Preventivka logu
Napsal: 07 pro 2019 15:40
Zdravím! Prosím o kontrolu logu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Richie at 2019-12-07 15:42:18
Microsoft Windows 10 Home
System drive C: has 589 GB (62%) free of 953 GB
Total RAM: 16296 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:42:26, on 7.12.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0771)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\Richie.exe
C:\Program Files (x86)\Lenovo\System Update\tvsu.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [PhotoMasterImportAgent] "C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe" importagent
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Richie\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SQLTELEMETRY$SQLEXPRESS')
O4 - HKUS\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'SQLTELEMETRY$SQLEXPRESS')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CCSDK - Lenovo - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem41.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50303 (SNMP) - Unknown owner - C:\WINDOWS\System32\snmp.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12675 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
winlogon.exe
"fontdrvhost.exe"
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\dxgiadaptercache.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\AUDIODG.EXE 0x4a4
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\snmp.exe
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k apphost -s AppHostSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k iissvcs
dashost.exe {4f308001-9e0d-472c-97169b5859e6984f}
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service SQLEXPRESS
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
rundll32.exe "c:\program files\nvidia corporation\nvstreamsrv\rxdiag.dll" RxDiagSetRuntimeMessagePump
C:\WINDOWS\system32\compattelrunner.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wermgr.exe -upload
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe" --launcher=TaskScheduler
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe" scan upload
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"ctfmon.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
"C:\WINDOWS\system32\wwahost.exe" -ServerName:Netflix.App.wwa.bt
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x.AppX368sbpk1kx658x0p332evjk2v0y02kxp.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" PendingTask
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXemn3t55segp7q92mwd35v2a5rk5mvwyz.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19111.85.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX54h2e8jwdm50fj5ha8987vz1etpx7czd.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXggkaqzf6p31g37n0m8phzeswb0rt9m7e.mca
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Windows\RTFTrack.exe"
C:\WINDOWS\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun -cv:GPi25uikUECpMfnj.1
"C:\Program Files\Lenovo\LenovoUtility\utility.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe" importagent
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --flag-switches-begin --flag-switches-end --restore-last-session
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Richie\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Richie\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=78.0.3904.108 --initial-client-data=0x88,0x8c,0x90,0x80,0x94,0x7ffaef2aed58,0x7ffaef2aed68,0x7ffaef2aed78
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=8432 --on-initialized-event-handle=72 --parent-handle=264 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=7815009555443923379 --mojo-platform-channel-handle=1616 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --service-sandbox-type=network --service-request-channel-token=9969448988069932149 --mojo-platform-channel-handle=1976 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1508160136094733266 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2856 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=574650809178521544 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2992 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=12216688167014492393 --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3648 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\Richie\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10949977240399490810 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3684 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10849468015593935773 --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1860 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10195368155379470738 --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4440 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=13599298176664083059 --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6048 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9530625230777260769 --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6044 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15961426602233341602 --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6324 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17264436462443491777 --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6616 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17981201438509934894 --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6924 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15475841485612124434 --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17056414800437519982 --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7236 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=18204730251700423184 --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2244 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16645391216979174893 --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10248 /prefetch:1
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14307930960499937825 --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2368 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16428222091391607772 --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=345931044238503889 --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10828 /prefetch:1
C:\WINDOWS\system32\wbem\WmiApSrv.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=5058538541439402029 --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4436 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3440428244761135014 --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9560 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17236611738889211656 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1771723151564614221 --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9060 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8635918986226885915 --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2608 /prefetch:1
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 784 788 796 8192 792
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --service-sandbox-type=audio --service-request-channel-token=5620664298635568879 --mojo-platform-channel-handle=8200 /prefetch:8
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
"C:\Users\Richie\Downloads\RSITx64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9647525035428050405 --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8768 /prefetch:1
"C:\Program Files (x86)\Lenovo\System Update\tvsu.exe" PendingTask
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-26 221664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-04 166360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-20 480200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-20 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-04 1402624]
"RtsFT"=C:\Windows\RTFTrack.exe [2015-06-16 5060864]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-25 36352]
"LenovoUtility"=C:\Program Files\Lenovo\LenovoUtility\utility.exe [2017-02-11 791848]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-04 13885696]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-04 1402624]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-04 1402624]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2019-10-08 2872400]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2019-10-03 302904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\SysWOW64\OneDriveSetup.exe [2018-09-15 27860280]
"PhotoMasterImportAgent"=C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [2016-09-22 675608]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2019-04-29 3152160]
"com.squirrel.Teams.Teams"=C:\Users\Richie\AppData\Local\Microsoft\Teams\Update.exe [2019-08-19 1789768]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2017-03-27 2404952]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2019-09-10 1240656]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-12-07 15:42:18 ----D---- C:\rsit
2019-12-07 11:19:19 ----D---- C:\WINDOWS\LastGood.Tmp
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2019-12-07 11:08:19 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-12-07 11:08:19 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2019-12-07 11:08:17 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2019-12-07 11:08:17 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-12-07 11:08:17 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2019-12-07 11:08:17 ----A---- C:\WINDOWS\system32\OpenCL.dll
2019-12-07 11:08:13 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2019-12-07 11:08:13 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-12-07 11:08:09 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2019-12-07 11:08:09 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\nvdispgenco6444141.dll
2019-12-07 11:08:05 ----A---- C:\WINDOWS\system32\nvdispco6444141.dll
2019-12-07 11:08:02 ----A---- C:\WINDOWS\system32\nvcuda.dll
2019-12-07 11:08:01 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2019-12-07 11:08:01 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2019-12-07 11:08:01 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2019-12-07 11:07:59 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2019-12-07 11:07:59 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2019-12-07 11:07:58 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2019-12-05 21:49:31 ----D---- C:\WINDOWS\Minidump
2019-11-13 18:57:08 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-11-13 18:57:08 ----A---- C:\WINDOWS\SYSWOW64\gnsdk_fp.dll
2019-11-13 18:57:08 ----A---- C:\WINDOWS\system32\wmp.dll
2019-11-13 18:56:53 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2019-11-13 18:56:53 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2019-11-13 18:56:52 ----A---- C:\WINDOWS\system32\mfps.dll
2019-11-13 18:56:52 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-13 18:56:52 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-11-13 18:56:43 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-11-13 18:56:43 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-11-13 18:56:43 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-11-13 18:56:42 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-11-13 18:56:41 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-11-13 18:56:39 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\VAN.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\msi.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-11-13 18:56:38 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-11-13 18:56:38 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 18:56:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-11-13 18:56:35 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-11-13 18:56:35 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\werui.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\jscript.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\upnphost.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\udhisapi.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\sud.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\spacebridge.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 18:56:31 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-11-13 18:56:31 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-11-13 18:56:31 ----A---- C:\WINDOWS\SYSWOW64\prntvpt.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\usp10.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\compact.exe
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\AssignedAccessRuntime.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\system32\policymanager.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\cryptui.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\usp10.dll
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\ntdll.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\nsi.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2019-11-13 18:56:19 ----A---- C:\WINDOWS\SYSWOW64\nsi.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\uxtheme.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\dwm.exe
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\ubpm.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\twinui.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\taskschd.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\taskhostw.exe
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\msctf.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\compact.exe
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\invagent.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\devinv.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\winresume.exe
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\winload.exe
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 18:56:11 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-11-13 18:56:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 18:56:10 ----A---- C:\WINDOWS\system32\NotificationController.dll
2019-11-13 18:56:10 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-11-13 18:56:09 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 18:56:08 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 18:56:06 ----A---- C:\WINDOWS\system32\OpenWith.exe
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\shell32.dll
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\prntvpt.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2019-11-13 18:56:03 ----A---- C:\WINDOWS\system32\hal.dll
2019-11-13 18:56:03 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2019-11-13 18:56:03 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 18:56:02 ----A---- C:\WINDOWS\system32\user32.dll
2019-11-13 18:56:02 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 18:56:02 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\wpnservice.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\wpncore.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\drivers\pacer.sys
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\tquery.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\mssph.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\qmgr.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-11-13 18:55:56 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-11-13 18:55:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\splwow64.exe
2019-11-13 18:55:54 ----A---- C:\WINDOWS\explorer.exe
2019-11-13 18:55:53 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2019-11-13 18:55:53 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-11-13 18:55:46 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-11-13 18:55:46 ----A---- C:\WINDOWS\system32\wbengine.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-11-13 18:55:45 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-11-13 18:55:45 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\system32\wer.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-11-13 18:55:43 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\system32\aepic.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\wldp.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\Wldap32.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\userenv.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\tzres.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\crypt32.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\ci.dll
2019-11-13 18:55:41 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
======List of files/folders modified in the last 1 month======
2019-12-07 15:42:23 ----D---- C:\WINDOWS\Temp
2019-12-07 15:42:22 ----D---- C:\Program Files\trend micro
2019-12-07 15:41:44 ----D---- C:\WINDOWS\Prefetch
2019-12-07 15:39:54 ----D---- C:\ProgramData\NVIDIA
2019-12-07 15:38:49 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-12-07 15:38:30 ----D---- C:\WINDOWS\System32
2019-12-07 15:38:30 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-12-07 15:36:53 ----D---- C:\Windows
2019-12-07 15:36:36 ----D---- C:\WINDOWS\system32\sru
2019-12-07 15:36:36 ----D---- C:\WINDOWS\system32\catroot2
2019-12-07 14:55:34 ----D---- C:\WINDOWS\system32\DriverStore
2019-12-07 14:55:32 ----D---- C:\WINDOWS\INF
2019-12-07 14:54:30 ----D---- C:\WINDOWS\system32\SleepStudy
2019-12-07 12:23:59 ----RD---- C:\WINDOWS\Microsoft.NET
2019-12-07 11:25:26 ----D---- C:\WINDOWS\system32\drivers
2019-12-07 11:20:06 ----D---- C:\WINDOWS\SysWOW64
2019-12-07 10:33:56 ----D---- C:\ProgramData\NVIDIA Corporation
2019-12-07 10:33:38 ----D---- C:\WINDOWS\system32\Tasks
2019-12-07 10:33:38 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2019-12-07 10:33:21 ----D---- C:\Program Files\NVIDIA Corporation
2019-12-06 12:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2019-12-06 11:32:17 ----SHD---- C:\System Volume Information
2019-12-06 11:31:33 ----D---- C:\WINDOWS\Logs
2019-12-06 10:39:16 ----D---- C:\WINDOWS\system32\config
2019-12-05 15:19:58 ----HD---- C:\Program Files\WindowsApps
2019-12-05 15:19:39 ----D---- C:\WINDOWS\AppReadiness
2019-12-04 16:59:19 ----D---- C:\Users\Richie\AppData\Roaming\vlc
2019-12-03 21:33:30 ----A---- C:\WINDOWS\system32\nvapi64.dll
2019-11-30 16:06:38 ----D---- C:\Users\Richie\AppData\Roaming\uTorrent
2019-11-23 16:33:49 ----D---- C:\Users\Richie\AppData\Roaming\TS3Client
2019-11-22 22:12:42 ----SHDC---- C:\WINDOWS\Installer
2019-11-22 22:11:11 ----AD---- C:\Program Files (x86)\Microsoft Office
2019-11-20 23:44:54 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2019-11-20 23:44:54 ----A---- C:\WINDOWS\system32\nvcpl.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nvshext.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nvmctray.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2019-11-20 23:44:49 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2019-11-18 22:25:48 ----D---- C:\WINDOWS\system32\WDI
2019-11-15 01:54:31 ----D---- C:\WINDOWS\WinSxS
2019-11-14 22:54:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-13 19:44:54 ----D---- C:\WINDOWS\SYSWOW64\Dism
2019-11-13 19:44:54 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2019-11-13 19:44:50 ----D---- C:\WINDOWS\system32\wbem
2019-11-13 19:44:49 ----D---- C:\WINDOWS\system32\oobe
2019-11-13 19:44:49 ----D---- C:\WINDOWS\system32\en-US
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\Dism
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\Boot
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\ar-SA
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\appraiser
2019-11-13 19:44:39 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-11-13 19:44:39 ----D---- C:\WINDOWS\ShellExperiences
2019-11-13 19:44:39 ----D---- C:\WINDOWS\PolicyDefinitions
2019-11-13 19:44:39 ----D---- C:\WINDOWS\bcastdvr
2019-11-13 19:44:39 ----D---- C:\WINDOWS\apppatch
2019-11-13 19:00:20 ----D---- C:\WINDOWS\system32\MRT
2019-11-13 19:00:13 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-11-13 18:59:56 ----D---- C:\WINDOWS\CbsTemp
2019-11-13 18:10:21 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-07-24 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-12-29 55608]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-09-15 87552]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-03-03 452096]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-12-29 51712]
R3 ACPIVPC;@oem19.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2016-10-18 45048]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-08-13 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 ETD;@oem25.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-09-14 468568]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2015-09-14 30808]
R3 ibtusb;@oem41.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2018-05-10 136720]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-04-23 7970296]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-04 4486400]
R3 MEIx64;@oem1.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-04-14 202848]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2018-09-15 3485696]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_a007f4012189297e\nvlddmkm.sys [2019-12-03 22744696]
R3 nvvad_WaveExtensible;@oem10.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-04-17 69840]
R3 nvvhci;@oem15.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2019-08-23 75600]
R3 rt640x64;@oem31.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-23 895256]
R3 RTSPER;@oem40.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-06-15 761600]
R3 rtsuvc;@oem20.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-06-16 3068160]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-08-13 134968]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-10-10 104464]
S3 BthA2DP;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-11-13 215040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-12-29 111104]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2018-09-15 56832]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-07-09 91136]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-08-13 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2013-07-03 46136]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-11-13 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 IntcDAud;@oem36.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-10-10 290304]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2019-07-23 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-08-13 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-04-10 981816]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]
S4 RsFx0411;RsFx0411 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0411.sys [2018-03-04 261792]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2017-01-31 173472]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-10 88136]
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2017-03-14 771672]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2019-10-08 3147344]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2019-10-08 2914896]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2019-08-26 96056]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_6110e;Connected Devices Platform User Service_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-11-17 11650416]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-09-14 134888]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-22 18856]
R2 ibtsiva;@oem41.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-04-23 373752]
R2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-09-27 858480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-11-20 860016]
R2 OneSyncSvc_6110e;Sync Host_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_6110e;Používateľská služba schránky_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-12-29 43632]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-08-13 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2017-02-27 688992]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-10 153752]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2019-04-10 255128]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService_6110e;GameDVR and Broadcast User Service_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2019-03-27 8473200]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_6110e;Služba podpory používateľov rozhrania Bluetooth_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_6110e;CaptureService_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_6110e;ConsentUX_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-04-23 301560]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_6110e;DevicePicker_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_6110e;DevicesFlow_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-05-18 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-03-08 774272]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe [2019-11-16 1110512]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-10 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-10-03 658232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_6110e;MessagingService_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2018-03-18 392880]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-09-27 858480]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 219656]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc_6110e;Kontaktné údaje_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_6110e;PrintWorkflow_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-09-15 1269248]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Richie at 2019-12-07 15:42:18
Microsoft Windows 10 Home
System drive C: has 589 GB (62%) free of 953 GB
Total RAM: 16296 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:42:26, on 7.12.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0771)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\Richie.exe
C:\Program Files (x86)\Lenovo\System Update\tvsu.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [PhotoMasterImportAgent] "C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe" importagent
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Richie\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SQLTELEMETRY$SQLEXPRESS')
O4 - HKUS\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'SQLTELEMETRY$SQLEXPRESS')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CCSDK - Lenovo - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem41.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50303 (SNMP) - Unknown owner - C:\WINDOWS\System32\snmp.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12675 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
winlogon.exe
"fontdrvhost.exe"
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\dxgiadaptercache.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\AUDIODG.EXE 0x4a4
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\snmp.exe
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k apphost -s AppHostSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k iissvcs
dashost.exe {4f308001-9e0d-472c-97169b5859e6984f}
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service SQLEXPRESS
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
rundll32.exe "c:\program files\nvidia corporation\nvstreamsrv\rxdiag.dll" RxDiagSetRuntimeMessagePump
C:\WINDOWS\system32\compattelrunner.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wermgr.exe -upload
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe" --launcher=TaskScheduler
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe" scan upload
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"ctfmon.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
"C:\WINDOWS\system32\wwahost.exe" -ServerName:Netflix.App.wwa.bt
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x.AppX368sbpk1kx658x0p332evjk2v0y02kxp.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe" PendingTask
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXemn3t55segp7q92mwd35v2a5rk5mvwyz.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19111.85.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX54h2e8jwdm50fj5ha8987vz1etpx7czd.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXggkaqzf6p31g37n0m8phzeswb0rt9m7e.mca
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Windows\RTFTrack.exe"
C:\WINDOWS\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun -cv:GPi25uikUECpMfnj.1
"C:\Program Files\Lenovo\LenovoUtility\utility.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe" importagent
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --flag-switches-begin --flag-switches-end --restore-last-session
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Richie\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Richie\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=78.0.3904.108 --initial-client-data=0x88,0x8c,0x90,0x80,0x94,0x7ffaef2aed58,0x7ffaef2aed68,0x7ffaef2aed78
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=8432 --on-initialized-event-handle=72 --parent-handle=264 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=7815009555443923379 --mojo-platform-channel-handle=1616 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --service-sandbox-type=network --service-request-channel-token=9969448988069932149 --mojo-platform-channel-handle=1976 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1508160136094733266 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2856 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --extension-process --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=574650809178521544 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2992 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=12216688167014492393 --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3648 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\Richie\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10949977240399490810 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3684 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10849468015593935773 --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1860 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10195368155379470738 --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4440 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=13599298176664083059 --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6048 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9530625230777260769 --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6044 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15961426602233341602 --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6324 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17264436462443491777 --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6616 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17981201438509934894 --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6924 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15475841485612124434 --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17056414800437519982 --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7236 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=18204730251700423184 --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2244 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16645391216979174893 --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10248 /prefetch:1
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14307930960499937825 --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2368 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16428222091391607772 --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=345931044238503889 --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10828 /prefetch:1
C:\WINDOWS\system32\wbem\WmiApSrv.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=5058538541439402029 --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4436 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3440428244761135014 --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9560 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17236611738889211656 --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1771723151564614221 --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9060 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8635918986226885915 --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2608 /prefetch:1
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 784 788 796 8192 792
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --service-sandbox-type=audio --service-request-channel-token=5620664298635568879 --mojo-platform-channel-handle=8200 /prefetch:8
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
"C:\Users\Richie\Downloads\RSITx64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1588,3266075886715336570,11981269187795264968,131072 --lang=sk --disable-client-side-phishing-detection --enable-auto-reload --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9647525035428050405 --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8768 /prefetch:1
"C:\Program Files (x86)\Lenovo\System Update\tvsu.exe" PendingTask
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-26 221664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-04 166360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-20 480200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-20 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-04 1402624]
"RtsFT"=C:\Windows\RTFTrack.exe [2015-06-16 5060864]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-25 36352]
"LenovoUtility"=C:\Program Files\Lenovo\LenovoUtility\utility.exe [2017-02-11 791848]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-04 13885696]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-04 1402624]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-04 1402624]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2019-10-08 2872400]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2019-10-03 302904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\SysWOW64\OneDriveSetup.exe [2018-09-15 27860280]
"PhotoMasterImportAgent"=C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [2016-09-22 675608]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2019-04-29 3152160]
"com.squirrel.Teams.Teams"=C:\Users\Richie\AppData\Local\Microsoft\Teams\Update.exe [2019-08-19 1789768]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2017-03-27 2404952]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2019-09-10 1240656]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-12-07 15:42:18 ----D---- C:\rsit
2019-12-07 11:19:19 ----D---- C:\WINDOWS\LastGood.Tmp
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2019-12-07 11:08:19 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2019-12-07 11:08:19 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-12-07 11:08:19 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2019-12-07 11:08:17 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2019-12-07 11:08:17 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-12-07 11:08:17 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2019-12-07 11:08:17 ----A---- C:\WINDOWS\system32\OpenCL.dll
2019-12-07 11:08:13 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2019-12-07 11:08:13 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-12-07 11:08:09 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2019-12-07 11:08:09 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2019-12-07 11:08:08 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-12-07 11:08:06 ----A---- C:\WINDOWS\system32\nvdispgenco6444141.dll
2019-12-07 11:08:05 ----A---- C:\WINDOWS\system32\nvdispco6444141.dll
2019-12-07 11:08:02 ----A---- C:\WINDOWS\system32\nvcuda.dll
2019-12-07 11:08:01 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2019-12-07 11:08:01 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2019-12-07 11:08:01 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2019-12-07 11:07:59 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2019-12-07 11:07:59 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2019-12-07 11:07:58 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2019-12-05 21:49:31 ----D---- C:\WINDOWS\Minidump
2019-11-13 18:57:08 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-11-13 18:57:08 ----A---- C:\WINDOWS\SYSWOW64\gnsdk_fp.dll
2019-11-13 18:57:08 ----A---- C:\WINDOWS\system32\wmp.dll
2019-11-13 18:56:53 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2019-11-13 18:56:53 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2019-11-13 18:56:52 ----A---- C:\WINDOWS\system32\mfps.dll
2019-11-13 18:56:52 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-13 18:56:52 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-11-13 18:56:43 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-11-13 18:56:43 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-11-13 18:56:43 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-11-13 18:56:42 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-11-13 18:56:41 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-11-13 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-11-13 18:56:39 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\VAN.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\msi.dll
2019-11-13 18:56:39 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-11-13 18:56:38 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-11-13 18:56:38 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 18:56:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-11-13 18:56:35 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-11-13 18:56:35 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\werui.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-11-13 18:56:34 ----A---- C:\WINDOWS\system32\jscript.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\upnphost.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\udhisapi.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\sud.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\spacebridge.dll
2019-11-13 18:56:32 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 18:56:31 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-11-13 18:56:31 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-11-13 18:56:31 ----A---- C:\WINDOWS\SYSWOW64\prntvpt.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\usp10.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2019-11-13 18:56:28 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 18:56:27 ----A---- C:\WINDOWS\SYSWOW64\compact.exe
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-11-13 18:56:26 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\CapabilityAccessManagerClient.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 18:56:25 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-11-13 18:56:24 ----A---- C:\WINDOWS\SYSWOW64\AssignedAccessRuntime.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\system32\policymanager.dll
2019-11-13 18:56:23 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\cryptui.dll
2019-11-13 18:56:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\usp10.dll
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-11-13 18:56:21 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\ntdll.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\nsi.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-11-13 18:56:20 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2019-11-13 18:56:19 ----A---- C:\WINDOWS\SYSWOW64\nsi.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\uxtheme.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\dwm.exe
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-11-13 18:56:19 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\ubpm.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\twinui.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\taskschd.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\taskhostw.exe
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\msctf.dll
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2019-11-13 18:56:18 ----A---- C:\WINDOWS\system32\compact.exe
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\invagent.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\devinv.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-11-13 18:56:17 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\winresume.exe
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\winload.exe
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-11-13 18:56:16 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 18:56:11 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-11-13 18:56:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 18:56:10 ----A---- C:\WINDOWS\system32\NotificationController.dll
2019-11-13 18:56:10 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-11-13 18:56:09 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 18:56:08 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 18:56:06 ----A---- C:\WINDOWS\system32\OpenWith.exe
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\shell32.dll
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-11-13 18:56:05 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\prntvpt.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 18:56:04 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2019-11-13 18:56:03 ----A---- C:\WINDOWS\system32\hal.dll
2019-11-13 18:56:03 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2019-11-13 18:56:03 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 18:56:02 ----A---- C:\WINDOWS\system32\user32.dll
2019-11-13 18:56:02 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 18:56:02 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\wpnservice.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\wpncore.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 18:56:01 ----A---- C:\WINDOWS\system32\drivers\pacer.sys
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\tquery.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\mssph.dll
2019-11-13 18:56:00 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-13 18:55:59 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 18:55:58 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\qmgr.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 18:55:57 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-11-13 18:55:56 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-11-13 18:55:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 18:55:55 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-11-13 18:55:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 18:55:54 ----A---- C:\WINDOWS\splwow64.exe
2019-11-13 18:55:54 ----A---- C:\WINDOWS\explorer.exe
2019-11-13 18:55:53 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2019-11-13 18:55:53 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-13 18:55:47 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-11-13 18:55:46 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-11-13 18:55:46 ----A---- C:\WINDOWS\system32\wbengine.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-11-13 18:55:45 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-11-13 18:55:45 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-11-13 18:55:45 ----A---- C:\WINDOWS\system32\wer.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-11-13 18:55:44 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-11-13 18:55:43 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-11-13 18:55:43 ----A---- C:\WINDOWS\system32\aepic.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\wldp.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\Wldap32.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\userenv.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\tzres.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\crypt32.dll
2019-11-13 18:55:42 ----A---- C:\WINDOWS\system32\ci.dll
2019-11-13 18:55:41 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 18:55:40 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2019-11-13 18:55:39 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-11-13 18:55:31 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-11-13 18:55:17 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
======List of files/folders modified in the last 1 month======
2019-12-07 15:42:23 ----D---- C:\WINDOWS\Temp
2019-12-07 15:42:22 ----D---- C:\Program Files\trend micro
2019-12-07 15:41:44 ----D---- C:\WINDOWS\Prefetch
2019-12-07 15:39:54 ----D---- C:\ProgramData\NVIDIA
2019-12-07 15:38:49 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-12-07 15:38:30 ----D---- C:\WINDOWS\System32
2019-12-07 15:38:30 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-12-07 15:36:53 ----D---- C:\Windows
2019-12-07 15:36:36 ----D---- C:\WINDOWS\system32\sru
2019-12-07 15:36:36 ----D---- C:\WINDOWS\system32\catroot2
2019-12-07 14:55:34 ----D---- C:\WINDOWS\system32\DriverStore
2019-12-07 14:55:32 ----D---- C:\WINDOWS\INF
2019-12-07 14:54:30 ----D---- C:\WINDOWS\system32\SleepStudy
2019-12-07 12:23:59 ----RD---- C:\WINDOWS\Microsoft.NET
2019-12-07 11:25:26 ----D---- C:\WINDOWS\system32\drivers
2019-12-07 11:20:06 ----D---- C:\WINDOWS\SysWOW64
2019-12-07 10:33:56 ----D---- C:\ProgramData\NVIDIA Corporation
2019-12-07 10:33:38 ----D---- C:\WINDOWS\system32\Tasks
2019-12-07 10:33:38 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2019-12-07 10:33:21 ----D---- C:\Program Files\NVIDIA Corporation
2019-12-06 12:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2019-12-06 11:32:17 ----SHD---- C:\System Volume Information
2019-12-06 11:31:33 ----D---- C:\WINDOWS\Logs
2019-12-06 10:39:16 ----D---- C:\WINDOWS\system32\config
2019-12-05 15:19:58 ----HD---- C:\Program Files\WindowsApps
2019-12-05 15:19:39 ----D---- C:\WINDOWS\AppReadiness
2019-12-04 16:59:19 ----D---- C:\Users\Richie\AppData\Roaming\vlc
2019-12-03 21:33:30 ----A---- C:\WINDOWS\system32\nvapi64.dll
2019-11-30 16:06:38 ----D---- C:\Users\Richie\AppData\Roaming\uTorrent
2019-11-23 16:33:49 ----D---- C:\Users\Richie\AppData\Roaming\TS3Client
2019-11-22 22:12:42 ----SHDC---- C:\WINDOWS\Installer
2019-11-22 22:11:11 ----AD---- C:\Program Files (x86)\Microsoft Office
2019-11-20 23:44:54 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2019-11-20 23:44:54 ----A---- C:\WINDOWS\system32\nvcpl.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nvshext.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nvmctray.dll
2019-11-20 23:44:50 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2019-11-20 23:44:49 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2019-11-18 22:25:48 ----D---- C:\WINDOWS\system32\WDI
2019-11-15 01:54:31 ----D---- C:\WINDOWS\WinSxS
2019-11-14 22:54:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-13 19:44:54 ----D---- C:\WINDOWS\SYSWOW64\Dism
2019-11-13 19:44:54 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2019-11-13 19:44:50 ----D---- C:\WINDOWS\system32\wbem
2019-11-13 19:44:49 ----D---- C:\WINDOWS\system32\oobe
2019-11-13 19:44:49 ----D---- C:\WINDOWS\system32\en-US
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\Dism
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\Boot
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\ar-SA
2019-11-13 19:44:48 ----D---- C:\WINDOWS\system32\appraiser
2019-11-13 19:44:39 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-11-13 19:44:39 ----D---- C:\WINDOWS\ShellExperiences
2019-11-13 19:44:39 ----D---- C:\WINDOWS\PolicyDefinitions
2019-11-13 19:44:39 ----D---- C:\WINDOWS\bcastdvr
2019-11-13 19:44:39 ----D---- C:\WINDOWS\apppatch
2019-11-13 19:00:20 ----D---- C:\WINDOWS\system32\MRT
2019-11-13 19:00:13 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-11-13 18:59:56 ----D---- C:\WINDOWS\CbsTemp
2019-11-13 18:10:21 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-07-24 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-12-29 55608]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-09-15 87552]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-03-03 452096]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-12-29 51712]
R3 ACPIVPC;@oem19.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2016-10-18 45048]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-08-13 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 ETD;@oem25.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-09-14 468568]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2015-09-14 30808]
R3 ibtusb;@oem41.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2018-05-10 136720]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-04-23 7970296]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-04 4486400]
R3 MEIx64;@oem1.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-04-14 202848]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2018-09-15 3485696]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_a007f4012189297e\nvlddmkm.sys [2019-12-03 22744696]
R3 nvvad_WaveExtensible;@oem10.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-04-17 69840]
R3 nvvhci;@oem15.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2019-08-23 75600]
R3 rt640x64;@oem31.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-23 895256]
R3 RTSPER;@oem40.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-06-15 761600]
R3 rtsuvc;@oem20.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-06-16 3068160]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-08-13 134968]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-10-10 104464]
S3 BthA2DP;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-11-13 215040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2018-12-29 111104]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2018-09-15 56832]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-07-09 91136]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-08-13 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2013-07-03 46136]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-11-13 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 IntcDAud;@oem36.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-10-10 290304]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2019-07-23 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-08-13 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-04-10 981816]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]
S4 RsFx0411;RsFx0411 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0411.sys [2018-03-04 261792]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2017-01-31 173472]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-10 88136]
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2017-03-14 771672]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2019-10-08 3147344]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2019-10-08 2914896]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2019-08-26 96056]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_6110e;Connected Devices Platform User Service_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-11-17 11650416]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-09-14 134888]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-22 18856]
R2 ibtsiva;@oem41.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-04-23 373752]
R2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-09-27 858480]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-11-20 860016]
R2 OneSyncSvc_6110e;Sync Host_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_6110e;Používateľská služba schránky_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-12-29 43632]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-08-13 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2017-02-27 688992]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-10 153752]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2019-04-10 255128]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService_6110e;GameDVR and Broadcast User Service_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2019-03-27 8473200]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_6110e;Služba podpory používateľov rozhrania Bluetooth_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_6110e;CaptureService_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_6110e;ConsentUX_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-04-23 301560]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_6110e;DevicePicker_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_6110e;DevicesFlow_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-05-18 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-03-08 774272]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe [2019-11-16 1110512]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-10 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-10-03 658232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_6110e;MessagingService_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL13.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2018-03-18 392880]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-09-27 858480]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 219656]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc_6110e;Kontaktné údaje_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_6110e;PrintWorkflow_6110e; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-09-15 1269248]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
-----------------EOF-----------------
Stiahni AdwCleaner: