BSOD Kernel, možná virus?
Napsal: 29 čer 2020 05:48
Zdravím,
už delší dobu mi hází PC modré obrazovky a vůbec netuším, z čeho by to mohlo být. Přikládám logy.
Logfile of random's system information tool 1.10 (written by random/random)
Run by David at 2020-06-29 06:45:56
Microsoft Windows 10 Home
System drive C: has 40 GB (18%) free of 228 GB
Total RAM: 8137 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:45:59, on 29.06.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\David.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [OneDrive] "C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU\..\Run: [Battle.net] "C:\Program Files (x86)\Battle.net\Battle.net.exe" --autostarted
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Ubisoft Game Launcher] "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -uplay_silent
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: chrome.lnk = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Export do &Tahiti - C:\Program Files (x86)\LightComp eDoklady Skenováni\iehelper.html
O8 - Extra context menu item: Poslat do On&eNotu - res://C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_3f536 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HPSmartDeviceAgentBase - Unknown owner - c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Adaptér výkonu rozhraní WMI (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11368 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-675a2de3-e0c3-4854-996a-68cf4c7dcb3b -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3ca43095-46c5-494a-9b77-2b3abd248fca -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-d42e9834-6d8f-4e6a-85e3-29cc10f19402 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9c0cc2d2-211a-4287-b7b8-cceaa8a94ebb -LifetimeId:695df96e-01a9-4e3c-a098-143d1e6b2cbf -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="9E1824E3-6E43-A4FE-AD6D-58918FEA4701" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\Windows\system32\IProsetMonitor.exe
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
rundll32.exe "c:\program files\nvidia corporation\nvstreamsrv\rxdiag.dll" RxDiagSetRuntimeMessagePump
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20052.148.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\TiltWheelMouse.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
AvastUI.exe /nogui
"C:\Program Files (x86)\Gyazo\GyStation.exe"
"C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe" -uplay_silent
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/UplayWebCore.exe" --type=renderer --no-sandbox --disable-features=TouchpadAndWheelScrollLatching --service-pipe-token=B6785D0D32CD49A4E8433F4210F9B84E --lang=en-US --locales-dir-path="C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/locales/1/" --log-file="C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\debug.log" --disable-spell-checking --enable-system-flash --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=B6785D0D32CD49A4E8433F4210F9B84E --renderer-client-id=4 --mojo-platform-channel-handle=2460 /prefetch:1
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
dashost.exe {776bfa9c-7a78-4147-9faab55988834d0b}
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=7860,2041565709453498514,5697487025824945193,131072 --no-sandbox --log-file="C:\Users\David\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.4.2410)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=904268754221191647 --mojo-platform-channel-handle=8132 /prefetch:2
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\AUDIODG.EXE 0x710
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\David\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=83.0.4103.116 --initial-client-data=0xd8,0xdc,0xe0,0xb4,0xe4,0x7ffe299abd28,0x7ffe299abd38,0x7ffe299abd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --mojo-platform-channel-handle=1580 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1884 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3924 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4172 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4116 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4200 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=2332 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=99 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9140 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=135 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9144 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=147 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7460 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\David\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\3911gjs4.default
prefs.js - "browser.startup.homepage" - "https://www.facebook.com/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=4.0.0-dev]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 2177328]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 1522480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-14 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-09-17 16404224]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2013-04-09 241152]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-06-23 36352]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-06-03 108136]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2018-11-02 3942936]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-02-07 1573224]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2018-10-04 1384840]
"Battle.net"=C:\Program Files (x86)\Battle.net\Battle.net.exe [2020-05-28 1136104]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-10-16 24552064]
"TSMApplication"=C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [2020-05-11 1623040]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2020-02-09 365160]
"Ubisoft Game Launcher"=C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [2020-06-16 471360]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-06-29 06:45:56 ----D---- C:\rsit
2020-06-22 14:51:31 ----A---- C:\WINDOWS\system32\drivers\farflt.sys
2020-06-22 14:23:17 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-06-15 21:41:41 ----D---- C:\ProgramData\obs-studio-hook
2020-06-15 20:24:40 ----D---- C:\Users\David\AppData\Roaming\BSplayer PRO
2020-06-15 20:24:39 ----D---- C:\Program Files (x86)\Webteh
2020-06-14 02:20:07 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2020-06-14 01:01:08 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\wmp.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\wbengine.exe
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\msra.exe
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\bdesvc.dll
