prosim o kontrolu logu
Napsal: 26 pro 2020 17:21
Prosim o kontrolu logu. Pomaly pocitac a prohlizec.
Dekuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Interista at 2020-12-26 17:17:22
Microsoft Windows 10 Home
System drive C: has 149 GB (35%) free of 432 GB
Total RAM: 8136 MB (30% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:17:40, on 26.12.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\spacedeskServiceTray.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files\trend micro\Interista.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX2] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe /FORCE
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Interista\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [AceStream] C:\Users\Interista\AppData\Roaming\ACEStream\engine\ace_engine.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe --port=52117 --pid=13932 --browsercore --lang=en-us --overscroll-history-navigation=0 --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --disable-fill-background --dpi-awareness=unaware --disable-kill-after-bad-ipc --flag-switches-begin --flag-switches-end --origin-trial-disabled-features=MeasureMemory --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --restore-last-session
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvlti.inf_amd64_9d398ade04905fdb\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_8f68a42 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: spacedeskService - Unknown owner - C:\WINDOWS\System32\spacedeskService.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
--
End of file - 13322 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-53268873-e6ac-45a0-be51-399dd2d0ed43 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9b5a3291-f24e-42a2-9379-d77764e031e1 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5838ff84-4c98-4bc0-a3be-6e0eb749fe9a -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b5c7bcc8-ca2b-4df2-aacc-7eb60bedb4e8 -LifetimeId:39e1f80c-dca6-443f-9e32-5de010816116 -DeviceGroupId:v3DDKIndirectGroup -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p
dashost.exe {dcd6ddee-bdfb-4535-add15db10677601e}
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe" /StartService
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe" /StartService
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\spacedeskService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
"C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
"C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\snmp.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost -s AppHostSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="25378DB0-F90F-42B8-2B99-59554ADBBD22" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s pla
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xMzkuNTkiIHNoZWxsX3ZlcnNpb249IjEuMy4xMjcuMTUiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7N0U3MUVCRDUtRkU2Ny00QzVBLUE4RDctRkE5MzA0N0Q4RUY4fSIgdXNlcmlkPSJ7MEFDOEFBMTItMUYzNy00QTkyLTg3QkUtMzk1ODQ4NUU0QzA3fSIgaW5zdGFsbHNvdXJjZT0iY29yZSIgcmVxdWVzdGlkPSJ7OERDRUY2OTItMTEwQy00NkFGLUI4MkItMTUyQzgzNzU5NjBCfSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBwaHlzbWVtb3J5PSI4IiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE4MzYzLjEyNTYiIHNwPSIiIGFyY2g9Ing2NCIvPjxhcHAgYXBwaWQ9Ins1NkVCMThGOC1CMDA4LTRDQkQtQjZEMi04Qzk3RkU3RTkwNjJ9IiB2ZXJzaW9uPSI4Ny4wLjY2NC42MCIgbmV4dHZlcnNpb249Ijg3LjAuNjY0LjY2IiBsYW5nPSIiIGJyYW5kPSJXVUxTIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMTk1IiBpbnN0YWxsZGF0ZT0iNDkwNyIgY29ob3J0PSJycmZAMC4zNCI-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-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
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
This is spacedesk Service calling.
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:4928
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"ctfmon.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /c
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" XGpuTrayIcon"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20112.68.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
AvastUI.exe /nogui
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
"C:\Users\Interista\AppData\Local\NVIDIA Corporation\GeForceNOW\CEF\GeForceNOWReliabilityMonitor.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s Netman
C:\WINDOWS\splwow64.exe 8192
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20112.10111.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files\thinkorswim\thinkorswim.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --port=64215 --pid=19880 --browsercore --lang=en-us --overscroll-history-navigation=0 --user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 --disable-fill-background --dpi-awareness=unaware
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=crashpad-handler --user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 /prefetch:7 --monitor-self --monitor-self-argument=--type=crashpad-handler --monitor-self-argument=--user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 --monitor-self-argument=/prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Public\Documents\Google\Chrome --metrics-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 --url=https://client2.google.com/cr/reports --annotation=plat=Win64 --annotation=prod=Chromium --annotation=ver=69.0.3497.12-devel --initial-client-data=0x228,0x22c,0x230,0x224,0x234,0x7fff974a8520,0x7fff974a8530,0x7fff974a8540
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=crashpad-handler --user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 /prefetch:7 --no-periodic-tasks --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Public\Documents\Google\Chrome --url=https://client2.google.com/cr/reports --annotation=plat=Win64 --annotation=prod=Chromium --annotation=ver=69.0.3497.12-devel --initial-client-data=0x248,0x24c,0x250,0x244,0x254,0x7ff7ff31ff50,0x7ff7ff31ff60,0x7ff7ff31ff70
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=gpu-process --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --start-stack-profiler --browsercore --dpi-awareness=unaware --gpu-preferences=KAAAAAAAAACAAwBgAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --start-stack-profiler --browsercore --dpi-awareness=unaware --service-request-channel-token=4790175130563269555 --mojo-platform-channel-handle=1852 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=utility --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --lang=en-US --service-sandbox-type=audio --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --browsercore --dpi-awareness=unaware --service-request-channel-token=11180481694539910213 --mojo-platform-channel-handle=1980 /prefetch:8
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=12542284789732217256 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --start-stack-profiler --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12542284789732217256 --renderer-client-id=5 --mojo-platform-channel-handle=3572 /prefetch:1
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=17811349434083568187 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17811349434083568187 --renderer-client-id=4 --mojo-platform-channel-handle=3592 /prefetch:1
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=1495015790372158553 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1495015790372158553 --renderer-client-id=7 --mojo-platform-channel-handle=4332 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Interista\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Public\Documents\Google\Chrome "--metrics-dir=C:\Users\Interista\AppData\Local\Google\Chrome\User Data" --url=https://client2.google.com/cr/reports --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=87.0.4280.88 --initial-client-data=0xdc,0xe0,0xe4,0xb8,0xe8,0x7fff8c360eb0,0x7fff8c360ec0,0x7fff8c360ed0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1704 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=network --mojo-platform-channel-handle=2080 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2388 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2928 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4336 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4680 /prefetch:1
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=7104399983991265064 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=7104399983991265064 --renderer-client-id=9 --mojo-platform-channel-handle=4692 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6060 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5484 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3452 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --extension-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7460 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7616 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8992 /prefetch:1
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=9132,17044421334183127541,17892286954933943157,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8768 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=9132,17044421334183127541,17892286954933943157,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4496 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=9876 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6500 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9872 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1656 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=media.mojom.CdmService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=cdm --mojo-platform-channel-handle=12184 /prefetch:8
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20110.11001.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3528 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=123 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8140 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=126 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4840 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=127 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9340 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=130 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5004 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=133 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5904 /prefetch:1
