Preventívka
Napsal: 29 srp 2020 20:28
Logfile of random's system information tool 1.10 (written by random/random)
Run by maba at 2020-08-29 21:24:10
Microsoft Windows 10 Pro
System drive C: has 47 GB (41%) free of 114 GB
Total RAM: 8090 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:24:13, on 29. 8. 2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files\trend micro\maba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho.dll
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- https://www.bing.com/entityexplore?q=Sh ... 2VVa4!AwBz
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: Stiahnuť s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_15aeeaa9 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - TunnelBear - C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10281 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3c495e05-1bf6-4c4b-9219-c054df5965f5 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1e66a7c7-0d79-48f6-bd67-bee8e10d9fca -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9a867f1f-e769-4f24-990e-5cfff1d995d0 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-80903b34-49d0-49d2-9b0b-4507c14dbf21 -LifetimeId:5c0ccb66-c019-4638-aa9d-1219a05ebbd3 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f599c5c0-3124-45b6-85d3-47e84284a9a7 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8d6adcc3-ef0f-4ab8-bd1f-17db5ce91c29 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-926de127-8ce1-421f-aa3b-7f9860f8f85f -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-6219eab6-4deb-4713-97e1-32a547ca3e4f -LifetimeId:c9df592b-7a64-4714-9174-75d7caf120c8 -DeviceGroupId:WpdFsGroup -HostArg:0
C:\WINDOWS\system32\AUDIODG.EXE 0x720
winlogon.exe
"fontdrvhost.exe"
"dwm.exe"
"C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
igfxEM.exe
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p -s AarSvc
C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskhostw.exe
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=2148,17928733441336705530,9319017369600455393,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=5236149114789308222 --mojo-platform-channel-handle=2188 /prefetch:2
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=2148,17928733441336705530,9319017369600455393,131072 --disable-features=VizDisplayCompositor --service-pipe-token=1427232782720468311 --lang=en-US --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1427232782720468311 --renderer-client-id=3 --mojo-platform-channel-handle=2504 /prefetch:1
"C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"ctfmon.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe\YourPhoneServer/YourPhoneServer.exe" -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2007.24723.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe" -ServerName:microsoft.windowslive.mail.AppXvpbcm2ctr1y0sg80nt9m7z51p2cqvsxm.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe" -ServerName:App.AppX2m6wj6jceb8yq7ppx1b3drf7yy51ha6f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\maba\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\maba\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\maba\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=84.0.4147.135 --initial-client-data=0xe8,0xec,0xf0,0xc4,0xf4,0x7ffbeda2ed20,0x7ffbeda2ed30,0x7ffbeda2ed40
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1600 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1996 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3920 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4100 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=nacl-loader --mojo-platform-channel-handle=4860 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6052 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4192 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6296 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe185_ Global\UsGthrCtrlFltPipeMssGthrPipe185 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788 764
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6820 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\maba\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21 666424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho_64.dll [2020-08-25 500616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21 470320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho.dll [2020-08-25 386944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-06-29 18381792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-12-17 731240]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-08-05 29271224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2020-08-18 1820656]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2020-05-13 601784]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux2"=wdmaud.drv
"midi1"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer1"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"wave4"=wdmaud.drv
"aux3"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave5"=wdmaud.drv
"aux4"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave6"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"aux1"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"aux5"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-08-18 20:36:09 ----D---- C:\WINDOWS\LastGood
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvml.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvidia-smi.exe
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvdebugdump.exe
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\MCU.exe
2020-08-17 16:04:06 ----D---- C:\Users\maba\AppData\Roaming\Zoom
2020-08-15 02:05:29 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-14 16:00:06 ----A---- C:\TDSSKiller.3.1.0.28_14.08.2020_16.00.06_log.txt
2020-08-13 18:45:11 ----A---- C:\WINDOWS\system32\fvecpl.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-08-13 18:45:09 ----A---- C:\WINDOWS\system32\cdp.dll
2020-08-13 18:45:09 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\syncutil.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\syncutil.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-08-13 18:45:04 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\SYSWOW64\HvsiManagementApi.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\windowsdefenderapplicationguardcsp.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\rdpshell.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\PrintBrmUi.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mf.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\HvsiManagementApi.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\hvsigpext.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\hvsievaluator.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\cscsvc.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\SYSWOW64\srmscan.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\SYSWOW64\srmclient.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\srmscan.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\srmclient.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\Vault.dll
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\tapisrv.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\powercpl.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msxbde40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2020-08-13 18:44:58 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2020-08-13 18:44:58 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\FirewallControlPanel.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\fdSSDP.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\DxpTaskSync.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\Dsui.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\autoplay.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\wsp_health.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\Vault.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\themecpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\tapisrv.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\tapi32.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\SIHClient.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\rdpclip.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mstsc.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\fhcpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\DiagCpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\CPFilters.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\acmigration.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\AcGenral.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\reseteng.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\recovery.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\FrameServer.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\systemreset.exe