2020-06-14 01:01:06 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-06-14 01:01:06 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\wmidx.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mswmdm.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-06-14 01:00:59 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\wmidx.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mswmdm.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfds.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mf.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-06-14 01:00:57 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\wkspbrokerAx.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\wavemsp.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\termmgr.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\SecurityCenterBrokerPS.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\psisdecd.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\tapi3.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\cdosys.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-06-14 01:00:53 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-06-14 01:00:53 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-06-14 01:00:53 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\imapi.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\iassdo.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\iasrecst.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\SYSWOW64\iasads.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\VAN.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\qedit.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\FileHistory.exe
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\wvc.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\WlanMM.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\wavemsp.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\termmgr.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\tapi3.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\rdpencom.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\quartz.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\qdvd.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\psisdecd.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\nltest.exe
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\nettrace.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\msi.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\LocationApi.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\FsIso.exe
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\devenum.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\mmc.exe
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\cic.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\cdosys.dll
2020-06-14 01:00:43 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-14 01:00:43 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-06-14 01:00:43 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\mshtmled.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\jscript.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\imapi2.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\imapi.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\dxtrans.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\wiaaut.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\werui.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iassdo.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iasrecst.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iasnap.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iasads.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\azroles.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\rdpviewerax.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\wwanmm.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\diagperf.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\msaatext.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\windowsperformancerecordercontrol.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\psr.exe
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-06-14 01:00:32 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-06-14 01:00:32 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-06-14 01:00:32 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\CertEnrollCtrl.exe
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\InkObjCore.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\atl.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\system32\spwizeng.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-06-14 01:00:28 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-06-14 01:00:28 ----A---- C:\WINDOWS\system32\rdpviewerax.dll
2020-06-14 01:00:28 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\rtutils.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\netshell.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\msaatext.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\gpsvc.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\gpapi.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\DismApi.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\Dism.exe
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\tdh.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\DAMM.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wpr.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\weretw.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wer.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\schannel.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\wksprt.exe
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\twinui.dll
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\combase.dll
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\ci.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\msctf.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\InkEd.dll
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\shell32.dll
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\psr.exe
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\comsvcs.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\VSSVC.exe
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\swprv.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\win32u.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\win32k.sys
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\NPSM.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\InkObjCore.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\qmgr.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\d2d1.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\cdd.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlansvc.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlansec.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlanapi.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wfdprov.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\provops.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\oleprn.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\netman.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\localspl.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\dot3mm.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\atlthunk.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\atl.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\splwow64.exe
2020-06-14 01:00:08 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-06-14 00:49:48 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-06-14 00:49:48 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-06-10 12:31:45 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2020-06-10 12:31:36 ----D---- C:\Program Files (x86)\Microsoft
2020-06-05 01:07:08 ----D---- C:\ProgramData\BlueStacks
2020-06-05 01:07:04 ----D---- C:\Program Files\BlueStacks
2020-06-03 20:04:55 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-06-03 20:04:55 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2020-06-01 21:56:54 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-06-01 21:53:09 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
======List of files/folders modified in the last 1 month======
2020-06-29 06:45:59 ----D---- C:\WINDOWS\Prefetch
2020-06-29 06:45:58 ----D---- C:\Program Files\trend micro
2020-06-29 06:39:53 ----D---- C:\WINDOWS\Temp
2020-06-29 06:39:40 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-06-29 06:15:49 ----D---- C:\WINDOWS\System32
2020-06-29 06:15:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-29 06:15:46 ----D---- C:\WINDOWS\INF
2020-06-29 06:10:01 ----D---- C:\ProgramData\NVIDIA
2020-06-29 06:09:59 ----D---- C:\WINDOWS\system32\drivers
2020-06-29 06:09:40 ----D---- C:\WINDOWS\system32\SleepStudy
2020-06-29 06:09:40 ----D---- C:\WINDOWS\Minidump
2020-06-29 06:09:38 ----D---- C:\Windows
2020-06-29 06:07:11 ----D---- C:\Users\David\AppData\Roaming\uTorrent
2020-06-29 05:23:00 ----D---- C:\WINDOWS\system32\sru
2020-06-28 20:47:03 ----RD---- C:\WINDOWS\Microsoft.NET
2020-06-28 20:47:00 ----D---- C:\WINDOWS\Logs
2020-06-28 05:49:18 ----D---- C:\Users\David\AppData\Roaming\slobs-client
2020-06-27 00:13:49 ----D---- C:\WINDOWS\AppReadiness
2020-06-27 00:13:38 ----HD---- C:\Program Files\WindowsApps
2020-06-26 18:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2020-06-26 01:04:05 ----D---- C:\WINDOWS\system32\config
2020-06-24 18:43:45 ----SHD---- C:\System Volume Information
2020-06-24 17:29:42 ----AD---- C:\Users\David\AppData\Roaming\Curse Client
2020-06-24 00:20:53 ----D---- C:\Users\David\AppData\Roaming\vlc
2020-06-22 14:40:49 ----D---- C:\WINDOWS\system32\catroot2
2020-06-22 14:23:28 ----D---- C:\WINDOWS\system32\Tasks
2020-06-22 14:23:17 ----HD---- C:\WINDOWS\ELAMBKUP
2020-06-19 15:43:27 ----D---- C:\Program Files (x86)\Mozilla Firefox
2020-06-19 04:27:37 ----AD---- C:\World of Warcraft
2020-06-18 00:28:09 ----D---- C:\Program Files (x86)\Steam
2020-06-17 20:24:09 ----D---- C:\WINDOWS\WinSxS
2020-06-15 21:41:41 ----HD---- C:\ProgramData
2020-06-15 21:41:28 ----D---- C:\Program Files\Streamlabs OBS
2020-06-15 20:48:23 ----D---- C:\Users\David\AppData\Roaming\foobar2000
2020-06-15 20:24:39 ----RD---- C:\Program Files (x86)
2020-06-14 01:54:27 ----D---- C:\WINDOWS\system32\DriverStore
2020-06-14 01:53:09 ----SD---- C:\WINDOWS\SYSWOW64\F12
2020-06-14 01:53:09 ----SD---- C:\WINDOWS\system32\F12
2020-06-14 01:53:09 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\wbem
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\Com
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SysWOW64
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SystemResources
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\wbem
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\oobe
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\en-US
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\Dism
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\cs-CZ
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\Com
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2020-06-14 01:53:08 ----D---- C:\WINDOWS\ShellExperiences
2020-06-14 01:53:08 ----D---- C:\WINDOWS\bcastdvr
2020-06-14 01:53:08 ----D---- C:\WINDOWS\apppatch
2020-06-14 01:53:08 ----D---- C:\Program Files\Windows Photo Viewer
2020-06-14 01:53:08 ----D---- C:\Program Files\Windows Media Player
2020-06-14 01:53:08 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2020-06-14 01:53:08 ----D---- C:\Program Files (x86)\Windows Media Player
2020-06-14 01:53:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-06-14 01:03:23 ----D---- C:\WINDOWS\CbsTemp
2020-06-14 01:00:09 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-06-12 06:10:53 ----D---- C:\WINDOWS\system32\NDF
2020-06-11 00:14:56 ----D---- C:\Users\David\AppData\Roaming\Skype
2020-06-10 12:31:38 ----SD---- C:\ProgramData\Microsoft
2020-06-05 23:03:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2020-06-05 01:10:11 ----RD---- C:\Program Files
2020-06-04 03:44:39 ----D---- C:\Program Files (x86)\MSI Afterburner
2020-05-30 04:37:18 ----AD---- C:\Program Files\UNP
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-06-03 178768]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-06-03 60496]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-02-25 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-06-03 84856]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-06-09 322256]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-06-23 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-12 40960]
R1 AsrAppCharger;AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [2011-11-07 17192]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-06-03 205896]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-06-03 235088]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-06-03 42784]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-06-03 506152]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-06-03 109280]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-06-03 851608]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-06-15 462592]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2020-04-20 153312]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-06-03 175208]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-06-03 216824]
R2 BlueStacksDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\BstkDrv_bgp.sys [2020-04-07 315976]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-14 457216]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2020-06-22 214496]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 dtlitescsibus;@oem26.inf,%DisplayName%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2020-02-09 42256]
R3 dtliteusbbus;@oem37.inf,%DisplayName%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2020-02-09 59360]
R3 e1dexpress;@oem27.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [2019-02-04 567880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-09-17 4603136]
R3 MBAMFarflt;MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [2020-06-22 196456]
R3 MBAMProtection;MBAMProtection; \??\C:\WINDOWS\system32\DRIVERS\mbam.sys [2020-06-29 73368]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2020-06-07 248968]
R3 MBAMWebProtection;MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [2020-06-29 131728]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-05-06 228992]
R3 NVHDA;@oem39.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2020-03-18 223120]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_bd3f48c82942380f\nvlddmkm.sys [2020-05-18 23454448]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem15.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2020-06-07 19912]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2020-04-20 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-12 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-14 117264]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-21 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-12 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-12 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-12 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-12 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 e1i65x64;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i65x64.sys [2019-03-19 553984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-21 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-04 64000]
S3 HPEWSFXBULK;HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [2016-09-13 29248]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-20 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-15 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2020-04-01 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-14 986936]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2017-08-27 14024]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-06-03 348968]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\AVAST Software\Avast\afwServ.exe [2020-06-03 1052984]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-06-18 142248]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_3f536;CDPUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-06-23 18856]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2015-05-07 272352]
R2 MBAMService;Malwarebytes Service; C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe [2020-03-11 6933272]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-03-18 850928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-05-16 873272]
R2 OneSyncSvc_3f536;OneSyncSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-06-03 6392728]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_3f536;cbdhsvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-02-09 4506728]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_3f536;PimIndexMaintenanceSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S2 HPSmartDeviceAgentBase;HPSmartDeviceAgentBase; c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe [2017-10-25 68608]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_3f536;AarSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-20 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_3f536;BcastDVRUserService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_3f536;BluetoothUserService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_3f536;CaptureService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_3f536;ConsentUxUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-14 380632]
S3 CredentialEnrollmentManagerUserSvc_3f536;CredentialEnrollmentManagerUserSvc_3f536; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-14 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_3f536;DeviceAssociationBrokerSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_3f536;DevicePickerUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_3f536;DevicesFlowUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-06-14 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-09-21 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe [2020-06-19 1287152]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_3f536;MessagingService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\83.0.478.56\elevation_service.exe [2020-06-24 1507208]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2020-04-08 244936]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2019-09-15 2431816]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_3f536;PrintWorkflowUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2019-11-28 474256]
-----------------EOF-----------------
už delší dobu mi hází PC modré obrazovky a vůbec netuším, z čeho by to mohlo být. Přikládám logy.
Logfile of random's system information tool 1.10 (written by random/random)
Run by David at 2020-06-29 06:45:56
Microsoft Windows 10 Home
System drive C: has 40 GB (18%) free of 228 GB
Total RAM: 8137 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:45:59, on 29.06.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\David.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
O4 - HKCU\..\Run: [OneDrive] "C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU\..\Run: [Battle.net] "C:\Program Files (x86)\Battle.net\Battle.net.exe" --autostarted
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [TSMApplication] "C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Ubisoft Game Launcher] "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -uplay_silent
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: chrome.lnk = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Export do &Tahiti - C:\Program Files (x86)\LightComp eDoklady Skenováni\iehelper.html
O8 - Extra context menu item: Poslat do On&eNotu - res://C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll/105
O9 - Extra button: Poslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Poslat do On&eNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_3f536 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HPSmartDeviceAgentBase - Unknown owner - c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Adaptér výkonu rozhraní WMI (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11368 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-675a2de3-e0c3-4854-996a-68cf4c7dcb3b -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3ca43095-46c5-494a-9b77-2b3abd248fca -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-d42e9834-6d8f-4e6a-85e3-29cc10f19402 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9c0cc2d2-211a-4287-b7b8-cceaa8a94ebb -LifetimeId:695df96e-01a9-4e3c-a098-143d1e6b2cbf -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="9E1824E3-6E43-A4FE-AD6D-58918FEA4701" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\Windows\system32\IProsetMonitor.exe
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
rundll32.exe "c:\program files\nvidia corporation\nvstreamsrv\rxdiag.dll" RxDiagSetRuntimeMessagePump
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20052.148.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\TiltWheelMouse.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
AvastUI.exe /nogui
"C:\Program Files (x86)\Gyazo\GyStation.exe"
"C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
"C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe" -uplay_silent
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/UplayWebCore.exe" --type=renderer --no-sandbox --disable-features=TouchpadAndWheelScrollLatching --service-pipe-token=B6785D0D32CD49A4E8433F4210F9B84E --lang=en-US --locales-dir-path="C:/Program Files (x86)/Ubisoft/Ubisoft Game Launcher/locales/1/" --log-file="C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\debug.log" --disable-spell-checking --enable-system-flash --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=B6785D0D32CD49A4E8433F4210F9B84E --renderer-client-id=4 --mojo-platform-channel-handle=2460 /prefetch:1
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
dashost.exe {776bfa9c-7a78-4147-9faab55988834d0b}
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=7860,2041565709453498514,5697487025824945193,131072 --no-sandbox --log-file="C:\Users\David\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.4.2410)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAAAAAAAMAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=904268754221191647 --mojo-platform-channel-handle=8132 /prefetch:2
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\AUDIODG.EXE 0x710
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\David\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\David\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=83.0.4103.116 --initial-client-data=0xd8,0xdc,0xe0,0xb4,0xe4,0x7ffe299abd28,0x7ffe299abd38,0x7ffe299abd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --mojo-platform-channel-handle=1580 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1884 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3924 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4172 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4116 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4200 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=2332 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=99 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9140 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=135 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9144 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1584,9676460595443542499,16909018635438294367,131072 --disable-gpu-compositing --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=147 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7460 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\David\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\3911gjs4.default
prefs.js - "browser.startup.homepage" - "https://www.facebook.com/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=4.0.0-dev]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 2177328]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-13 1522480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-14 84992]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-09-17 16404224]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2013-04-09 241152]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-06-23 36352]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-06-03 108136]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2018-11-02 3942936]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\David\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-02-07 1573224]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2018-10-04 1384840]
"Battle.net"=C:\Program Files (x86)\Battle.net\Battle.net.exe [2020-05-28 1136104]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-10-16 24552064]
"TSMApplication"=C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [2020-05-11 1623040]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2020-02-09 365160]
"Ubisoft Game Launcher"=C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [2020-06-16 471360]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-06-29 06:45:56 ----D---- C:\rsit
2020-06-22 14:51:31 ----A---- C:\WINDOWS\system32\drivers\farflt.sys
2020-06-22 14:23:17 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-06-15 21:41:41 ----D---- C:\ProgramData\obs-studio-hook
2020-06-15 20:24:40 ----D---- C:\Users\David\AppData\Roaming\BSplayer PRO
2020-06-15 20:24:39 ----D---- C:\Program Files (x86)\Webteh
2020-06-14 02:20:07 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2020-06-14 01:01:08 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2020-06-14 01:01:08 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\wmp.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\wbengine.exe
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\msra.exe
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2020-06-14 01:01:07 ----A---- C:\WINDOWS\system32\bdesvc.dll
2020-06-14 01:01:06 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-06-14 01:01:06 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\WMNetMgr.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\wmidx.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mswmdm.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2020-06-14 01:01:00 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-06-14 01:00:59 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\WMNetMgr.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\wmidx.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mswmdm.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfds.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\mf.dll
2020-06-14 01:00:58 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-06-14 01:00:57 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\wkspbrokerAx.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\wavemsp.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\termmgr.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\SecurityCenterBrokerPS.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\psisdecd.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-06-14 01:00:56 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\tapi3.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\cic.dll
2020-06-14 01:00:55 ----A---- C:\WINDOWS\SYSWOW64\cdosys.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-06-14 01:00:54 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-06-14 01:00:53 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-06-14 01:00:53 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-06-14 01:00:53 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\imapi.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\iassdo.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\iasrecst.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-06-14 01:00:52 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\SYSWOW64\iasads.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\SYSWOW64\azroles.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\VAN.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\SecurityCenterBrokerPS.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\SecurityCenterBroker.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\qedit.dll
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\FileHistory.exe
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-06-14 01:00:46 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\wvc.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\WlanMM.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\wkspbrokerAx.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\wavemsp.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\termmgr.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\tapi3.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\rdpencom.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\quartz.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\qdvd.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\psisdecd.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\nltest.exe
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\nettrace.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\msi.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\LocationApi.dll
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\FsIso.exe
2020-06-14 01:00:45 ----A---- C:\WINDOWS\system32\devenum.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\mmc.exe
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\cic.dll
2020-06-14 01:00:44 ----A---- C:\WINDOWS\system32\cdosys.dll
2020-06-14 01:00:43 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-06-14 01:00:43 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-06-14 01:00:43 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\mshtmled.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\jscript.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\imapi2.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\imapi.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-06-14 01:00:42 ----A---- C:\WINDOWS\system32\dxtrans.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\wiaaut.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\werui.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iassdo.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iasrecst.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iasnap.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\iasads.dll
2020-06-14 01:00:41 ----A---- C:\WINDOWS\system32\azroles.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\rdpviewerax.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\WwanRadioManager.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\wwanmm.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-06-14 01:00:40 ----A---- C:\WINDOWS\system32\diagperf.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2020-06-14 01:00:39 ----A---- C:\WINDOWS\SYSWOW64\msaatext.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2020-06-14 01:00:35 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\windowsperformancerecordercontrol.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-06-14 01:00:34 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\psr.exe
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2020-06-14 01:00:33 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-06-14 01:00:32 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-06-14 01:00:32 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-06-14 01:00:32 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\CertEnrollCtrl.exe
2020-06-14 01:00:31 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-06-14 01:00:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Preview.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\InkObjCore.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\atlthunk.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\SYSWOW64\atl.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\system32\spwizeng.dll
2020-06-14 01:00:29 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-06-14 01:00:28 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-06-14 01:00:28 ----A---- C:\WINDOWS\system32\rdpviewerax.dll
2020-06-14 01:00:28 ----A---- C:\WINDOWS\system32\pku2u.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\rtutils.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\netshell.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\msaatext.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\gpsvc.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\gpapi.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\DismApi.dll
2020-06-14 01:00:23 ----A---- C:\WINDOWS\system32\Dism.exe
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\tdh.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\DAMM.dll
2020-06-14 01:00:22 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wpr.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\weretw.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\wer.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\schannel.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-06-14 01:00:21 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\wksprt.exe
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\wdigest.dll
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\twinui.dll
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\combase.dll
2020-06-14 01:00:20 ----A---- C:\WINDOWS\system32\ci.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\msctf.dll
2020-06-14 01:00:14 ----A---- C:\WINDOWS\system32\InkEd.dll
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\shell32.dll
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\psr.exe
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-06-14 01:00:13 ----A---- C:\WINDOWS\system32\comsvcs.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\VSSVC.exe
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\swprv.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\daxexec.dll
2020-06-14 01:00:12 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\win32u.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\win32k.sys
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\NPSM.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\InkObjCore.dll
2020-06-14 01:00:11 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\qmgr.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\d2d1.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CertEnrollCtrl.exe
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\cdd.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-06-14 01:00:10 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\XboxGipRadioManager.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlansvc.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlansec.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\WlanRadioManager.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wlanapi.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\wfdprov.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\provops.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\oleprn.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\netman.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\localspl.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\dot3mm.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\atlthunk.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\atl.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-06-14 01:00:09 ----A---- C:\WINDOWS\splwow64.exe
2020-06-14 01:00:08 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-06-14 00:49:48 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-06-14 00:49:48 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-06-10 12:31:45 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2020-06-10 12:31:36 ----D---- C:\Program Files (x86)\Microsoft
2020-06-05 01:07:08 ----D---- C:\ProgramData\BlueStacks
2020-06-05 01:07:04 ----D---- C:\Program Files\BlueStacks
2020-06-03 20:04:55 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-06-03 20:04:55 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2020-06-01 21:56:54 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-06-01 21:53:09 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
======List of files/folders modified in the last 1 month======
2020-06-29 06:45:59 ----D---- C:\WINDOWS\Prefetch
2020-06-29 06:45:58 ----D---- C:\Program Files\trend micro
2020-06-29 06:39:53 ----D---- C:\WINDOWS\Temp
2020-06-29 06:39:40 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-06-29 06:15:49 ----D---- C:\WINDOWS\System32
2020-06-29 06:15:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-29 06:15:46 ----D---- C:\WINDOWS\INF
2020-06-29 06:10:01 ----D---- C:\ProgramData\NVIDIA
2020-06-29 06:09:59 ----D---- C:\WINDOWS\system32\drivers
2020-06-29 06:09:40 ----D---- C:\WINDOWS\system32\SleepStudy
2020-06-29 06:09:40 ----D---- C:\WINDOWS\Minidump
2020-06-29 06:09:38 ----D---- C:\Windows
2020-06-29 06:07:11 ----D---- C:\Users\David\AppData\Roaming\uTorrent
2020-06-29 05:23:00 ----D---- C:\WINDOWS\system32\sru
2020-06-28 20:47:03 ----RD---- C:\WINDOWS\Microsoft.NET
2020-06-28 20:47:00 ----D---- C:\WINDOWS\Logs
2020-06-28 05:49:18 ----D---- C:\Users\David\AppData\Roaming\slobs-client
2020-06-27 00:13:49 ----D---- C:\WINDOWS\AppReadiness
2020-06-27 00:13:38 ----HD---- C:\Program Files\WindowsApps
2020-06-26 18:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2020-06-26 01:04:05 ----D---- C:\WINDOWS\system32\config
2020-06-24 18:43:45 ----SHD---- C:\System Volume Information
2020-06-24 17:29:42 ----AD---- C:\Users\David\AppData\Roaming\Curse Client
2020-06-24 00:20:53 ----D---- C:\Users\David\AppData\Roaming\vlc
2020-06-22 14:40:49 ----D---- C:\WINDOWS\system32\catroot2
2020-06-22 14:23:28 ----D---- C:\WINDOWS\system32\Tasks
2020-06-22 14:23:17 ----HD---- C:\WINDOWS\ELAMBKUP
2020-06-19 15:43:27 ----D---- C:\Program Files (x86)\Mozilla Firefox
2020-06-19 04:27:37 ----AD---- C:\World of Warcraft
2020-06-18 00:28:09 ----D---- C:\Program Files (x86)\Steam
2020-06-17 20:24:09 ----D---- C:\WINDOWS\WinSxS
2020-06-15 21:41:41 ----HD---- C:\ProgramData
2020-06-15 21:41:28 ----D---- C:\Program Files\Streamlabs OBS
2020-06-15 20:48:23 ----D---- C:\Users\David\AppData\Roaming\foobar2000
2020-06-15 20:24:39 ----RD---- C:\Program Files (x86)
2020-06-14 01:54:27 ----D---- C:\WINDOWS\system32\DriverStore
2020-06-14 01:53:09 ----SD---- C:\WINDOWS\SYSWOW64\F12
2020-06-14 01:53:09 ----SD---- C:\WINDOWS\system32\F12
2020-06-14 01:53:09 ----SD---- C:\WINDOWS\system32\DiagSvcs
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\wbem
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\Com
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SysWOW64
2020-06-14 01:53:09 ----D---- C:\WINDOWS\SystemResources
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\wbem
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\oobe
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\en-US
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\Dism
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\cs-CZ
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\Com
2020-06-14 01:53:09 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2020-06-14 01:53:08 ----D---- C:\WINDOWS\ShellExperiences
2020-06-14 01:53:08 ----D---- C:\WINDOWS\bcastdvr
2020-06-14 01:53:08 ----D---- C:\WINDOWS\apppatch
2020-06-14 01:53:08 ----D---- C:\Program Files\Windows Photo Viewer
2020-06-14 01:53:08 ----D---- C:\Program Files\Windows Media Player
2020-06-14 01:53:08 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2020-06-14 01:53:08 ----D---- C:\Program Files (x86)\Windows Media Player
2020-06-14 01:53:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-06-14 01:03:23 ----D---- C:\WINDOWS\CbsTemp
2020-06-14 01:00:09 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2020-06-12 06:10:53 ----D---- C:\WINDOWS\system32\NDF
2020-06-11 00:14:56 ----D---- C:\Users\David\AppData\Roaming\Skype
2020-06-10 12:31:38 ----SD---- C:\ProgramData\Microsoft
2020-06-05 23:03:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2020-06-05 01:10:11 ----RD---- C:\Program Files
2020-06-04 03:44:39 ----D---- C:\Program Files (x86)\MSI Afterburner
2020-05-30 04:37:18 ----AD---- C:\Program Files\UNP
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-06-03 178768]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-06-03 60496]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-02-25 16304]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-06-03 84856]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-06-09 322256]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-06-23 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-03-12 40960]
R1 AsrAppCharger;AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [2011-11-07 17192]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-06-03 205896]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-06-03 235088]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-06-03 42784]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-06-03 506152]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-06-03 109280]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-06-03 851608]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-06-15 462592]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2020-04-20 153312]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-06-03 175208]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-06-03 216824]
R2 BlueStacksDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\BstkDrv_bgp.sys [2020-04-07 315976]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-14 457216]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2020-06-22 214496]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 dtlitescsibus;@oem26.inf,%DisplayName%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2020-02-09 42256]
R3 dtliteusbbus;@oem37.inf,%DisplayName%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2020-02-09 59360]
R3 e1dexpress;@oem27.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [2019-02-04 567880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-09-17 4603136]
R3 MBAMFarflt;MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [2020-06-22 196456]
R3 MBAMProtection;MBAMProtection; \??\C:\WINDOWS\system32\DRIVERS\mbam.sys [2020-06-29 73368]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2020-06-07 248968]
R3 MBAMWebProtection;MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [2020-06-29 131728]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2018-05-06 228992]
R3 NVHDA;@oem39.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2020-03-18 223120]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_bd3f48c82942380f\nvlddmkm.sys [2020-05-18 23454448]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2019-03-19 69840]
R3 nvvhci;@oem15.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2020-06-07 19912]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2020-04-20 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-12 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-14 117264]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-21 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-12 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-12 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-12 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-12 99328]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 e1i65x64;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i65x64.sys [2019-03-19 553984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-21 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-10-04 64000]
S3 HPEWSFXBULK;HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [2016-09-13 29248]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-04-20 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-15 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2020-04-01 30336]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-14 986936]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2017-08-27 14024]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-06-03 348968]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\AVAST Software\Avast\afwServ.exe [2020-06-03 1052984]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-06-18 142248]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_3f536;CDPUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-06-23 18856]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2015-05-07 272352]
R2 MBAMService;Malwarebytes Service; C:\Program Files (x86)\Malwarebytes\Anti-Malware\MBAMService.exe [2020-03-11 6933272]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-03-18 850928]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2020-05-16 873272]
R2 OneSyncSvc_3f536;OneSyncSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-06-03 6392728]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_3f536;cbdhsvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-02-09 4506728]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_3f536;PimIndexMaintenanceSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S2 HPSmartDeviceAgentBase;HPSmartDeviceAgentBase; c:\Program Files (x86)\HP\HPSmartDeviceAgentBase\Service\HPSmartDeviceAgentBase.exe [2017-10-25 68608]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_3f536;AarSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-20 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_3f536;BcastDVRUserService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_3f536;BluetoothUserService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_3f536;CaptureService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_3f536;ConsentUxUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-14 380632]
S3 CredentialEnrollmentManagerUserSvc_3f536;CredentialEnrollmentManagerUserSvc_3f536; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-05-14 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_3f536;DeviceAssociationBrokerSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_3f536;DevicePickerUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_3f536;DevicesFlowUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-06-14 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-09-21 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\elevation_service.exe [2020-06-19 1287152]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-07 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_3f536;MessagingService_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\83.0.478.56\elevation_service.exe [2020-06-24 1507208]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2020-04-08 244936]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2019-09-15 2431816]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_3f536;PrintWorkflowUserSvc_3f536; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2019-11-28 474256]
-----------------EOF-----------------