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=166 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7732 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=180 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=181 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=183 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8808 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=184 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8624 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=185 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6856 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=186 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7416 /prefetch:1
"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=206 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5744 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --extension-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=215 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6220 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=217 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3640 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=221 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11720 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=248 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5628 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=257 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11248 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=259 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12352 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=264 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12556 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=280 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12852 /prefetch:1
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=284 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6832 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=289 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9240 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe249_ Global\UsGthrCtrlFltPipeMssGthrPipe249 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 792 796 804 8192 800
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x65c
"C:\Users\Interista\Downloads\RSITx64.exe"
"C:\WINDOWS\System32\osk.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3319014896-2388623831-1738719311-1001Core.job - C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3319014896-2388623831-1738719311-1001UA.job - C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho_64.dll [2020-12-17 532880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23 217784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_141\bin\ssv.dll [2017-07-23 571968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-23 235584]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho.dll [2020-12-17 414096]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23 184488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-11-01 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-11-01 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23 6149288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23 4452504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-07-03 84992]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-01-18 9753024]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-01-18 5908928]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-12-12 117352]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-02-18 11779176]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-10 509936]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2017-03-09 193112]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2017-03-09 420960]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2017-03-09 463960]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-07 3951280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Dropbox Update"=C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
"OneDrive"=C:\Users\Interista\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-12-18 1938296]
"AceStream"=C:\Users\Interista\AppData\Roaming\ACEStream\engine\ace_engine.exe [2018-08-30 27960]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-03-19 22245560]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #1"=C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe [2020-04-08 1546784]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdatePRCShortCut"=C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [2009-05-13 222504]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-07-12 587288]
"IJNetworkScannerSelectorEX2"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [2016-12-09 279240]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2017-07-05 1313408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\DriverStore\FileRepository\nvlti.inf_amd64_9d398ade04905fdb\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2017-03-09 460936]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-12-22 20:03:16 ----D---- C:\ProgramData\GOG.com
2020-12-12 18:59:10 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-12-12 18:59:00 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-12-12 15:18:56 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2020-12-12 15:18:56 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-12-12 15:18:55 ----A---- C:\WINDOWS\system32\fveapibase.dll
2020-12-12 15:18:55 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-12-12 15:18:54 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-12-12 15:18:53 ----A---- C:\WINDOWS\system32\cdp.dll
2020-12-12 15:18:53 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-12-12 15:18:29 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2020-12-12 15:18:29 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2020-12-12 15:18:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2020-12-12 15:18:28 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2020-12-12 15:18:28 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2020-12-12 15:18:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2020-12-12 15:18:27 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2020-12-12 15:18:27 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\system32\HolographicRuntimes.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-12-12 15:18:25 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-12-12 15:18:25 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2020-12-12 15:18:22 ----A---- C:\WINDOWS\system32\wpdshext.dll
2020-12-12 15:18:22 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-12-12 15:18:22 ----A---- C:\WINDOWS\system32\DMRServer.dll
2020-12-12 15:18:21 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-12-12 15:18:21 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-12-12 15:18:21 ----A---- C:\WINDOWS\system32\dlnashext.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\mfsvr.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-12-12 15:18:19 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-12-12 15:18:19 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2020-12-12 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-12-12 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2020-12-12 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-12-12 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-12-12 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-12-12 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-12-12 15:18:15 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\wecutil.exe
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\wecapi.dll
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-12-12 15:18:13 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2020-12-12 15:18:13 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2020-12-12 15:18:13 ----A---- C:\WINDOWS\SYSWOW64\net1.exe
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\Spectrum.exe
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\ListSvc.dll
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\rdpnano.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\FsNVSDeviceSource.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2020-12-12 15:17:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-12-12 15:17:32 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-12-12 15:17:32 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-12-12 15:17:31 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-12-12 15:17:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wsecedit.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wecutil.exe
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wecsvc.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wecapi.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\packager.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\net1.exe
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\jscript.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\edpcsp.dll
2020-12-12 15:17:26 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-12-12 15:17:26 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-12-12 15:17:26 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\vertdll.dll
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\skci.dll
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-12-12 15:17:24 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-12-12 15:17:24 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2020-12-12 15:17:24 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-12-12 15:17:24 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\unenrollhook.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\gmsaclient.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\enterpriseresourcemanager.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\dmcfgutils.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\CertPolEng.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\btpanui.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\winipcfile.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-12-12 15:16:29 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2020-12-12 15:16:29 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-12-12 15:16:29 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\dsregtask.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\TaskSchdPS.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\twext.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rasman.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rascustom.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-12-12 15:16:22 ----A---- C:\WINDOWS\system32\netshell.dll
2020-12-12 15:16:22 ----A---- C:\WINDOWS\system32\netid.dll
2020-12-12 15:16:22 ----A---- C:\WINDOWS\system32\netcfgx.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\SDDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\JpnServiceDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\FilterDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\DDDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\BingFilterDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\BingASDS.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\profsvcext.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\omadmclient.exe
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\omadmapi.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\LogonController.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcsps.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcfgutils.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\coredpus.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\system32\netlogon.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\gmsaclient.dll
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\sechost.dll
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2020-12-12 15:15:21 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\weretw.dll
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\wer.dll
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\runexehelper.exe
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\rpcss.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\wldp.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\combase.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\ci.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\bcrypt.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\TaskSchdPS.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\taskhostw.exe
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\taskcomp.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\schtasks.exe
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\schedsvc.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\uDWM.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\shell32.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\ntshrui.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\dcomp.dll
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\winresume.exe
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\winload.exe
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\CertPolEng.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\shacct.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\cldapi.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\btpanui.dll
2020-12-12 15:14:08 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-12-12 15:14:08 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-12-12 15:14:08 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\UsoClient.exe
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\AppResolver.dll
2020-12-12 15:14:06 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-12-12 15:14:06 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-12-12 15:14:05 ----A---- C:\WINDOWS\system32\SHCore.dll
2020-12-12 15:14:05 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2020-12-12 15:14:04 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2020-12-12 15:14:04 ----A---- C:\WINDOWS\system32\winipcfile.dll
2020-12-12 15:14:04 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-12-12 15:14:03 ----A---- C:\WINDOWS\system32\winmsipc.dll
2020-12-12 15:14:03 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2020-12-12 15:14:03 ----A---- C:\WINDOWS\system32\bindflt.dll
2020-12-12 15:14:02 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2020-12-12 15:14:01 ----A---- C:\WINDOWS\system32\win32u.dll
2020-12-12 15:14:01 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-12-12 15:14:01 ----A---- C:\WINDOWS\system32\win32k.sys
2020-12-12 15:14:00 ----A---- C:\WINDOWS\system32\user32.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\fwmdmcsp.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2020-12-12 15:13:56 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-12-12 15:13:56 ----A---- C:\WINDOWS\system32\InputHost.dll
2020-12-12 15:13:55 ----A---- C:\WINDOWS\system32\tquery.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\mssvp.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\mssrch.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\mssprxy.dll
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\mssph.dll
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\mssitlb.dll
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\msscntrs.dll
2020-12-12 15:13:52 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-12-12 15:13:52 ----A---- C:\WINDOWS\system32\domgmt.dll
2020-12-12 15:13:51 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2020-12-12 15:13:51 ----A---- C:\WINDOWS\system32\dosvc.dll
2020-12-12 15:13:50 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-12-12 15:13:50 ----A---- C:\WINDOWS\system32\gdi32.dll
2020-12-12 15:13:50 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\aadtb.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-12-12 15:13:47 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-12-12 15:13:47 ----A---- C:\WINDOWS\system32\netplwiz.dll
2020-12-12 15:13:46 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-12-12 15:13:46 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\winshfhc.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\netman.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\dsregtask.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\dsreg.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\WpcMon.exe
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\localspl.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\splwow64.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\WpcTok.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\ManageCI.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\autopilot.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\AudioSes.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-12-08 20:57:48 ----D---- C:\Users\Interista\AppData\Roaming\Jihosoft ISO Maker
2020-12-08 20:55:56 ----D---- C:\Program Files (x86)\Jihosoft
2020-12-08 20:54:27 ----D---- C:\ProgramData\DAEMON Tools Pro
======List of files/folders modified in the last 1 month======
2020-12-26 17:17:33 ----D---- C:\WINDOWS\system32\drivers\etc
2020-12-26 17:17:32 ----D---- C:\Program Files\trend micro
2020-12-26 17:17:28 ----D---- C:\WINDOWS\Temp
2020-12-26 17:10:14 ----D---- C:\WINDOWS\Prefetch
2020-12-26 17:07:49 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-12-26 16:59:08 ----D---- C:\WINDOWS\system32\sru
2020-12-26 16:26:19 ----AD---- C:\Program Files\CCleaner
2020-12-26 16:09:42 ----D---- C:\Program Files\thinkorswim
2020-12-26 16:01:01 ----D---- C:\ProgramData\NVIDIA
2020-12-26 00:07:28 ----D---- C:\Program Files (x86)\Steam
2020-12-25 23:29:44 ----D---- C:\Users\Interista\AppData\Roaming\Telegram Desktop
2020-12-25 23:20:48 ----D---- C:\WINDOWS\system32\SleepStudy
2020-12-25 19:06:10 ----RD---- C:\WINDOWS\Microsoft.NET
2020-12-25 18:20:07 ----SD---- C:\Users\Interista\AppData\Roaming\Microsoft
2020-12-25 17:44:27 ----D---- C:\WINDOWS\INF
2020-12-25 16:12:31 ----D---- C:\ProgramData\NVIDIA Corporation
2020-12-24 18:01:12 ----D---- C:\ProgramData\CanonIJPLM
2020-12-23 13:57:04 ----D---- C:\WINDOWS\system32\config
2020-12-23 13:51:36 ----D---- C:\ProgramData\ProductData
2020-12-22 20:03:16 ----HD---- C:\ProgramData
2020-12-22 19:22:11 ----D---- C:\Games
2020-12-22 18:00:01 ----D---- C:\WINDOWS\system32\LogFiles
2020-12-22 14:21:43 ----HD---- C:\Program Files\WindowsApps
2020-12-22 13:36:26 ----D---- C:\WINDOWS\system32\catroot2
2020-12-22 13:36:22 ----SHD---- C:\System Volume Information
2020-12-22 13:29:55 ----D---- C:\WINDOWS\WinSxS
2020-12-22 13:28:12 ----D---- C:\WINDOWS\Logs
2020-12-22 13:12:05 ----D---- C:\Downloads
2020-12-22 12:05:05 ----D---- C:\WINDOWS\AppReadiness
2020-12-18 16:38:33 ----D---- C:\Users\Interista\AppData\Roaming\Canon
2020-12-18 16:38:31 ----HD---- C:\ProgramData\CanonIJMIG
2020-12-18 16:23:40 ----D---- C:\WINDOWS\system32\Tasks
2020-12-14 18:11:12 ----D---- C:\Jts
2020-12-13 15:13:02 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2020-12-13 10:36:45 ----D---- C:\WINDOWS\System32
2020-12-13 10:36:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-13 10:27:26 ----D---- C:\WINDOWS\system32\drivers
2020-12-12 23:07:02 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-12-12 23:07:02 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-12-12 23:07:01 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-12-12 23:07:01 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-12-12 23:07:01 ----D---- C:\WINDOWS\SysWOW64
2020-12-12 23:06:55 ----D---- C:\WINDOWS\SystemResources
2020-12-12 23:06:53 ----D---- C:\WINDOWS\system32\zh-TW
2020-12-12 23:06:53 ----D---- C:\WINDOWS\system32\oobe
2020-12-12 23:06:53 ----D---- C:\WINDOWS\system32\migration
2020-12-12 23:06:52 ----D---- C:\WINDOWS\system32\en-US
2020-12-12 23:06:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2020-12-12 23:06:50 ----D---- C:\WINDOWS\system32\Dism
2020-12-12 23:06:50 ----D---- C:\WINDOWS\system32\cs-CZ
2020-12-12 23:06:49 ----D---- C:\WINDOWS\system32\Boot
2020-12-12 23:06:37 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-12-12 23:06:37 ----D---- C:\WINDOWS\ShellExperiences
2020-12-12 23:06:36 ----D---- C:\WINDOWS\bcastdvr
2020-12-12 23:06:36 ----D---- C:\WINDOWS\apppatch
2020-12-12 23:06:36 ----D---- C:\Windows
2020-12-12 23:06:36 ----D---- C:\Program Files\Windows Defender
2020-12-12 23:06:36 ----D---- C:\Program Files (x86)\Windows Defender
2020-12-12 23:06:28 ----D---- C:\WINDOWS\system32\DriverStore
2020-12-12 18:59:10 ----HD---- C:\WINDOWS\ELAMBKUP
2020-12-12 15:30:48 ----D---- C:\WINDOWS\CbsTemp
2020-12-12 14:20:38 ----SHD---- C:\WINDOWS\Installer
2020-12-08 20:55:56 ----RD---- C:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2020-12-12 36792]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-12-12 247888]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-12-12 97360]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-12-12 16832]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-12-12 84496]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-12-12 326064]
R0 fbfmon;fbfmon; C:\WINDOWS\system32\drivers\fbfmon.sys [2013-01-18 57952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-01-18 39008]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-08-12 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-12-12 208672]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-12-12 332880]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-12-12 42424]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-12-12 176384]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-12-12 522480]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-12-12 108928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-12-12 851256]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-12-12 469472]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 BPntDrv;BPntDrv; C:\WINDOWS\system32\drivers\BPntDrv.sys [2013-01-18 13408]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R1 RDPDISPM;RDPDISPM; C:\WINDOWS\System32\drivers\rdpdispm.sys [2010-08-31 10752]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-06-27 88632]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-12-12 216984]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-12-12 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2019-03-19 185344]
R2 npf;NetGroup Packet Filter Driver; \??\C:\WINDOWS\system32\drivers\npf.sys [2017-08-03 36600]
R2 NVR0FLASHDev;NVR0FLASHDev; \??\C:\windows\nvflsh64.sys [2009-01-07 40992]
R3 ACPIVPC;@oem17.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-01-18 29792]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-12-12 117064]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2020-07-03 231936]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-07-03 114688]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-03-19 57856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-03-19 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-07-03 99328]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
R3 DelayMan;@oem42.inf,%SvcDesc%;ACPI DelayMan Filter Service; C:\WINDOWS\system32\DRIVERS\delayman.sys [2013-01-18 20064]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-03-09 5382856]
R3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2011-02-22 2750312]
R3 JMCR;JMCR; C:\WINDOWS\system32\DRIVERS\jmcr.sys [2010-12-13 174168]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2019-03-19 446464]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface; C:\WINDOWS\System32\drivers\HECIx64.sys [2010-10-20 56344]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\System32\drivers\Netwsw00.sys [2019-03-19 11518976]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_9d398ade04905fdb\nvlddmkm.sys [2017-03-17 14574640]
R3 NVR0Dev;NVR0Dev; \??\C:\windows\nvoclk64.sys [2009-01-06 40480]
R3 nvvhci;@oem31.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-10-11 57792]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2017-03-17 47032]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-07-03 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-14 18432]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-07-03 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-07-03 1428992]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2020-07-03 20992]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2020-10-14 64512]
S3 hmatap;HMA TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\hmatap.sys [2018-09-05 36456]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-11-12 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 LVRS64;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-07-03 359424]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-10-11 30144]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-03-17 47672]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2020-11-12 97088]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2020-07-03 986936]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-11-03 170056]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-12-12 621728]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2020-12-12 351848]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-12-12 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_8f68a42;Uživatelská služba platformy připojených zařízení_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2019-11-28 399296]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-31 2909472]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2019-03-19 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-12-07 139056]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-12-07 139056]
R2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-12-07 139056]
R2 nTuneService;Performance Service; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [2009-01-06 255008]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11 518080]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-03-17 464440]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-10-11 460736]
R2 OneSyncSvc_8f68a42;Hostitel synchronizace_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-12-12 8477080]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_8f68a42;Uživatelská služba schránky_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_8f68a42;Agent Activation Runtime_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-14 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-19 54912]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_8f68a42;Uživatelská služba pro GameDVR a vysílání her_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_8f68a42;Služba pro podporu uživatelů Bluetooth_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_8f68a42;CaptureService_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_8f68a42;ConsentUX_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-03-09 300128]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-10-14 381656]
S3 CredentialEnrollmentManagerUserSvc_8f68a42;CredentialEnrollmentManagerUserSvc_8f68a42; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-10-14 381656]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_8f68a42;DeviceAssociationBroker_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_8f68a42;DevicePicker_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_8f68a42;Tok zařízení_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-09-09 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-04-14 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-04-14 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2020-07-03 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\elevation_service.exe [2020-12-02 1426928]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_8f68a42;Služba zasílání zpráv_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\elevation_service.exe [2020-12-17 1573776]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11 518080]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc_8f68a42;Data kontaktů_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_8f68a42;PrintWorkflow_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
-----------------EOF-----------------
Dekuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Interista at 2020-12-26 17:17:22
Microsoft Windows 10 Home
System drive C: has 149 GB (35%) free of 432 GB
Total RAM: 8136 MB (30% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:17:40, on 26.12.2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\spacedeskServiceTray.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files\trend micro\Interista.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX2] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe /FORCE
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Interista\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [AceStream] C:\Users\Interista\AppData\Roaming\ACEStream\engine\ace_engine.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe --port=52117 --pid=13932 --browsercore --lang=en-us --overscroll-history-navigation=0 --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --disable-fill-background --dpi-awareness=unaware --disable-kill-after-bad-ipc --flag-switches-begin --flag-switches-end --origin-trial-disabled-features=MeasureMemory --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --restore-last-session
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvlti.inf_amd64_9d398ade04905fdb\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_8f68a42 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: spacedeskService - Unknown owner - C:\WINDOWS\System32\spacedeskService.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Center Service (UpdateCenterService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
--
End of file - 13322 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-53268873-e6ac-45a0-be51-399dd2d0ed43 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9b5a3291-f24e-42a2-9379-d77764e031e1 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5838ff84-4c98-4bc0-a3be-6e0eb749fe9a -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b5c7bcc8-ca2b-4df2-aacc-7eb60bedb4e8 -LifetimeId:39e1f80c-dca6-443f-9e32-5de010816116 -DeviceGroupId:v3DDKIndirectGroup -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p
dashost.exe {dcd6ddee-bdfb-4535-add15db10677601e}
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\NVIDIA Corporation\System Update\UpdateCenterService.exe" /StartService
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe" /StartService
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\spacedeskService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
"C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
"C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\snmp.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost -s AppHostSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="25378DB0-F90F-42B8-2B99-59554ADBBD22" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s pla
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-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-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
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
This is spacedesk Service calling.
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:4928
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"ctfmon.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /c
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" XGpuTrayIcon"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20112.68.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
AvastUI.exe /nogui
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
"C:\Users\Interista\AppData\Local\NVIDIA Corporation\GeForceNOW\CEF\GeForceNOWReliabilityMonitor.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s Netman
C:\WINDOWS\splwow64.exe 8192
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20112.10111.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
"C:\Program Files\thinkorswim\thinkorswim.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --port=64215 --pid=19880 --browsercore --lang=en-us --overscroll-history-navigation=0 --user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 --disable-fill-background --dpi-awareness=unaware
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=crashpad-handler --user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 /prefetch:7 --monitor-self --monitor-self-argument=--type=crashpad-handler --monitor-self-argument=--user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 --monitor-self-argument=/prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Public\Documents\Google\Chrome --metrics-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 --url=https://client2.google.com/cr/reports --annotation=plat=Win64 --annotation=prod=Chromium --annotation=ver=69.0.3497.12-devel --initial-client-data=0x228,0x22c,0x230,0x224,0x234,0x7fff974a8520,0x7fff974a8530,0x7fff974a8540
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=crashpad-handler --user-data-dir=C:\Users\Interista\.thinkorswim\login-browser-data-v18-0 /prefetch:7 --no-periodic-tasks --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Public\Documents\Google\Chrome --url=https://client2.google.com/cr/reports --annotation=plat=Win64 --annotation=prod=Chromium --annotation=ver=69.0.3497.12-devel --initial-client-data=0x248,0x24c,0x250,0x244,0x254,0x7ff7ff31ff50,0x7ff7ff31ff60,0x7ff7ff31ff70
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=gpu-process --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --start-stack-profiler --browsercore --dpi-awareness=unaware --gpu-preferences=KAAAAAAAAACAAwBgAQAAAAAAAAAAAGAAAAAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --start-stack-profiler --browsercore --dpi-awareness=unaware --service-request-channel-token=4790175130563269555 --mojo-platform-channel-handle=1852 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=utility --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --lang=en-US --service-sandbox-type=audio --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --browsercore --dpi-awareness=unaware --service-request-channel-token=11180481694539910213 --mojo-platform-channel-handle=1980 /prefetch:8
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=12542284789732217256 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --start-stack-profiler --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12542284789732217256 --renderer-client-id=5 --mojo-platform-channel-handle=3572 /prefetch:1
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=17811349434083568187 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17811349434083568187 --renderer-client-id=4 --mojo-platform-channel-handle=3592 /prefetch:1
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=1495015790372158553 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1495015790372158553 --renderer-client-id=7 --mojo-platform-channel-handle=4332 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Interista\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Public\Documents\Google\Chrome "--metrics-dir=C:\Users\Interista\AppData\Local\Google\Chrome\User Data" --url=https://client2.google.com/cr/reports --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=87.0.4280.88 --initial-client-data=0xdc,0xe0,0xe4,0xb8,0xe8,0x7fff8c360eb0,0x7fff8c360ec0,0x7fff8c360ed0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1704 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=network --mojo-platform-channel-handle=2080 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2388 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2928 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4336 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4680 /prefetch:1
"C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe" --type=renderer --file-url-path-alias="/gen=C:\Program Files\thinkorswim\jxbrowser\v18\bin\gen" --field-trial-handle=1836,4911801477197063891,17798325957830895813,131072 --service-pipe-token=7104399983991265064 --lang=en-US --user-data-dir="C:\Users\Interista\.thinkorswim\login-browser-data-v18-0" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=cssExternalScannerNoPreload=false,cssExternalScannerPreload=true --origin-trial-disabled-features=MeasureMemory --browsercore --dpi-awareness=unaware --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=7104399983991265064 --renderer-client-id=9 --mojo-platform-channel-handle=4692 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6060 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5484 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3452 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --extension-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7460 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7616 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8992 /prefetch:1
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=9132,17044421334183127541,17892286954933943157,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8768 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=9132,17044421334183127541,17892286954933943157,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Interista\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4496 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=9876 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6500 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9872 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1656 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=media.mojom.CdmService --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --service-sandbox-type=cdm --mojo-platform-channel-handle=12184 /prefetch:8
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20110.11001.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3528 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=123 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8140 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=126 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4840 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=127 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9340 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=130 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5004 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=133 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5904 /prefetch:1
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=166 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7732 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=180 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=181 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=183 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8808 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=184 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8624 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=185 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6856 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=186 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7416 /prefetch:1
"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=206 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5744 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --extension-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=215 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6220 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=217 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3640 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=221 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11720 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=248 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5628 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=257 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11248 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=259 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12352 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=264 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12556 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=280 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12852 /prefetch:1
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource core
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=284 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6832 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1688,2069005181272881097,15132840330189160482,131072 --lang=cs --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=289 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9240 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe249_ Global\UsGthrCtrlFltPipeMssGthrPipe249 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 792 796 804 8192 800
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x65c
"C:\Users\Interista\Downloads\RSITx64.exe"
"C:\WINDOWS\System32\osk.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3319014896-2388623831-1738719311-1001Core.job - C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3319014896-2388623831-1738719311-1001UA.job - C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho_64.dll [2020-12-17 532880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23 217784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_141\bin\ssv.dll [2017-07-23 571968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-23 235584]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\BHO\ie_to_edge_bho.dll [2020-12-17 414096]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23 184488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-11-01 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-11-01 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23 6149288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23 4452504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-07-03 84992]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-01-18 9753024]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-01-18 5908928]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2020-12-12 117352]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-02-18 11779176]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-10 509936]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2017-03-09 193112]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2017-03-09 420960]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2017-03-09 463960]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-07 3951280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Dropbox Update"=C:\Users\Interista\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
"OneDrive"=C:\Users\Interista\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-12-18 1938296]
"AceStream"=C:\Users\Interista\AppData\Roaming\ACEStream\engine\ace_engine.exe [2018-08-30 27960]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-03-19 22245560]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #1"=C:\Program Files\thinkorswim\jxbrowser\v18\bin\chromium.exe [2020-04-08 1546784]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdatePRCShortCut"=C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [2009-05-13 222504]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-07-12 587288]
"IJNetworkScannerSelectorEX2"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [2016-12-09 279240]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2017-07-05 1313408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\DriverStore\FileRepository\nvlti.inf_amd64_9d398ade04905fdb\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2017-03-09 460936]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-12-22 20:03:16 ----D---- C:\ProgramData\GOG.com
2020-12-12 18:59:10 ----A---- C:\WINDOWS\system32\aswBoot.exe
2020-12-12 18:59:00 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2020-12-12 15:18:56 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2020-12-12 15:18:56 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-12-12 15:18:55 ----A---- C:\WINDOWS\system32\fveapibase.dll
2020-12-12 15:18:55 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-12-12 15:18:54 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-12-12 15:18:53 ----A---- C:\WINDOWS\system32\cdp.dll
2020-12-12 15:18:53 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-12-12 15:18:29 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2020-12-12 15:18:29 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2020-12-12 15:18:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2020-12-12 15:18:28 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2020-12-12 15:18:28 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2020-12-12 15:18:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2020-12-12 15:18:27 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2020-12-12 15:18:27 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\system32\HolographicRuntimes.dll
2020-12-12 15:18:26 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-12-12 15:18:25 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-12-12 15:18:25 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2020-12-12 15:18:22 ----A---- C:\WINDOWS\system32\wpdshext.dll
2020-12-12 15:18:22 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-12-12 15:18:22 ----A---- C:\WINDOWS\system32\DMRServer.dll
2020-12-12 15:18:21 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-12-12 15:18:21 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-12-12 15:18:21 ----A---- C:\WINDOWS\system32\dlnashext.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\mfsvr.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-12-12 15:18:20 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-12-12 15:18:19 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-12-12 15:18:19 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2020-12-12 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-12-12 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2020-12-12 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-12-12 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-12-12 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2020-12-12 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2020-12-12 15:18:15 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\wecutil.exe
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\wecapi.dll
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-12-12 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-12-12 15:18:13 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2020-12-12 15:18:13 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2020-12-12 15:18:13 ----A---- C:\WINDOWS\SYSWOW64\net1.exe
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\Spectrum.exe
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\ListSvc.dll
2020-12-12 15:17:34 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\rdpnano.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\FsNVSDeviceSource.dll
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2020-12-12 15:17:33 ----A---- C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2020-12-12 15:17:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-12-12 15:17:32 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2020-12-12 15:17:32 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2020-12-12 15:17:31 ----A---- C:\WINDOWS\system32\Chakra.dll
2020-12-12 15:17:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wsecedit.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wecutil.exe
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wecsvc.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\wecapi.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\StorSvc.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\packager.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\net1.exe
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\jscript.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-12-12 15:17:28 ----A---- C:\WINDOWS\system32\edpcsp.dll
2020-12-12 15:17:26 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-12-12 15:17:26 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-12-12 15:17:26 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\vertdll.dll
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\skci.dll
2020-12-12 15:17:25 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-12-12 15:17:24 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-12-12 15:17:24 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2020-12-12 15:17:24 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-12-12 15:17:24 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2020-12-12 15:17:23 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2020-12-12 15:17:22 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\unenrollhook.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\gmsaclient.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\enterpriseresourcemanager.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2020-12-12 15:17:21 ----A---- C:\WINDOWS\SYSWOW64\dmcfgutils.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2020-12-12 15:16:34 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-12-12 15:16:33 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\CertPolEng.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\btpanui.dll
2020-12-12 15:16:32 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\winipcfile.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-12-12 15:16:31 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2020-12-12 15:16:30 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-12-12 15:16:29 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2020-12-12 15:16:29 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-12-12 15:16:29 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2020-12-12 15:16:28 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\dsregtask.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2020-12-12 15:16:27 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\TaskSchdPS.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2020-12-12 15:16:26 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2020-12-12 15:16:25 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\twext.dll
2020-12-12 15:16:24 ----A---- C:\WINDOWS\system32\comdlg32.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\RASMM.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rasman.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rascustom.dll
2020-12-12 15:16:23 ----A---- C:\WINDOWS\system32\rasapi32.dll
2020-12-12 15:16:22 ----A---- C:\WINDOWS\system32\netshell.dll
2020-12-12 15:16:22 ----A---- C:\WINDOWS\system32\netid.dll
2020-12-12 15:16:22 ----A---- C:\WINDOWS\system32\netcfgx.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\SDDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\JpnServiceDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\FilterDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\DDDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\BingFilterDS.dll
2020-12-12 15:15:29 ----A---- C:\WINDOWS\system32\BingASDS.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\profsvcext.dll
2020-12-12 15:15:28 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2020-12-12 15:15:27 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\omadmclient.exe
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\omadmapi.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-12-12 15:15:26 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\LogonController.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcsps.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcfgutils.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\coredpus.dll
2020-12-12 15:15:25 ----A---- C:\WINDOWS\system32\configmanager2.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\system32\netlogon.dll
2020-12-12 15:15:24 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\gmsaclient.dll
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-12-12 15:15:23 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\sechost.dll
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2020-12-12 15:15:22 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2020-12-12 15:15:21 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\weretw.dll
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\wer.dll
2020-12-12 15:15:20 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\utcutil.dll
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\runexehelper.exe
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2020-12-12 15:15:19 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\rpcss.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\msv1_0.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\lsasrv.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\logoncli.dll
2020-12-12 15:15:18 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\wldp.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\combase.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\ci.dll
2020-12-12 15:15:17 ----A---- C:\WINDOWS\system32\bcrypt.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\TaskSchdPS.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\taskschd.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\taskhostw.exe
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\taskcomp.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\schtasks.exe
2020-12-12 15:15:16 ----A---- C:\WINDOWS\system32\schedsvc.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\uDWM.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\shell32.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\ntshrui.dll
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2020-12-12 15:15:14 ----A---- C:\WINDOWS\system32\dcomp.dll
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\winresume.exe
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\winload.exe
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2020-12-12 15:15:13 ----A---- C:\WINDOWS\system32\CertPolEng.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\shacct.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\cldapi.dll
2020-12-12 15:15:12 ----A---- C:\WINDOWS\system32\btpanui.dll
2020-12-12 15:14:08 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2020-12-12 15:14:08 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-12-12 15:14:08 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\UsoClient.exe
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2020-12-12 15:14:07 ----A---- C:\WINDOWS\system32\AppResolver.dll
2020-12-12 15:14:06 ----A---- C:\WINDOWS\system32\usosvc.dll
2020-12-12 15:14:06 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2020-12-12 15:14:05 ----A---- C:\WINDOWS\system32\SHCore.dll
2020-12-12 15:14:05 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2020-12-12 15:14:04 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2020-12-12 15:14:04 ----A---- C:\WINDOWS\system32\winipcfile.dll
2020-12-12 15:14:04 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-12-12 15:14:03 ----A---- C:\WINDOWS\system32\winmsipc.dll
2020-12-12 15:14:03 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2020-12-12 15:14:03 ----A---- C:\WINDOWS\system32\bindflt.dll
2020-12-12 15:14:02 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2020-12-12 15:14:01 ----A---- C:\WINDOWS\system32\win32u.dll
2020-12-12 15:14:01 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-12-12 15:14:01 ----A---- C:\WINDOWS\system32\win32k.sys
2020-12-12 15:14:00 ----A---- C:\WINDOWS\system32\user32.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\fwmdmcsp.dll
2020-12-12 15:13:58 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-12-12 15:13:57 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2020-12-12 15:13:56 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-12-12 15:13:56 ----A---- C:\WINDOWS\system32\InputHost.dll
2020-12-12 15:13:55 ----A---- C:\WINDOWS\system32\tquery.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\mssvp.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\mssrch.dll
2020-12-12 15:13:54 ----A---- C:\WINDOWS\system32\mssprxy.dll
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\mssph.dll
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\mssitlb.dll
2020-12-12 15:13:53 ----A---- C:\WINDOWS\system32\msscntrs.dll
2020-12-12 15:13:52 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2020-12-12 15:13:52 ----A---- C:\WINDOWS\system32\domgmt.dll
2020-12-12 15:13:51 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2020-12-12 15:13:51 ----A---- C:\WINDOWS\system32\dosvc.dll
2020-12-12 15:13:50 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-12-12 15:13:50 ----A---- C:\WINDOWS\system32\gdi32.dll
2020-12-12 15:13:50 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2020-12-12 15:13:49 ----A---- C:\WINDOWS\system32\aadtb.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2020-12-12 15:13:48 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-12-12 15:13:47 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-12-12 15:13:47 ----A---- C:\WINDOWS\system32\netplwiz.dll
2020-12-12 15:13:46 ----A---- C:\WINDOWS\system32\StartTileData.dll
2020-12-12 15:13:46 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\winshfhc.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\netman.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\dsregtask.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\dsreg.dll
2020-12-12 15:13:45 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\WpcMon.exe
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\Wpc.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\spoolsv.exe
2020-12-12 15:13:44 ----A---- C:\WINDOWS\system32\localspl.dll
2020-12-12 15:13:44 ----A---- C:\WINDOWS\splwow64.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\WpcTok.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-12-12 15:13:43 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\ManageCI.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\autopilot.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\AudioSes.dll
2020-12-12 15:13:42 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-12-08 20:57:48 ----D---- C:\Users\Interista\AppData\Roaming\Jihosoft ISO Maker
2020-12-08 20:55:56 ----D---- C:\Program Files (x86)\Jihosoft
2020-12-08 20:54:27 ----D---- C:\ProgramData\DAEMON Tools Pro
======List of files/folders modified in the last 1 month======
2020-12-26 17:17:33 ----D---- C:\WINDOWS\system32\drivers\etc
2020-12-26 17:17:32 ----D---- C:\Program Files\trend micro
2020-12-26 17:17:28 ----D---- C:\WINDOWS\Temp
2020-12-26 17:10:14 ----D---- C:\WINDOWS\Prefetch
2020-12-26 17:07:49 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-12-26 16:59:08 ----D---- C:\WINDOWS\system32\sru
2020-12-26 16:26:19 ----AD---- C:\Program Files\CCleaner
2020-12-26 16:09:42 ----D---- C:\Program Files\thinkorswim
2020-12-26 16:01:01 ----D---- C:\ProgramData\NVIDIA
2020-12-26 00:07:28 ----D---- C:\Program Files (x86)\Steam
2020-12-25 23:29:44 ----D---- C:\Users\Interista\AppData\Roaming\Telegram Desktop
2020-12-25 23:20:48 ----D---- C:\WINDOWS\system32\SleepStudy
2020-12-25 19:06:10 ----RD---- C:\WINDOWS\Microsoft.NET
2020-12-25 18:20:07 ----SD---- C:\Users\Interista\AppData\Roaming\Microsoft
2020-12-25 17:44:27 ----D---- C:\WINDOWS\INF
2020-12-25 16:12:31 ----D---- C:\ProgramData\NVIDIA Corporation
2020-12-24 18:01:12 ----D---- C:\ProgramData\CanonIJPLM
2020-12-23 13:57:04 ----D---- C:\WINDOWS\system32\config
2020-12-23 13:51:36 ----D---- C:\ProgramData\ProductData
2020-12-22 20:03:16 ----HD---- C:\ProgramData
2020-12-22 19:22:11 ----D---- C:\Games
2020-12-22 18:00:01 ----D---- C:\WINDOWS\system32\LogFiles
2020-12-22 14:21:43 ----HD---- C:\Program Files\WindowsApps
2020-12-22 13:36:26 ----D---- C:\WINDOWS\system32\catroot2
2020-12-22 13:36:22 ----SHD---- C:\System Volume Information
2020-12-22 13:29:55 ----D---- C:\WINDOWS\WinSxS
2020-12-22 13:28:12 ----D---- C:\WINDOWS\Logs
2020-12-22 13:12:05 ----D---- C:\Downloads
2020-12-22 12:05:05 ----D---- C:\WINDOWS\AppReadiness
2020-12-18 16:38:33 ----D---- C:\Users\Interista\AppData\Roaming\Canon
2020-12-18 16:38:31 ----HD---- C:\ProgramData\CanonIJMIG
2020-12-18 16:23:40 ----D---- C:\WINDOWS\system32\Tasks
2020-12-14 18:11:12 ----D---- C:\Jts
2020-12-13 15:13:02 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2020-12-13 10:36:45 ----D---- C:\WINDOWS\System32
2020-12-13 10:36:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-13 10:27:26 ----D---- C:\WINDOWS\system32\drivers
2020-12-12 23:07:02 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-12-12 23:07:02 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-12-12 23:07:01 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-12-12 23:07:01 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-12-12 23:07:01 ----D---- C:\WINDOWS\SysWOW64
2020-12-12 23:06:55 ----D---- C:\WINDOWS\SystemResources
2020-12-12 23:06:53 ----D---- C:\WINDOWS\system32\zh-TW
2020-12-12 23:06:53 ----D---- C:\WINDOWS\system32\oobe
2020-12-12 23:06:53 ----D---- C:\WINDOWS\system32\migration
2020-12-12 23:06:52 ----D---- C:\WINDOWS\system32\en-US
2020-12-12 23:06:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2020-12-12 23:06:50 ----D---- C:\WINDOWS\system32\Dism
2020-12-12 23:06:50 ----D---- C:\WINDOWS\system32\cs-CZ
2020-12-12 23:06:49 ----D---- C:\WINDOWS\system32\Boot
2020-12-12 23:06:37 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-12-12 23:06:37 ----D---- C:\WINDOWS\ShellExperiences
2020-12-12 23:06:36 ----D---- C:\WINDOWS\bcastdvr
2020-12-12 23:06:36 ----D---- C:\WINDOWS\apppatch
2020-12-12 23:06:36 ----D---- C:\Windows
2020-12-12 23:06:36 ----D---- C:\Program Files\Windows Defender
2020-12-12 23:06:36 ----D---- C:\Program Files (x86)\Windows Defender
2020-12-12 23:06:28 ----D---- C:\WINDOWS\system32\DriverStore
2020-12-12 18:59:10 ----HD---- C:\WINDOWS\ELAMBKUP
2020-12-12 15:30:48 ----D---- C:\WINDOWS\CbsTemp
2020-12-12 14:20:38 ----SHD---- C:\WINDOWS\Installer
2020-12-08 20:55:56 ----RD---- C:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2020-12-12 36792]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2020-12-12 247888]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2020-12-12 97360]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-12-12 16832]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2020-12-12 84496]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2020-12-12 326064]
R0 fbfmon;fbfmon; C:\WINDOWS\system32\drivers\fbfmon.sys [2013-01-18 57952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-01-18 39008]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-08-12 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2020-12-12 208672]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2020-12-12 332880]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2020-12-12 42424]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2020-12-12 176384]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2020-12-12 522480]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2020-12-12 108928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2020-12-12 851256]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2020-12-12 469472]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 BPntDrv;BPntDrv; C:\WINDOWS\system32\drivers\BPntDrv.sys [2013-01-18 13408]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R1 RDPDISPM;RDPDISPM; C:\WINDOWS\System32\drivers\rdpdispm.sys [2010-08-31 10752]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-06-27 88632]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2020-12-12 216984]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-12-12 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2019-03-19 185344]
R2 npf;NetGroup Packet Filter Driver; \??\C:\WINDOWS\system32\drivers\npf.sys [2017-08-03 36600]
R2 NVR0FLASHDev;NVR0FLASHDev; \??\C:\windows\nvflsh64.sys [2009-01-07 40992]
R3 ACPIVPC;@oem17.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-01-18 29792]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-12-12 117064]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2020-07-03 231936]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-07-03 114688]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-03-19 57856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-03-19 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-07-03 99328]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
R3 DelayMan;@oem42.inf,%SvcDesc%;ACPI DelayMan Filter Service; C:\WINDOWS\system32\DRIVERS\delayman.sys [2013-01-18 20064]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-03-09 5382856]
R3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2011-02-22 2750312]
R3 JMCR;JMCR; C:\WINDOWS\system32\DRIVERS\jmcr.sys [2010-12-13 174168]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2019-03-19 446464]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface; C:\WINDOWS\System32\drivers\HECIx64.sys [2010-10-20 56344]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\System32\drivers\Netwsw00.sys [2019-03-19 11518976]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_9d398ade04905fdb\nvlddmkm.sys [2017-03-17 14574640]
R3 NVR0Dev;NVR0Dev; \??\C:\windows\nvoclk64.sys [2009-01-06 40480]
R3 nvvhci;@oem31.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-10-11 57792]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-03-19 211456]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2017-03-17 47032]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-07-03 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-14 18432]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-07-03 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2020-07-03 1428992]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2020-07-03 20992]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2020-10-14 64512]
S3 hmatap;HMA TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\hmatap.sys [2018-09-05 36456]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-11-12 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 LVRS64;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-07-03 359424]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-10-11 30144]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-03-17 47672]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2020-11-12 97088]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2020-07-03 986936]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-03-19 113152]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-11-03 170056]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2020-12-12 621728]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2020-12-12 351848]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2020-12-12 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_8f68a42;Uživatelská služba platformy připojených zařízení_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2019-11-28 399296]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-31 2909472]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2019-03-19 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-12-07 139056]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-12-07 139056]
R2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-12-07 139056]
R2 nTuneService;Performance Service; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [2009-01-06 255008]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11 518080]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-03-17 464440]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-10-11 460736]
R2 OneSyncSvc_8f68a42;Hostitel synchronizace_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2020-12-12 8477080]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_8f68a42;Uživatelská služba schránky_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_8f68a42;Agent Activation Runtime_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-14 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-19 54912]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_8f68a42;Uživatelská služba pro GameDVR a vysílání her_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_8f68a42;Služba pro podporu uživatelů Bluetooth_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_8f68a42;CaptureService_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_8f68a42;ConsentUX_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-03-09 300128]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-10-14 381656]
S3 CredentialEnrollmentManagerUserSvc_8f68a42;CredentialEnrollmentManagerUserSvc_8f68a42; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-10-14 381656]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_8f68a42;DeviceAssociationBroker_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_8f68a42;DevicePicker_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_8f68a42;Tok zařízení_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-09-09 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-04-14 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-04-14 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2020-07-03 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\elevation_service.exe [2020-12-02 1426928]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_8f68a42;Služba zasílání zpráv_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.66\elevation_service.exe [2020-12-17 1573776]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11 518080]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc_8f68a42;Data kontaktů_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_8f68a42;PrintWorkflow_8f68a42; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
-----------------EOF-----------------