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\powercpl.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\netcenter.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msisip.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msi.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wsecedit.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiatrace.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiaservc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiarpc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\sud.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\sti.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\jscript.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\FirewallControlPanel.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\edpcsp.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\DxpTaskSync.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\DXP.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\Dsui.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\computecore.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\autoplay.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\udhisapi.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\skci.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\securekernel.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\sdcpl.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\fdSSDP.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\upnphost.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\upnpcont.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\NgcIso.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\BioIso.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidnsp.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidfdp.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\windowslivelogin.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\newdev.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\ndadmin.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\msidcrl40.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\msauserext.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\UserAccountControlSettings.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\acwow64.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\unenrollhook.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\setupcl.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\pcaui.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\pcacli.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\enterpriseresourcemanager.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmcfgutils.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\accessibilitycpl.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\mskeyprotcli.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextShaping.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\UiaManager.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\sxstrace.exe
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\sxs.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\wcmapi.dll
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\control.exe
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\HrtfApo.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardBi.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\ngctasks.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\certprop.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\xpsservices.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\shell32.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\scecli.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rtm.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\RMapi.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasplap.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasdlg.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rascustom.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\puiapi.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\printui.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\OpenWith.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\newdev.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\newdev.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\ndadmin.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\mprdim.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\iprtprio.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\findnetprinters.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\drvsetup.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\compstui.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\AboutSettingsHandlers.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\taskcomp.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\systemcpl.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\rasgcw.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidnsp.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidfdp.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\windowslivelogin.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sxstrace.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sxs.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppcext.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msIso.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msidcrl40.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msauserext.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\MaintenanceUI.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\lpkinstall.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockController.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\jsproxy.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\wininet.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\UserAccountControlSettings.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\omadmclient.exe
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\omadmapi.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\hgcpl.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmcsps.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DeviceDriverRetrievalClient.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\d3d9.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\actxprxy.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\wuuhext.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\netlogon.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\lpk.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\LogonController.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcfgutils.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\coredpus.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wldp.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\weretw.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wer.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ntdll.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\mswsock.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\hal.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\drivers\hwpolicy.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\dnsapi.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ci.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\wimserv.exe
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\uDWM.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\setupcl.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\dwmcore.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\dwmapi.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\winresume.exe
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\winload.exe
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\SRH.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\pcaui.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\pcacli.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\invagent.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\QuietHours.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\Facilitator.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wups2.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wups.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpnprv.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32u.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32k.sys
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\ncbservice.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\storewuauth.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MapsStore.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MapRouter.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\ISM.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextShaping.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\InputService.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\oemlicense.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\mskeyprotcli.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\D3D12.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\cryptngc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\Clipc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\cdd.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\wlidprov.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\UiaManager.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\thumbcache.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\GameInput.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\wudriver.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\usercpl.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\twinui.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\RADCUI.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\mapistub.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\mapi32.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\fixmapi.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\fontext.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\control.exe
2020-08-13 18:44:09 ----A---- C:\WINDOWS\explorer.exe
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wifidatacapabilityhandler.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmapi.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\localspl.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcTok.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcProxyStubs.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcApi.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\GPCSEWrapperCsp.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\lpasvc.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\HrtfApo.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\fcon.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\tellib.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\mssecuser.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\IntelTA.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2020-08-13 18:39:25 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-08-13 18:39:25 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-08-12 12:36:19 ----HD---- C:\$WinREAgent
2020-08-10 14:36:50 ----D---- C:\Users\maba\AppData\Roaming\GoldWave
2020-08-10 14:36:46 ----D---- C:\Program Files\GoldWave
2020-08-10 13:50:07 ----D---- C:\Users\maba\AppData\Roaming\audacity
2020-08-10 13:49:58 ----D---- C:\Program Files (x86)\Audacity
======List of files/folders modified in the last 1 month======
2020-08-29 21:24:12 ----D---- C:\WINDOWS\Temp
2020-08-29 21:24:11 ----D---- C:\Program Files\trend micro
2020-08-29 21:16:11 ----D---- C:\ProgramData\NVIDIA
2020-08-29 21:14:36 ----D---- C:\WINDOWS\Prefetch
2020-08-29 21:14:11 ----D---- C:\WINDOWS\System32
2020-08-29 21:14:11 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-08-29 21:14:03 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-08-29 20:34:09 ----D---- C:\WINDOWS\system32\sru
2020-08-29 16:13:41 ----D---- C:\Users\maba\AppData\Roaming\vlc
2020-08-29 16:05:40 ----D---- C:\WINDOWS\system32\SleepStudy
2020-08-29 14:44:21 ----D---- C:\Users\maba\AppData\Roaming\qBittorrent
2020-08-29 14:19:37 ----D---- C:\Users\maba\AppData\Roaming\AIMP
2020-08-29 13:45:40 ----RD---- C:\WINDOWS\Microsoft.NET
2020-08-29 12:35:48 ----D---- C:\Program Files (x86)\Steam
2020-08-29 12:28:15 ----D---- C:\WINDOWS\system32\drivers\wd
2020-08-28 23:15:32 ----HD---- C:\Program Files\WindowsApps
2020-08-28 23:15:31 ----D---- C:\WINDOWS\AppReadiness
2020-08-25 13:39:17 ----D---- C:\Program Files (x86)\Rockstar Games
2020-08-25 13:39:11 ----D---- C:\Program Files\Rockstar Games
2020-08-24 14:33:08 ----D---- C:\WINDOWS\system32\config
2020-08-19 13:12:57 ----D---- C:\Windows
2020-08-19 00:16:06 ----D---- C:\Users\maba\AppData\Roaming\discord
2020-08-18 20:43:08 ----D---- C:\WINDOWS\system32\DriverStore
2020-08-18 20:43:08 ----D---- C:\WINDOWS\INF
2020-08-18 20:36:32 ----D---- C:\WINDOWS\system32\drivers
2020-08-18 20:36:12 ----D---- C:\WINDOWS\SysWOW64
2020-08-17 23:56:47 ----RD---- C:\Program Files (x86)
2020-08-15 19:53:46 ----D---- C:\Users\maba\AppData\Roaming\Twitch Studio
2020-08-15 16:54:46 ----D---- C:\WINDOWS\WinSxS
2020-08-15 16:54:34 ----D---- C:\WINDOWS\system32\catroot2
2020-08-15 02:12:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-15 02:05:39 ----D---- C:\WINDOWS\system32\LogFiles
2020-08-15 02:05:34 ----D---- C:\Program Files (x86)\TunnelBear
2020-08-15 02:05:33 ----D---- C:\Program Files (x86)\TeamViewer
2020-08-15 02:05:29 ----D---- C:\WINDOWS\ServiceState
2020-08-15 02:05:28 ----ASH---- C:\DumpStack.log.tmp
2020-08-14 16:27:03 ----RD---- C:\WINDOWS\assembly
2020-08-14 16:03:28 ----D---- C:\WINDOWS\system32\Tasks
2020-08-14 16:01:25 ----D---- C:\WINDOWS\Minidump
2020-08-14 16:01:25 ----D---- C:\Users\maba\AppData\Roaming\DAEMON Tools Lite
2020-08-14 16:00:08 ----D---- C:\WINDOWS\system32\WDI
2020-08-14 14:04:51 ----D---- C:\Users\maba\AppData\Roaming\VideoProc
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\setup
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-08-14 02:11:51 ----D---- C:\WINDOWS\SystemResources
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\WinMetadata
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\wbem
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\Sysprep
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\sk-SK
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\setup
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\oobe
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\migwiz
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\migration
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\en-US
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\Dism
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\Boot
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\appraiser
2020-08-14 02:11:48 ----RD---- C:\WINDOWS\PrintDialog
2020-08-14 02:11:48 ----D---- C:\WINDOWS\ShellExperiences
2020-08-14 02:11:48 ----D---- C:\WINDOWS\ShellComponents
2020-08-14 02:11:48 ----D---- C:\WINDOWS\Provisioning
2020-08-14 02:11:48 ----D---- C:\WINDOWS\PolicyDefinitions
2020-08-14 02:11:47 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-08-14 02:11:47 ----D---- C:\WINDOWS\bcastdvr
2020-08-14 02:11:47 ----D---- C:\WINDOWS\apppatch
2020-08-14 02:11:47 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2020-08-14 02:11:43 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-08-14 01:00:44 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-08-14 00:58:22 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-08-13 18:47:03 ----D---- C:\WINDOWS\CbsTemp
2020-08-13 18:47:02 ----D---- C:\WINDOWS\servicing
2020-08-12 12:36:19 ----D---- C:\WINDOWS\Logs
2020-08-10 14:36:46 ----RD---- C:\Program Files
2020-08-06 12:01:04 ----D---- C:\Program Files (x86)\AIMP
2020-08-05 17:06:22 ----D---- C:\Users\maba\AppData\Roaming\ViberPC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-11 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2020-08-13 293176]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2019-05-29 19152]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-12-07 41984]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 MpKslDrv;MpKslDrv; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6CEA3383-6F6E-4EC2-916C-A78CB831457E}\MpKslDrv.sys [2020-08-29 78056]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-07-17 143160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-08-13 491520]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-12-07 53248]
R3 CompFilter64;UVCCompositeFilter; C:\WINDOWS\System32\drivers\lvbflt64.sys [2012-10-26 26784]
R3 dtlitescsibus;@oem23.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-10-03 30264]
R3 dtliteusbbus;@oem20.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2019-01-03 47672]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-11-02 7966192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2017-06-29 5826560]
R3 lvrs64;@oem24.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem5.inf,%PID_0826_DD%(UVC);Logitech HD Webcam C525(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
R3 MEIx64;@oem33.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2019-12-07 322600]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\nvlddmkm.sys [2020-08-14 24694504]
R3 NvModuleTracker;@oem32.inf,%ServiceName%;NvModuleTracker; C:\WINDOWS\System32\drivers\NvModuleTracker.sys [2020-03-04 50592]
R3 nvvad_WaveExtensible;@oem15.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2020-02-25 69840]
R3 nvvhci;@oem43.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-12-07 694272]
R3 rzudd;@oem7.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-13 202952]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2019-06-26 20936]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 anvsnddrv;@oem3.inf,%anvsnddrv.SvcDesc%;AnvSoft Virtual Sound Device; C:\WINDOWS\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-12-07 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2019-12-07 138272]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2019-12-07 174608]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2019-12-07 154936]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-08-13 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-12-07 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-08-13 45568]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-08-13 1548288]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-08-13 110592]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-07-17 95032]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2018-12-20 229296]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-12-07 47104]
S3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\System32\drivers\IntcDAud.sys [2017-11-30 491048]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-08-13 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-12-07 206336]
S3 phantomtap;Phantom TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\phantomtap.sys [2018-08-14 45056]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-12-07 104456]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2019-05-29 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
S4 NVHDA;@oem43.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CDPUserSvc_15aeeaa9;Connected Devices Platform User Service_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-02 373744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-05-07 874472]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe [2020-08-14 883104]
R2 OneSyncSvc_15aeeaa9;Sync Host_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 AarSvc_15aeeaa9;Agent Activation Runtime_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 cbdhsvc_15aeeaa9;Používateľská služba schránky_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-12-17 3644008]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 PimIndexMaintenanceSvc_15aeeaa9;Kontaktné údaje_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2020-08-13 976680]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-21 224144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-29 154920]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2020-04-14 3446576]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService_15aeeaa9;GameDVR and Broadcast User Service_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService_15aeeaa9;Služba podpory používateľov rozhrania Bluetooth_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService_15aeeaa9;CaptureService_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc_15aeeaa9;ConsentUX_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-11-02 301552]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-17 380632]
S3 CredentialEnrollmentManagerUserSvc_15aeeaa9;CredentialEnrollmentManagerUserSvc_15aeeaa9; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-17 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DeviceAssociationBrokerSvc_15aeeaa9;DeviceAssociationBroker_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc_15aeeaa9;DevicePicker_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc_15aeeaa9;DevicesFlow_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-07-17 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-08-22 781440]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-21 224144]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2019-12-06 1569864]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2019-12-06 6617160]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\elevation_service.exe [2020-08-18 1309680]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-29 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2019-06-26 6744288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MessagingService_15aeeaa9;MessagingService_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\elevation_service.exe [2020-08-25 1536904]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2020-04-14 2495280]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2020-05-11 105984]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc_15aeeaa9;PrintWorkflow_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020-08-05 1453184]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2020-08-13 5097344]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2019-12-07 1263104]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2020-05-11 756552]
-----------------EOF-----------------
Ďakujem za kontrolu
Run by maba at 2020-08-29 21:24:10
Microsoft Windows 10 Pro
System drive C: has 47 GB (41%) free of 114 GB
Total RAM: 8090 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:24:13, on 29. 8. 2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files\trend micro\maba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho.dll
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- https://www.bing.com/entityexplore?q=Sh ... 2VVa4!AwBz
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: Stiahnuť s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_15aeeaa9 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - TunnelBear - C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10281 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3c495e05-1bf6-4c4b-9219-c054df5965f5 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1e66a7c7-0d79-48f6-bd67-bee8e10d9fca -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9a867f1f-e769-4f24-990e-5cfff1d995d0 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-80903b34-49d0-49d2-9b0b-4507c14dbf21 -LifetimeId:5c0ccb66-c019-4638-aa9d-1219a05ebbd3 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f599c5c0-3124-45b6-85d3-47e84284a9a7 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8d6adcc3-ef0f-4ab8-bd1f-17db5ce91c29 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-926de127-8ce1-421f-aa3b-7f9860f8f85f -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-6219eab6-4deb-4713-97e1-32a547ca3e4f -LifetimeId:c9df592b-7a64-4714-9174-75d7caf120c8 -DeviceGroupId:WpdFsGroup -HostArg:0
C:\WINDOWS\system32\AUDIODG.EXE 0x720
winlogon.exe
"fontdrvhost.exe"
"dwm.exe"
"C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
igfxEM.exe
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p -s AarSvc
C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskhostw.exe
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=2148,17928733441336705530,9319017369600455393,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=5236149114789308222 --mojo-platform-channel-handle=2188 /prefetch:2
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=2148,17928733441336705530,9319017369600455393,131072 --disable-features=VizDisplayCompositor --service-pipe-token=1427232782720468311 --lang=en-US --log-file="C:\Users\maba\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1427232782720468311 --renderer-client-id=3 --mojo-platform-channel-handle=2504 /prefetch:1
"C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"ctfmon.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe\YourPhoneServer/YourPhoneServer.exe" -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2007.24723.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe" -ServerName:microsoft.windowslive.mail.AppXvpbcm2ctr1y0sg80nt9m7z51p2cqvsxm.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe" -ServerName:App.AppX2m6wj6jceb8yq7ppx1b3drf7yy51ha6f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\maba\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\maba\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\maba\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=84.0.4147.135 --initial-client-data=0xe8,0xec,0xf0,0xc4,0xf4,0x7ffbeda2ed20,0x7ffbeda2ed30,0x7ffbeda2ed40
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1600 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1996 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3920 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4100 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=nacl-loader --mojo-platform-channel-handle=4860 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6052 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4192 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6296 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe185_ Global\UsGthrCtrlFltPipeMssGthrPipe185 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788 764
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1576,474075871639574433,7806607321121146052,131072 --lang=sk --extension-process --enable-auto-reload --origin-trial-disabled-features=MeasureMemory --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6820 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\maba\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21 666424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho_64.dll [2020-08-25 500616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21 470320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\BHO\ie_to_edge_bho.dll [2020-08-25 386944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-06-29 18381792]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-12-17 731240]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-08-05 29271224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2020-08-18 1820656]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2020-05-13 601784]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux2"=wdmaud.drv
"midi1"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer1"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"wave4"=wdmaud.drv
"aux3"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave5"=wdmaud.drv
"aux4"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave6"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"aux1"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"aux5"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-08-18 20:36:09 ----D---- C:\WINDOWS\LastGood
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2020-08-18 20:09:29 ----A---- C:\WINDOWS\system32\OpenCL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvml.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvidia-smi.exe
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-08-18 20:09:28 ----A---- C:\WINDOWS\system32\nvdebugdump.exe
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\nvcuda.dll
2020-08-18 20:09:27 ----A---- C:\WINDOWS\system32\MCU.exe
2020-08-17 16:04:06 ----D---- C:\Users\maba\AppData\Roaming\Zoom
2020-08-15 02:05:29 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-14 16:00:06 ----A---- C:\TDSSKiller.3.1.0.28_14.08.2020_16.00.06_log.txt
2020-08-13 18:45:11 ----A---- C:\WINDOWS\system32\fvecpl.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2020-08-13 18:45:10 ----A---- C:\WINDOWS\system32\WalletService.dll
2020-08-13 18:45:09 ----A---- C:\WINDOWS\system32\cdp.dll
2020-08-13 18:45:09 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\syncutil.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\syncutil.dll
2020-08-13 18:45:08 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-08-13 18:45:05 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-08-13 18:45:04 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2020-08-13 18:45:03 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\SYSWOW64\HvsiManagementApi.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\windowsdefenderapplicationguardcsp.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\rdpshell.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\PrintBrmUi.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\mf.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\HvsiManagementApi.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\hvsigpext.dll
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\hvsievaluator.exe
2020-08-13 18:45:02 ----A---- C:\WINDOWS\system32\cscsvc.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\SYSWOW64\srmscan.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\SYSWOW64\srmclient.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\srmscan.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\srmclient.dll
2020-08-13 18:45:01 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\Vault.dll
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2020-08-13 18:45:00 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\tapisrv.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\powercpl.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msxbde40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-08-13 18:44:59 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2020-08-13 18:44:58 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2020-08-13 18:44:58 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-08-13 18:44:57 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\FirewallControlPanel.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\fdSSDP.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\DxpTaskSync.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\Dsui.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2020-08-13 18:44:56 ----A---- C:\WINDOWS\SYSWOW64\autoplay.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2020-08-13 18:44:55 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\wsp_health.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\Vault.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\themecpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\tapisrv.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\tapi32.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\SIHClient.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\rdpclip.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mstsc.exe
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\fhcpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\DiagCpl.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\CPFilters.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\acmigration.dll
2020-08-13 18:44:54 ----A---- C:\WINDOWS\system32\AcGenral.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\reseteng.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\recovery.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2020-08-13 18:44:53 ----A---- C:\WINDOWS\system32\FrameServer.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\systemreset.exe
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\powercpl.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\netcenter.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msisip.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\msi.dll
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2020-08-13 18:44:52 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-08-13 18:44:51 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-08-13 18:44:49 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wsecedit.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiatrace.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiaservc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\wiarpc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\sud.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\sti.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\jscript.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\FirewallControlPanel.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\edpcsp.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\edgehtml.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\DxpTaskSync.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\DXP.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\Dsui.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\computecore.dll
2020-08-13 18:44:48 ----A---- C:\WINDOWS\system32\autoplay.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-08-13 18:44:47 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\udhisapi.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\skci.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\securekernel.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\sdcpl.dll
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-08-13 18:44:46 ----A---- C:\WINDOWS\system32\fdSSDP.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\upnphost.dll
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\upnpcont.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\NgcIso.exe
2020-08-13 18:44:45 ----A---- C:\WINDOWS\system32\BioIso.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wow32.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidnsp.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidfdp.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\windowslivelogin.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\newdev.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\ndadmin.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\msidcrl40.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\msauserext.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\instnm.exe
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2020-08-13 18:44:44 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\UserAccountControlSettings.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\ntvdm64.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\acwow64.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2020-08-13 18:44:43 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\unenrollhook.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\setupcl.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\pcaui.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\pcacli.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\enterpriseresourcemanager.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dmcfgutils.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2020-08-13 18:44:42 ----A---- C:\WINDOWS\SYSWOW64\accessibilitycpl.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\mskeyprotcli.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2020-08-13 18:44:41 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextShaping.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-08-13 18:44:40 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\UiaManager.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2020-08-13 18:44:39 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\sxstrace.exe
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\sxs.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2020-08-13 18:44:38 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\wcmapi.dll
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2020-08-13 18:44:37 ----A---- C:\WINDOWS\SYSWOW64\control.exe
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\SpatializerApo.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\HrtfApo.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2020-08-13 18:44:36 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\SCardBi.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\ngctasks.dll
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2020-08-13 18:44:35 ----A---- C:\WINDOWS\system32\certprop.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\xpsservices.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\shell32.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\scecli.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rtm.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\RMapi.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasplap.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasdlg.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rascustom.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\puiobj.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\puiapi.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\printui.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\OpenWith.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\newdev.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\newdev.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\ndadmin.exe
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\mprdim.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\iprtprio.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\findnetprinters.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\drvsetup.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\compstui.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\AboutSettingsHandlers.dll
2020-08-13 18:44:34 ----A---- C:\WINDOWS\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\taskcomp.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\systemcpl.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\rasgcw.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-08-13 18:44:33 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidnsp.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidfdp.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\wlidcli.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\windowslivelogin.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sxstrace.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sxs.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\sppcext.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msIso.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msidcrl40.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\msauserext.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\MaintenanceUI.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\lpkinstall.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockController.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\jsproxy.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2020-08-13 18:44:32 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\wininet.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\UserAccountControlSettings.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\omadmclient.exe
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\omadmapi.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\hgcpl.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\dmcsps.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\DeviceDriverRetrievalClient.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\d3d9.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\actxprxy.dll
2020-08-13 18:44:31 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\wuuhext.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\netlogon.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\msimg32.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\mf3216.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\lpk.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\LogonController.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcfgutils.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\coredpus.dll
2020-08-13 18:44:30 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-08-13 18:44:29 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wldp.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\weretw.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\wer.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ntdll.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\mswsock.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\hal.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\drivers\hwpolicy.sys
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\dnsapi.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2020-08-13 18:44:28 ----A---- C:\WINDOWS\system32\ci.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\wimserv.exe
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\uDWM.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\setupcl.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\dwmcore.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\dwmapi.dll
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2020-08-13 18:44:27 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\winresume.exe
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2020-08-13 18:44:26 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\winload.exe
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\SRH.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\pcaui.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\pcacli.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\invagent.dll
2020-08-13 18:44:25 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\QuietHours.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-13 18:44:24 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\Facilitator.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-13 18:44:23 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-08-13 18:44:22 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wups2.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wups.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuaueng.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuauclt.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\wuapi.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-08-13 18:44:21 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpnprv.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wpnapps.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32u.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\win32k.sys
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\ncbservice.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-13 18:44:20 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\windows.storage.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\storewuauth.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MapsStore.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\MapRouter.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\ISM.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-08-13 18:44:19 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextShaping.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\InputService.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2020-08-13 18:44:18 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\oemlicense.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\mskeyprotcli.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\D3D12.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\cryptngc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\Clipc.dll
2020-08-13 18:44:12 ----A---- C:\WINDOWS\system32\cdd.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\wlidprov.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\UiaManager.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\thumbcache.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\GameInput.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-08-13 18:44:11 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\wudriver.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\usercpl.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\twinui.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\RADCUI.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\mapistub.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\mapi32.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\fixmapi.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2020-08-13 18:44:10 ----A---- C:\WINDOWS\system32\cdprt.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\wifitask.exe
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\fontext.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2020-08-13 18:44:09 ----A---- C:\WINDOWS\system32\control.exe
2020-08-13 18:44:09 ----A---- C:\WINDOWS\explorer.exe
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wifidatacapabilityhandler.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\wcmapi.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\localspl.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-13 18:44:08 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcTok.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcProxyStubs.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\WpcApi.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\GPCSEWrapperCsp.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-08-13 18:44:07 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\SpatializerApo.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\lpasvc.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\HrtfApo.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\fcon.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2020-08-13 18:44:06 ----A---- C:\WINDOWS\system32\AarSvc.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\tellib.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\mssecuser.dll
2020-08-13 18:44:05 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\IntelTA.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2020-08-13 18:43:56 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2020-08-13 18:39:25 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-08-13 18:39:25 ----A---- C:\WINDOWS\system32\poqexec.exe
2020-08-12 12:36:19 ----HD---- C:\$WinREAgent
2020-08-10 14:36:50 ----D---- C:\Users\maba\AppData\Roaming\GoldWave
2020-08-10 14:36:46 ----D---- C:\Program Files\GoldWave
2020-08-10 13:50:07 ----D---- C:\Users\maba\AppData\Roaming\audacity
2020-08-10 13:49:58 ----D---- C:\Program Files (x86)\Audacity
======List of files/folders modified in the last 1 month======
2020-08-29 21:24:12 ----D---- C:\WINDOWS\Temp
2020-08-29 21:24:11 ----D---- C:\Program Files\trend micro
2020-08-29 21:16:11 ----D---- C:\ProgramData\NVIDIA
2020-08-29 21:14:36 ----D---- C:\WINDOWS\Prefetch
2020-08-29 21:14:11 ----D---- C:\WINDOWS\System32
2020-08-29 21:14:11 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-08-29 21:14:03 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-08-29 20:34:09 ----D---- C:\WINDOWS\system32\sru
2020-08-29 16:13:41 ----D---- C:\Users\maba\AppData\Roaming\vlc
2020-08-29 16:05:40 ----D---- C:\WINDOWS\system32\SleepStudy
2020-08-29 14:44:21 ----D---- C:\Users\maba\AppData\Roaming\qBittorrent
2020-08-29 14:19:37 ----D---- C:\Users\maba\AppData\Roaming\AIMP
2020-08-29 13:45:40 ----RD---- C:\WINDOWS\Microsoft.NET
2020-08-29 12:35:48 ----D---- C:\Program Files (x86)\Steam
2020-08-29 12:28:15 ----D---- C:\WINDOWS\system32\drivers\wd
2020-08-28 23:15:32 ----HD---- C:\Program Files\WindowsApps
2020-08-28 23:15:31 ----D---- C:\WINDOWS\AppReadiness
2020-08-25 13:39:17 ----D---- C:\Program Files (x86)\Rockstar Games
2020-08-25 13:39:11 ----D---- C:\Program Files\Rockstar Games
2020-08-24 14:33:08 ----D---- C:\WINDOWS\system32\config
2020-08-19 13:12:57 ----D---- C:\Windows
2020-08-19 00:16:06 ----D---- C:\Users\maba\AppData\Roaming\discord
2020-08-18 20:43:08 ----D---- C:\WINDOWS\system32\DriverStore
2020-08-18 20:43:08 ----D---- C:\WINDOWS\INF
2020-08-18 20:36:32 ----D---- C:\WINDOWS\system32\drivers
2020-08-18 20:36:12 ----D---- C:\WINDOWS\SysWOW64
2020-08-17 23:56:47 ----RD---- C:\Program Files (x86)
2020-08-15 19:53:46 ----D---- C:\Users\maba\AppData\Roaming\Twitch Studio
2020-08-15 16:54:46 ----D---- C:\WINDOWS\WinSxS
2020-08-15 16:54:34 ----D---- C:\WINDOWS\system32\catroot2
2020-08-15 02:12:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-15 02:05:39 ----D---- C:\WINDOWS\system32\LogFiles
2020-08-15 02:05:34 ----D---- C:\Program Files (x86)\TunnelBear
2020-08-15 02:05:33 ----D---- C:\Program Files (x86)\TeamViewer
2020-08-15 02:05:29 ----D---- C:\WINDOWS\ServiceState
2020-08-15 02:05:28 ----ASH---- C:\DumpStack.log.tmp
2020-08-14 16:27:03 ----RD---- C:\WINDOWS\assembly
2020-08-14 16:03:28 ----D---- C:\WINDOWS\system32\Tasks
2020-08-14 16:01:25 ----D---- C:\WINDOWS\Minidump
2020-08-14 16:01:25 ----D---- C:\Users\maba\AppData\Roaming\DAEMON Tools Lite
2020-08-14 16:00:08 ----D---- C:\WINDOWS\system32\WDI
2020-08-14 14:04:51 ----D---- C:\Users\maba\AppData\Roaming\VideoProc
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\setup
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-08-14 02:11:52 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-08-14 02:11:51 ----D---- C:\WINDOWS\SystemResources
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\WinMetadata
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\wbem
2020-08-14 02:11:50 ----D---- C:\WINDOWS\system32\Sysprep
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\sk-SK
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\setup
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\oobe
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\migwiz
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\migration
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\en-US
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\Dism
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\Boot
2020-08-14 02:11:49 ----D---- C:\WINDOWS\system32\appraiser
2020-08-14 02:11:48 ----RD---- C:\WINDOWS\PrintDialog
2020-08-14 02:11:48 ----D---- C:\WINDOWS\ShellExperiences
2020-08-14 02:11:48 ----D---- C:\WINDOWS\ShellComponents
2020-08-14 02:11:48 ----D---- C:\WINDOWS\Provisioning
2020-08-14 02:11:48 ----D---- C:\WINDOWS\PolicyDefinitions
2020-08-14 02:11:47 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-08-14 02:11:47 ----D---- C:\WINDOWS\bcastdvr
2020-08-14 02:11:47 ----D---- C:\WINDOWS\apppatch
2020-08-14 02:11:47 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2020-08-14 02:11:43 ----D---- C:\WINDOWS\system32\drivers\UMDF
2020-08-14 01:00:44 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2020-08-14 00:58:22 ----A---- C:\WINDOWS\system32\nvapi64.dll
2020-08-13 18:47:03 ----D---- C:\WINDOWS\CbsTemp
2020-08-13 18:47:02 ----D---- C:\WINDOWS\servicing
2020-08-12 12:36:19 ----D---- C:\WINDOWS\Logs
2020-08-10 14:36:46 ----RD---- C:\Program Files
2020-08-06 12:01:04 ----D---- C:\Program Files (x86)\AIMP
2020-08-05 17:06:22 ----D---- C:\Users\maba\AppData\Roaming\ViberPC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-11 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2020-08-13 293176]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2019-05-29 19152]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-12-07 41984]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 MpKslDrv;MpKslDrv; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6CEA3383-6F6E-4EC2-916C-A78CB831457E}\MpKslDrv.sys [2020-08-29 78056]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-07-17 143160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-08-13 491520]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-12-07 53248]
R3 CompFilter64;UVCCompositeFilter; C:\WINDOWS\System32\drivers\lvbflt64.sys [2012-10-26 26784]
R3 dtlitescsibus;@oem23.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-10-03 30264]
R3 dtliteusbbus;@oem20.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2019-01-03 47672]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-11-02 7966192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2017-06-29 5826560]
R3 lvrs64;@oem24.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem5.inf,%PID_0826_DD%(UVC);Logitech HD Webcam C525(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
R3 MEIx64;@oem33.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2019-12-07 322600]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\nvlddmkm.sys [2020-08-14 24694504]
R3 NvModuleTracker;@oem32.inf,%ServiceName%;NvModuleTracker; C:\WINDOWS\System32\drivers\NvModuleTracker.sys [2020-03-04 50592]
R3 nvvad_WaveExtensible;@oem15.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2020-02-25 69840]
R3 nvvhci;@oem43.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2020-03-11 67456]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-12-07 694272]
R3 rzudd;@oem7.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-13 202952]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2019-06-26 20936]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 anvsnddrv;@oem3.inf,%anvsnddrv.SvcDesc%;AnvSoft Virtual Sound Device; C:\WINDOWS\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-12-07 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2019-12-07 138272]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2019-12-07 174608]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2019-12-07 154936]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-08-13 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-12-07 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-08-13 45568]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-08-13 1548288]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-08-13 110592]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-07-17 95032]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2018-12-20 229296]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-12-07 47104]
S3 IntcDAud;@oem35.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\System32\drivers\IntcDAud.sys [2017-11-30 491048]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-08-13 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-12-07 206336]
S3 phantomtap;Phantom TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\phantomtap.sys [2018-08-14 45056]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-12-07 104456]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2019-05-29 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
S4 NVHDA;@oem43.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CDPUserSvc_15aeeaa9;Connected Devices Platform User Service_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-02 373744]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2020-05-07 874472]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe [2020-08-14 883104]
R2 OneSyncSvc_15aeeaa9;Sync Host_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 AarSvc_15aeeaa9;Agent Activation Runtime_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 cbdhsvc_15aeeaa9;Používateľská služba schránky_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-12-17 3644008]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 PimIndexMaintenanceSvc_15aeeaa9;Kontaktné údaje_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2020-08-13 976680]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-21 224144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-29 154920]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2020-04-14 3446576]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BcastDVRUserService_15aeeaa9;GameDVR and Broadcast User Service_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BluetoothUserService_15aeeaa9;Služba podpory používateľov rozhrania Bluetooth_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 CaptureService_15aeeaa9;CaptureService_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 ConsentUxUserSvc_15aeeaa9;ConsentUX_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-11-02 301552]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-17 380632]
S3 CredentialEnrollmentManagerUserSvc_15aeeaa9;CredentialEnrollmentManagerUserSvc_15aeeaa9; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-07-17 380632]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DeviceAssociationBrokerSvc_15aeeaa9;DeviceAssociationBroker_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicePickerUserSvc_15aeeaa9;DevicePicker_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevicesFlowUserSvc_15aeeaa9;DevicesFlow_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-07-17 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-08-22 781440]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-04-21 224144]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2019-12-06 1569864]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2019-12-06 6617160]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\elevation_service.exe [2020-08-18 1309680]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-29 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2019-06-26 6744288]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MessagingService_15aeeaa9;MessagingService_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\85.0.564.41\elevation_service.exe [2020-08-25 1536904]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2020-04-14 2495280]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2020-05-11 105984]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PrintWorkflowUserSvc_15aeeaa9;PrintWorkflow_15aeeaa9; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-12-07 57368]
S3 Rockstar Service;Rockstar Game Library Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2020-08-05 1453184]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2020-08-13 5097344]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2019-12-07 1263104]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-12-07 57368]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2020-05-11 756552]
-----------------EOF-----------------
Ďakujem za kontrolu
