox --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=7056 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,54 --gpu-vendor-id=0x1002 --gpu-device-id=0x9588 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.970.100.9001 --lang=cs-CZ --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=7056 --mojo-platform-channel-handle=1288 /prefetch:2
-BootProc
"HDD Regenerator.exe"
"HDD Regenerator.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe" "-launchedbyvulcan-19316 C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --use-gl=swiftshader-webgl --field-trial-handle=3116,2675131088847896869,8395158872780267827,131072 --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --disable-gpu-compositing --service-pipe-token=3473676564194371821 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.9.0.504" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=3473676564194371821 --renderer-client-id=3 --mojo-platform-channel-handle=3132 /prefetch:1
"C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\main.js"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --use-gl=swiftshader-webgl --field-trial-handle=3116,2675131088847896869,8395158872780267827,131072 --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --disable-gpu-compositing --service-pipe-token=10698237124911341216 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\Roman\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.9.0.504" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=10698237124911341216 --renderer-client-id=4 --mojo-platform-channel-handle=3888 /prefetch:1
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12283459558724276065 --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6800 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.35.14003.0_x64__8wekyb3d8bbwe\GameBar.exe" -ServerName:App.AppXbdkk0yrkwpcgeaem8zk81k8py1eaahny.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.35.14003.0_x64__8wekyb3d8bbwe\GameBarFT.exe" /InvokerPRAID: App
C:\WINDOWS\System32\svchost.exe -k smphost
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=6504,14291208295048887196,2534832665850186713,131072 --no-sandbox --log-file="C:\Users\Roman\AppData\Roaming\AVAST Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (19.8.2393)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=1341014890813843013 --mojo-platform-channel-handle=6316 /prefetch:2
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=13548096157454592386 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6812 /prefetch:1
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe" -ServerName:App.AppXbdz14xebceycqvrazxqtnx89wn9e0ebz.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Opera\65.0.3467.48\opera.exe" --type=renderer --field-trial-handle=1828,4164592738850752097,15030968702633405651,131072 --disable-features=SharedArrayBuffer --lang=cs --enable-auto-reload --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --ab_tests=DNA-70598-ref:DNA-70598 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5696819151671529655 --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8924 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe143_ Global\UsGthrCtrlFltPipeMssGthrPipe143 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 752 756 764 8192 760
C:\WINDOWS\system32\AUDIODG.EXE 0x5d0
"C:\Users\Roman\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\simplitec Power Suite (Autopilot.exe).job - C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
C:\WINDOWS\tasks\simplitec Power Suite.job - C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe -task
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-09-25 221664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-11-17 1356368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-17 166360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-04-23 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-11-17 1043128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-23 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-03-19 84992]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2019-10-09 268680]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-10 509936]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2019-10-08 2872400]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-11-30 4047480]
"iTunesHelper"=D:\Program Files\iTunes\iTunesHelper.exe [2019-07-19 302904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-11-21 1585000]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-01-12 5263040]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2017-02-03 2007576]
"Xvid"=WScript C:\Program Files (x86)\Xvid\CheckUpdateLauncher.vbs C:\Program Files (x86)\Xvid\CheckUpdate.ps1 []
"com.squirrel.Teams.Teams"=C:\Users\Roman\AppData\Local\Microsoft\Teams\Update.exe [2019-10-13 1789552]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2015-07-12 563416]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2017-12-19 706392]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2013-12-05 139776]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2014-05-22 4513792]
"HDD Regenerator"=C:\Program Files (x86)\HDD Regenerator\Shell.exe [2013-05-08 90336]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-11-30 4047480]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2019-07-19 76600]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2019-07-05 2623032]
"TeamsMachineInstaller"=C:\Program Files\Teams Installer\Teams.exe --checkInstall --source=PROPLUS []
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Exor4 for XDMS_T.lnk - C:\Program Files (x86)\Roche\Exor4\Bin\Exor4.exe
Twonky Server.lnk - C:\Program Files (x86)\Twonky\TwonkyServer\twonkytray.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\gnsdk_fp.dll
2019-11-14 20:12:20 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2019-11-14 20:12:19 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-11-14 20:12:19 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2019-11-14 20:12:19 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2019-11-14 20:12:18 ----A---- C:\WINDOWS\system32\cdp.dll
2019-11-14 20:12:17 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2019-11-14 20:12:17 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2019-11-14 20:12:17 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2019-11-14 20:12:16 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2010CustomActions.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.AppAgent.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\uwfservicingapi.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-11-14 20:12:15 ----A---- C:\WINDOWS\system32\mf.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevTemplateConfigItemGenerator.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevTemplateBaselineGenerator.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevAppMonitor.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\UevAgentPolicyGenerator.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncController.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncConditions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncCommon.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SmbSyncProvider.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.MonitorSyncProvider.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernSync.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppData.WinRT.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Management.WmiAccess.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Management.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ManagedEventLogging.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.LocalSyncProvider.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.EventLogMessages.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Common.WinRT.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CmUtil.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CabUtil.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-11-14 20:11:53 ----A---- C:\WINDOWS\system32\AgentService.exe
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-11-14 20:11:52 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\AcXtrnal.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2019-11-14 20:11:50 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-11-14 20:11:49 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-11-14 20:11:48 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\reg.exe
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\wscinterop.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\AcXtrnal.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\AcLayers.dll
2019-11-14 20:11:46 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\tsgqec.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\msimsg.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\msi.dll
2019-11-14 20:11:45 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2019-11-14 20:11:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-11-14 20:11:44 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2019-11-14 20:11:44 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-11-14 20:11:43 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-11-14 20:11:43 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-11-14 20:11:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\werui.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\StorSvc.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\jscript.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-11-14 20:11:40 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-11-14 20:11:40 ----A---- C:\WINDOWS\HelpPane.exe
2019-11-14 20:11:18 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-14 20:11:18 ----A---- C:\WINDOWS\system32\reg.exe
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2019-11-14 20:11:16 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\KBDJPN.DLL
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\kbd106.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\upnphost.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\upnpcont.exe
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\udhisapi.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-11-14 20:11:15 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\usp10.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2019-11-14 20:11:14 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Utilman.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\sethc.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\EaseOfAccessDialog.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\cmd.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\AtBroker.exe
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-11-14 20:11:13 ----A---- C:\WINDOWS\SYSWOW64\accessibilitycpl.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2019-11-14 20:11:12 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2019-11-14 20:11:11 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-14 20:10:22 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-11-14 20:10:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2019-11-14 20:10:21 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2019-11-14 20:10:21 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\system32\RMapi.dll
2019-11-14 20:10:20 ----A---- C:\WINDOWS\system32\posetup.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\msIso.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\edgeIso.dll
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2019-11-14 20:10:19 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2019-11-14 20:10:18 ----A---- C:\WINDOWS\system32\urlmon.dll
2019-11-14 20:10:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\wincredui.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\omadmapi.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\cryptui.dll
2019-11-14 20:09:22 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\winnsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\nsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\winnsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\winlogon.exe
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\usp10.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\nsisvc.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\nsi.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\lpk.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\dciman32.dll
2019-11-14 20:09:21 ----A---- C:\WINDOWS\system32\atmlib.dll
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-11-14 20:09:20 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\Wldap32.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\WinTypes.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\winhttp.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\wincorlib.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\weretw.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\wer.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\webio.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\utcutil.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\tzres.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\profsvc.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-11-14 20:09:19 ----A---- C:\WINDOWS\system32\crypt32.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\uxtheme.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\twinui.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\combase.dll
2019-11-14 20:09:18 ----A---- C:\WINDOWS\system32\aepic.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\srpapi.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\shell32.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\applockerfltr.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\devinv.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\appidtel.exe
2019-11-14 20:09:16 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\Utilman.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\SRH.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\sethc.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcalua.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcaevts.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\pcadm.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\osk.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\Narrator.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\Magnify.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\invagent.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\AtBroker.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-11-14 20:09:15 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-11-14 20:08:44 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2019-11-14 20:08:43 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\vss_ps.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-14 20:08:40 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\win32u.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\win32k.sys
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\usosvc.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-11-14 20:08:39 ----A---- C:\WINDOWS\system32\cmd.exe
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\wfapigp.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\user32.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\icfupgd.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\fwbase.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2019-11-14 20:08:38 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-11-14 20:08:37 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-11-14 20:08:37 ----A---- C:\WINDOWS\system32\tquery.dll
2019-11-14 20:08:37 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssph.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\mssitlb.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-11-14 20:08:36 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\wups2.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\wuauclt.exe
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-11-14 20:08:35 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-11-14 20:08:34 ----A---- C:\WINDOWS\system32\cdd.dll
2019-11-14 20:08:33 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-14 20:08:33 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2019-11-14 20:08:32 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\dstokenclean.exe
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-14 20:08:10 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-11-14 20:08:09 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-14 20:08:08 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-14 20:08:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-11-14 20:08:07 ----A---- C:\WINDOWS\system32\vdsbas.dll
2019-11-14 20:08:07 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscsvc.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscproxystub.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscisvif.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscapi.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\wscadminui.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\Wpc.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-11-14 20:08:05 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\splwow64.exe
2019-11-14 20:08:05 ----A---- C:\WINDOWS\explorer.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-14 20:08:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\tellib.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\BTAGService.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\autopilot.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2019-11-14 20:08:03 ----A---- C:\WINDOWS\system32\AarSvc.dll
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\iscsilog.dll
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2019-11-14 20:07:57 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2019-11-14 19:41:14 ----D---- C:\Program Files (x86)\Roche
2019-11-14 19:39:43 ----D---- C:\ProgramData\Roche
2019-11-14 19:36:12 ----A---- C:\WINDOWS\system32\poqexec.exe
2019-11-14 19:36:10 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
======List of files/folders modified in the last 1 month======
2019-12-05 08:03:39 ----D---- C:\Program Files\trend micro
2019-12-05 08:03:34 ----AD---- C:\ProgramData\TEMP
2019-12-05 08:01:30 ----D---- C:\WINDOWS\Temp
2019-12-05 08:01:30 ----D---- C:\WINDOWS\INF
2019-12-05 07:54:17 ----D---- C:\WINDOWS\Prefetch
2019-12-05 07:54:09 ----D---- C:\FRST
2019-12-05 07:52:49 ----SHD---- C:\System Volume Information
2019-12-05 07:50:25 ----D---- C:\WINDOWS\system32\sru
2019-12-05 07:48:56 ----D---- C:\WINDOWS\AppReadiness
2019-12-05 07:46:25 ----D---- C:\ProgramData\TwonkyServer
2019-12-03 20:08:05 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-12-03 19:32:39 ----D---- C:\WINDOWS\system32\SleepStudy
2019-12-02 05:43:04 ----D---- C:\Program Files\Opera
2019-12-01 18:08:26 ----RD---- C:\WINDOWS\Microsoft.NET
2019-11-26 21:08:29 ----HD---- C:\Program Files\WindowsApps
2019-11-23 08:21:41 ----SHDC---- C:\WINDOWS\Installer
2019-11-23 08:21:41 ----SHD---- C:\Config.Msi
2019-11-23 08:21:14 ----D---- C:\Program Files\Common Files\microsoft shared
2019-11-23 08:18:42 ----D---- C:\Program Files\Microsoft Office
2019-11-21 21:40:29 ----D---- C:\WINDOWS\system32\Tasks
2019-11-20 23:49:20 ----D---- C:\WINDOWS\system32\config
2019-11-20 21:48:15 ----D---- C:\WINDOWS\System32
2019-11-20 21:48:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-20 21:42:42 ----D---- C:\ProgramData\boost_interprocess
2019-11-20 21:39:43 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2019-11-20 20:22:58 ----DC---- C:\Users\Roman\AppData\Roaming\vlc
2019-11-20 16:34:14 ----D---- C:\WINDOWS\system32\drivers
2019-11-20 07:43:00 ----D---- C:\WINDOWS\WinSxS
2019-11-20 07:02:22 ----D---- C:\WINDOWS\system32\cs-CZ
2019-11-20 06:56:05 ----D---- C:\WINDOWS\CbsTemp
2019-11-19 21:33:02 ----D---- C:\WINDOWS\system32\catroot2
2019-11-19 20:45:19 ----SD---- C:\Users\Roman\AppData\Roaming\Microsoft
2019-11-17 19:31:03 ----D---- C:\WINDOWS\system32\DriverStore
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SYSWOW64\wbem
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SYSWOW64\migration
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-11-14 21:56:37 ----D---- C:\WINDOWS\SysWOW64
2019-11-14 21:56:36 ----D---- C:\WINDOWS\SystemResources
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\wbem
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\ru-RU
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\ro-RO
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\pt-PT
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\pl-PL
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\nl-NL
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\migration
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\en-US
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\en-GB
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\el-GR
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\Boot
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\ar-SA
2019-11-14 21:56:35 ----D---- C:\WINDOWS\system32\appraiser
2019-11-14 21:56:34 ----RD---- C:\WINDOWS\PrintDialog
2019-11-14 21:56:34 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-11-14 21:56:34 ----D---- C:\WINDOWS\ShellExperiences
2019-11-14 21:56:34 ----D---- C:\WINDOWS\ShellComponents
2019-11-14 21:56:34 ----D---- C:\WINDOWS\PolicyDefinitions
2019-11-14 21:56:34 ----D---- C:\WINDOWS\DiagTrack
2019-11-14 21:56:34 ----D---- C:\WINDOWS\bcastdvr
2019-11-14 21:56:34 ----D---- C:\WINDOWS\apppatch
2019-11-14 21:56:34 ----D---- C:\Windows
2019-11-14 21:56:34 ----D---- C:\Program Files (x86)\Windows Media Player
2019-11-14 20:36:19 ----D---- C:\WINDOWS\system32\MRT
2019-11-14 20:31:25 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-11-14 19:41:14 ----RD---- C:\Program Files (x86)
2019-11-14 19:39:43 ----HD---- C:\ProgramData
2019-11-14 19:29:04 ----D---- C:\WINDOWS\system32\Macromed
2019-11-14 19:29:03 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2019-11-06 06:44:42 ----D---- C:\Program Files (x86)\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2019-10-09 37616]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2019-10-09 209552]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2019-10-09 65120]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2019-10-09 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2019-10-09 83792]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2019-10-09 316528]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2019-09-12 252944]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2013-09-30 19152]
R0 PxHlpa64;PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [2013-09-03 56336]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-03-19 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2019-10-09 204824]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2019-10-09 274456]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2019-10-09 276952]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2019-10-09 42736]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2019-10-09 110320]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2019-10-09 848432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2019-10-09 460448]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2019-11-02 161544]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2019-10-09 236024]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-11-14 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-10-09 117048]
R3 dtlitescsibus;@oem23.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-01-25 30264]
R3 dtliteusbbus;@oem5.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-01-25 47672]
R3 MTsensor;@oem4.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-03-19 662528]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-03-19 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-14 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2019-08-10 137528]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2019-08-10 174392]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2019-08-10 153912]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-12 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-11-14 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2019-11-14 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-11-14 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-11-14 98304]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 dg_ssudbus;@oem14.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-12 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-09 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-11-14 84488]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-14 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2013-09-30 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-03-19 987152]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
S4 RsFx0153;RsFx0153 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0153.sys [2012-06-29 321992]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2017-12-19 1364904]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-10 88136]
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2019-07-05 816184]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2019-10-08 3147344]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2019-10-08 2914896]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2019-04-29 96056]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2019-10-09 996880]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2019-10-09 57504]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_f7aba34;Uživatelská služba platformy připojených zařízení_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-11-17 11650416]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 hddrsrv;hddrsrv; C:\Program Files (x86)\HDD Regenerator\hrsrv.exe [2013-05-08 82144]
R2 McAfee WebAdvisor;McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [2019-11-17 913208]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2018-07-19 794904]
R2 OneSyncSvc_f7aba34;Hostitel synchronizace_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 RealtekWlanU;RealtekWlanU; C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RtlService.exe [2014-10-09 48856]
R2 RunSwUSB;RunSwUSB; C:\Windows\runSW.exe [2014-12-15 44760]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2019-10-12 6085360]
R3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2013-09-25 282112]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_f7aba34;Uživatelská služba schránky_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-01-12 3480768]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-07-19 658232]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_f7aba34;Data kontaktů_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-25 107848]
S2 LcSvrAdm;ELSA Administration Service; D:\ElsaWin\bin\LcSvrAdm.exe [2017-03-14 262656]
S2 LcSvrDba;ELSA DBA Server; D:\ElsaWin\bin\LcSvrDba.exe [2017-03-14 435712]
S2 LcSvrHis;ELSA Historie Server; D:\ElsaWin\bin\LcSvrHis.exe [2017-03-14 387072]
S2 LcSvrPAS;ELSA PASS Server; D:\ElsaWin\bin\LcSvrPas.exe [2017-03-14 519680]
S2 LcSvrSaz;ELSA APOSpro Server; D:\ElsaWin\bin\LcSvrSaz.exe [2017-03-14 438784]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 MSSQL$ELSAWINDB;SQL Server (ELSAWINDB); C:\Program Files\Microsoft SQL Server\MSSQL10_50.ELSAWINDB\MSSQL\Binn\sqlservr.exe [2012-06-29 62218696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 postgresql-x64-9.2;postgresql-x64-9.2 - PostgreSQL Server 9.2; C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N postgresql-x64-9.2 -D C:/Program Files/PostgreSQL/9.2/data -w []
S2 RTLDHCPService;Realtek DHCP Service; C:\Program Files (x86)\NETIS\USB Wireless LAN Utility\RTLDHCP.exe [2014-10-09 262360]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_f7aba34;Agent Activation Runtime_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-11-14 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_f7aba34;Uživatelská služba pro GameDVR a vysílání her_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_f7aba34;Služba pro podporu uživatelů Bluetooth_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_f7aba34;CaptureService_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_f7aba34;ConsentUX_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 CredentialEnrollmentManagerUserSvc_f7aba34;CredentialEnrollmentManagerUserSvc_f7aba34; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_f7aba34;DeviceAssociationBroker_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_f7aba34;DevicePicker_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_f7aba34;Tok zařízení_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-09-12 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2018-01-26 1591264]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-08-10 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe [2019-11-16 1110512]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-25 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LcSvrAuf;ELSA Auftragsverwaltungs Service; D:\ElsaWin\bin\LcSvrAuf.exe [2017-03-14 1352704]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_f7aba34;Služba zasílání zpráv_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 264504]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_f7aba34;PrintWorkflow_f7aba34; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2019-08-10 828216]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 59744]
-----------------EOF-----------------
Stiahni AdwCleaner: