Yahoo jako domovská stránka, pomalý počítač, procesy na pozadí
Napsal: 10 bře 2021 13:44
Dobrý den,
prosím o pomoc. Mám problém s prohlížečem Chrome. Zničehonic se mi do chromu vetřelo Yahoo (při otevření nové karty prohlížeče Chrome nevyhledává přes Google) a všechno se zpomalilo. K tomu se se mi přidal do počítače McAfee webadvisor. Bohužel v období, kdy se tyto problémy objevily, si neuvědomuji, že bych něco stahoval nebo instaloval (ale je možné, že mám jen krátkou paměť). Zároveň se mi stává, že když chci počítač čistit pomocí CCleaneru, požaduje po mě CCleaner uzavření (nakonec vynucené) Chromu, který ale není vědomě spuštěný a na hlavním panelu zobrazený.
V neposlední řadě jsem měl problém s vygenerováním logu z FRST. Všechno probíhalo, ale soubory .txt byly nakonec prázdné. Na druhý pokus mi FRST uzavřel Avast do truhly. Ani na třetí pokus to nevyšlo. Nevím, zda to k něčemu bude, improvizuji, přikládám alespoň log z RSIT, přestože mám Windows 10.
Předem děkuji za pomoc.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2021-03-10 13:29:39
Microsoft Windows 10 Home
System drive C: has 211 GB (44%) free of 476 GB
Total RAM: 3979 MB (33% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:29:56, on 10.03.2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal
Running processes:
C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe
C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe
C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\FileCoAuth.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\trend micro\Uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\BHO\ie_to_edge_bho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll
O3 - Toolbar: PDFXChange 2012 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Uzivatel\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [PTOneClick] C:\Program Files (x86)\Webex\Webex\Applications\ptoneclk.exe /AutoRunning="1"
O4 - HKCU\..\Run: [CiscoMeetingDaemon] "C:\Users\Uzivatel\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
O4 - HKCU\..\RunOnce: [Delete Cached Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Delete Cached Standalone Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Uninstall 21.002.0104.0005\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 21.002.0104.0005] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.002.0104.0005"
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - https://fpdownload.macromedia.com/pub/s ... tor/sw.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) -
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_11acfb - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: McAfee WebAdvisor - McAfee, LLC - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: McAfee True Key (TrueKey) - McAfee, LLC. - C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: McAfee True Key Scheduler (TrueKeyScheduler) - McAfee, LLC. - C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe
O23 - Service: McAfee True Key Helper Service (TrueKeyServiceHelper) - McAfee, LLC. - C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: Cisco WebEx Update Service (WebexService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13605 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0b3649ce-3e06-497f-8f06-f2810cfe5563 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a09089d9-895b-4eea-9ee8-00d7f96d4fc4 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-03bee061-e9ec-4629-b607-c748e6200523 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-c6441e7c-eb9c-44c8-9635-43d099bbbfb7 -LifetimeId:6a832a03-56c8-40c0-9c40-bc930067a363 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SensorService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SensrSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
dashost.exe {9cd2abde-f7d8-441a-aeb637a14fd073d4}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="3A6E3760-408E-C4E3-BC55-64D1C2926775" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s upnphost
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe"
"C:\Program Files\McAfee\WebAdvisor\UIHost.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k BthAppGroup -p -s BluetoothUserService
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe"
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"ctfmon.exe"
/QuitInfo:0000000000000260;0000000000000264;
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
"C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\Dell\QuickSet\quickset.exe"
AvastUI.exe /nogui
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\Windows\System32\mousocoreworker.exe -Embedding
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8336,15844533243635794032,4482839678625286598,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8432 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=8336,15844533243635794032,4482839678625286598,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8808 /prefetch:8
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe" -ServerName:microsoft.windowslive.mail.AppXfbjsbkxvprcgqg6q4c9jfr0pn3kv9x5s.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxAccounts.exe" -ServerName:microsoft.windowslive.manageaccounts.AppXdbf3yp5apt3t7q877db3gnz5zqpf71zj.mca
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s WebClient
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe"
"C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe" --action=preload --runaszvideo=TRUE --useroption=4504149475459072 --useroption2=1170935903118426176 --useroption3=2305984846219149824 --haszoomim=1
/updateInstalled /background
"C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=8336,15844533243635794032,4482839678625286598,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=audio --no-sandbox --force-wave-audio --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=10164 /prefetch:8
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\FileCoAuth.exe" -Embedding
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
/Skip /ProcessResult /PRODUCT:Reader /LANG:CZE
taskhostw.exe
C:\WINDOWS\system32\svchost.exe -k PrintWorkflow -s PrintWorkflowUserSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
werfault.exe /hc /shared Global\9cf7ac073d4942bd955dd7cd5795eec5 /t 2036 /p 4712
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe" -ServerName:App.AppXbdkk0yrkwpcgeaem8zk81k8py1eaahny.mca
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=88.0.4324.182 --initial-client-data=0xe4,0xe8,0xec,0xc0,0xf0,0x7ff9f61d9e90,0x7ff9f61d9ea0,0x7ff9f61d9eb0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --gpu-preferences=OAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAABQAAABAAAAAAAAAAAAAAAAYAAAAQAAAAAAAAAAEAAAAFAAAAEAAAAAAAAAABAAAABgAAAA== --mojo-platform-channel-handle=1720 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --service-sandbox-type=network --mojo-platform-channel-handle=2052 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2300 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --extension-process --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3588 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files\McAfee\WebAdvisor\BrowserHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.b71e2b9f2fee95f4 > \\.\pipe\chrome.nativeMessaging.out.b71e2b9f2fee95f4
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\McAfee\WebAdvisor\BrowserHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=7324 /prefetch:8
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21021.116.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.21021.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2536 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=99 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1572 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20110.11001.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=103 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12108 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788 764
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x650
"C:\Users\Uzivatel\Downloads\RSITx64.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s dmwappushservice
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s SmsRouter
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23 1452072]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\BHO\ie_to_edge_bho_64.dll [2021-03-03 548232]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-03-10 189248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-02-11 1409680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23 1073880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\BHO\ie_to_edge_bho.dll [2021-03-03 416648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-19 473664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-02-11 1105208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23 1452072]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23 1073880]
{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - PDFXChange 2012 - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll [2013-01-19 423488]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2019-11-18 9269352]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2019-11-18 1506384]
"WavesSvc"=C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [2014-02-17 519256]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2014-02-27 3775816]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2021-01-02 117352]
"RtHDVBg_PushButton"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2019-11-18 1506384]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-23 2779376]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [2014-02-25 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"com.squirrel.Teams.Teams"=C:\Users\Uzivatel\AppData\Local\Microsoft\Teams\Update.exe [2020-11-23 2453688]
"OneDrive"=C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2021-02-27 1942400]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2021-03-05 32726088]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2020-04-02 365760]
"PTOneClick"=C:\Program Files (x86)\Webex\Webex\Applications\ptoneclk.exe [2020-09-18 7690560]
"CiscoMeetingDaemon"=C:\Users\Uzivatel\AppData\Local\WebEx\ciscowebexstart.exe [2021-01-22 2427592]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Delete Cached Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
"Delete Cached Standalone Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
"Uninstall 21.002.0104.0005\amd64"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
"Uninstall 21.002.0104.0005"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [2014-02-25 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
"C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
"C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"DisableCAD"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2021-02-16 11:24:37 ----A---- C:\WINDOWS\system32\FXSUNATD.exe
2021-02-16 11:24:37 ----A---- C:\WINDOWS\system32\FXSROUTE.dll
2021-02-16 11:24:37 ----A---- C:\WINDOWS\system32\FXSMON.dll
2021-02-16 11:24:36 ----A---- C:\WINDOWS\system32\FXSSVC.exe
2021-02-16 11:24:36 ----A---- C:\WINDOWS\system32\FXSEVENT.dll
2021-02-16 11:24:31 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2021-02-16 11:24:31 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2021-02-16 11:24:31 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2021-02-16 11:24:31 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\fvewiz.dll
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\bdesvc.dll
2021-02-16 11:24:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2021-02-16 11:24:29 ----A---- C:\WINDOWS\system32\fveui.dll
2021-02-16 11:24:28 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2021-02-16 11:24:26 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2021-02-16 11:23:32 ----A---- C:\WINDOWS\system32\cdp.dll
2021-02-16 11:23:32 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2021-02-16 11:23:05 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-02-16 11:23:04 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2021-02-16 11:23:04 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2021-02-16 11:23:03 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-02-16 11:23:02 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2021-02-16 11:23:02 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2021-02-16 11:23:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-02-16 11:23:00 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-02-16 11:22:59 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-02-16 11:22:58 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2021-02-16 11:22:58 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2021-02-16 11:22:57 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2021-02-16 11:22:56 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-02-16 11:22:53 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-02-16 11:22:53 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2021-02-16 11:22:52 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-02-16 11:22:52 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-02-16 11:22:51 ----A---- C:\WINDOWS\system32\msvproc.dll
2021-02-16 11:22:51 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-02-16 11:22:50 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-02-16 11:22:50 ----A---- C:\WINDOWS\system32\mfps.dll
2021-02-16 11:22:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-02-16 11:22:49 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2021-02-16 11:22:48 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2021-02-16 11:22:48 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2021-02-16 11:22:45 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2021-02-16 11:22:43 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-02-16 11:22:43 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-02-16 11:22:42 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2021-02-16 11:22:42 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\cryptuiwizard.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\CertPKICmdlet.dll
2021-02-16 11:22:40 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2021-02-16 11:22:40 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-02-16 11:22:38 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-02-16 11:22:37 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-02-16 11:22:36 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-02-16 11:22:36 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2021-02-16 11:22:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-02-16 11:22:34 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-02-16 11:22:33 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-02-16 11:20:55 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-02-16 11:20:54 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2021-02-16 11:20:54 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2021-02-16 11:20:54 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhlisten.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-02-16 11:20:44 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-02-16 11:20:44 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2021-02-16 11:20:44 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2021-02-16 11:20:43 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2021-02-16 11:20:43 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-02-16 11:20:43 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2021-02-16 11:20:42 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-02-16 11:20:42 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-02-16 11:20:41 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-02-16 11:20:40 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-02-16 11:20:40 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-02-16 11:20:39 ----A---- C:\WINDOWS\system32\Windows.System.Profile.HardwareId.dll
2021-02-16 11:20:39 ----A---- C:\WINDOWS\system32\cryptuiwizard.dll
2021-02-16 11:20:39 ----A---- C:\WINDOWS\system32\CertPKICmdlet.dll
2021-02-16 11:20:38 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-02-16 11:20:38 ----A---- C:\WINDOWS\system32\nltest.exe
2021-02-16 11:20:38 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-02-16 11:20:37 ----A---- C:\WINDOWS\system32\msi.dll
2021-02-16 11:20:35 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-02-16 11:20:35 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-02-16 11:20:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-02-16 11:20:32 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-02-16 11:20:32 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-02-16 11:20:32 ----A---- C:\WINDOWS\system32\Chakra.dll
2021-02-16 11:20:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-02-16 11:20:28 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-02-16 11:20:27 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-02-16 11:20:23 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-02-16 11:20:21 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2021-02-16 11:20:20 ----A---- C:\WINDOWS\system32\werui.dll
2021-02-16 11:20:18 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-02-16 11:20:17 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-02-16 11:20:17 ----A---- C:\WINDOWS\system32\packager.dll
2021-02-16 11:20:15 ----A---- C:\WINDOWS\system32\autofmt.exe
2021-02-16 11:20:15 ----A---- C:\WINDOWS\system32\autoconv.exe
2021-02-16 11:20:14 ----A---- C:\WINDOWS\system32\edpcsp.dll
2021-02-16 11:20:13 ----A---- C:\WINDOWS\system32\EDPCleanup.exe
2021-02-16 11:20:13 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2021-02-16 11:20:12 ----A---- C:\WINDOWS\system32\ClipUp.exe
2021-02-16 11:20:11 ----A---- C:\WINDOWS\system32\computecore.dll
2021-02-16 11:20:07 ----A---- C:\WINDOWS\system32\resutils.dll
2021-02-16 11:20:07 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-02-16 11:20:06 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-02-16 11:20:06 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\vertdll.dll
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\securekernel.exe
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-02-16 11:20:04 ----A---- C:\WINDOWS\system32\ResourceMapper.dll
2021-02-16 11:20:04 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-02-16 11:20:03 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2021-02-16 11:20:02 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-02-16 11:20:02 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2021-02-16 11:20:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2021-02-16 11:20:01 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2021-02-16 11:19:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-02-16 11:19:58 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-02-16 11:19:58 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-02-16 11:19:57 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-02-16 11:19:57 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2021-02-16 11:19:21 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2021-02-16 11:19:21 ----A---- C:\WINDOWS\SYSWOW64\dmpushproxy.dll
2021-02-16 11:19:21 ----A---- C:\WINDOWS\SYSWOW64\DMAppsRes.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\WerEnc.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2021-02-16 11:19:18 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2021-02-16 11:19:18 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2021-02-16 11:19:18 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\adsldpc.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\AtBroker.exe
2021-02-16 11:19:15 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2021-02-16 11:19:12 ----A---- C:\WINDOWS\SYSWOW64\ulib.dll
2021-02-16 11:19:12 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2021-02-16 11:19:12 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2021-02-16 11:19:11 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2021-02-16 11:19:10 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2021-02-16 11:19:08 ----A---- C:\WINDOWS\SYSWOW64\D3D12Core.dll
2021-02-16 11:19:08 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2021-02-16 11:19:07 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-02-16 11:19:07 ----A---- C:\WINDOWS\SYSWOW64\DiagnosticInvoker.dll
2021-02-16 11:19:06 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2021-02-16 11:19:06 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2021-02-16 11:19:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2021-02-16 11:19:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2021-02-16 11:19:05 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2021-02-16 11:19:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2021-02-16 11:19:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2021-02-16 11:19:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2021-02-16 11:19:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2021-02-16 11:19:02 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2021-02-16 11:19:01 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2021-02-16 11:18:59 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-02-16 11:18:58 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2021-02-16 11:18:56 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2021-02-16 11:18:56 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2021-02-16 11:18:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2021-02-16 11:18:52 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2021-02-16 11:18:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2021-02-16 11:18:51 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2021-02-16 11:18:50 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2021-02-16 11:18:50 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2021-02-16 11:18:49 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2021-02-16 11:18:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-02-16 11:18:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2021-02-16 11:18:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2021-02-16 11:18:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2021-02-16 11:18:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Controls.dll
2021-02-16 11:18:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-02-16 11:18:42 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2021-02-16 11:18:42 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-02-16 11:18:42 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-02-16 11:18:41 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2021-02-16 11:18:41 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2021-02-16 11:18:41 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2021-02-16 11:18:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-02-16 11:18:40 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2021-02-16 11:18:39 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-02-16 11:18:39 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-02-16 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2021-02-16 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2021-02-16 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2021-02-16 11:18:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2021-02-16 11:17:42 ----A---- C:\WINDOWS\system32\pku2u.dll
2021-02-16 11:17:40 ----A---- C:\WINDOWS\system32\LsaIso.exe
2021-02-16 11:17:40 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2021-02-16 11:17:37 ----A---- C:\WINDOWS\system32\shell32.dll
2021-02-16 11:17:36 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2021-02-16 11:17:36 ----A---- C:\WINDOWS\system32\ntshrui.dll
2021-02-16 11:17:35 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-02-16 11:17:35 ----A---- C:\WINDOWS\system32\comdlg32.dll
2021-02-16 11:17:34 ----A---- C:\WINDOWS\system32\vbscript.dll
2021-02-16 11:17:34 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2021-02-16 11:17:33 ----A---- C:\WINDOWS\system32\umpoext.dll
2021-02-16 11:17:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-02-16 11:17:32 ----A---- C:\WINDOWS\system32\nlasvc.dll
2021-02-16 11:17:32 ----A---- C:\WINDOWS\system32\nlaapi.dll
2021-02-16 11:17:32 ----A---- C:\WINDOWS\system32\ncsi.dll
2021-02-16 11:17:25 ----A---- C:\WINDOWS\system32\ubpm.dll
2021-02-16 11:17:25 ----A---- C:\WINDOWS\system32\sppobjs.dll
2021-02-16 11:17:25 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2021-02-16 11:17:24 ----A---- C:\WINDOWS\system32\sppcext.dll
2021-02-16 11:17:22 ----A---- C:\WINDOWS\system32\sppsvc.exe
2021-02-16 11:17:21 ----A---- C:\WINDOWS\system32\msIso.dll
2021-02-16 11:17:21 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-02-16 11:17:21 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-02-16 11:17:20 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-02-16 11:17:19 ----A---- C:\WINDOWS\system32\profsvcext.dll
2021-02-16 11:17:19 ----A---- C:\WINDOWS\system32\actxprxy.dll
2021-02-16 11:17:18 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-02-16 11:17:18 ----A---- C:\WINDOWS\system32\efsext.dll
2021-02-16 11:17:16 ----A---- C:\WINDOWS\system32\edptask.dll
2021-02-16 11:17:16 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2021-02-16 11:17:15 ----A---- C:\WINDOWS\system32\tdh.dll
2021-02-16 11:17:15 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2021-02-16 11:17:15 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-02-16 11:17:13 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-02-16 11:17:13 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2021-02-16 11:17:13 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2021-02-16 11:17:12 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-02-16 11:17:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-02-16 11:17:11 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-02-16 11:17:11 ----A---- C:\WINDOWS\system32\dmpushproxy.dll
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\DMAppsRes.dll
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\coredpus.dll
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\configmanager2.dll
2021-02-16 11:17:09 ----A---- C:\WINDOWS\system32\wuuhext.dll
2021-02-16 11:17:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-02-16 11:17:08 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-02-16 11:17:08 ----A---- C:\WINDOWS\system32\msctf.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\lpk.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\fontsub.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\dciman32.dll
2021-02-16 11:17:06 ----A---- C:\WINDOWS\system32\netlogon.dll
2021-02-16 11:17:05 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-02-16 11:17:03 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-02-16 11:17:02 ----A---- C:\WINDOWS\system32\drivers\NetAdapterCx.sys
2021-02-16 11:17:01 ----A---- C:\WINDOWS\system32\KernelBase.dll
2021-02-16 11:17:00 ----A---- C:\WINDOWS\system32\sechost.dll
2021-02-16 11:17:00 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2021-02-16 11:16:57 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-02-16 11:16:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-02-16 11:16:56 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2021-02-16 11:16:56 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\WerFault.exe
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\WerEnc.dll
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\Faultrep.dll
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\dbgcore.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\utcutil.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\diagtrack.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\dbghelp.dll
2021-02-16 11:16:53 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2021-02-16 11:16:09 ----A---- C:\WINDOWS\system32\lsasrv.dll
2021-02-16 11:16:09 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2021-02-16 11:16:08 ----A---- C:\WINDOWS\system32\oleaut32.dll
2021-02-16 11:16:08 ----A---- C:\WINDOWS\system32\drivers\http.sys
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\tzres.dll
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\schannel.dll
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\profsvc.dll
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\msv1_0.dll
2021-02-16 11:16:06 ----A---- C:\WINDOWS\system32\crypt32.dll
2021-02-16 11:16:05 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2021-02-16 11:16:05 ----A---- C:\WINDOWS\system32\rpcss.dll
2021-02-16 11:16:05 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2021-02-16 11:16:04 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2021-02-16 11:16:04 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2021-02-16 11:16:03 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2021-02-16 11:16:03 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2021-02-16 11:16:02 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-02-16 11:16:01 ----A---- C:\WINDOWS\system32\zipfldr.dll
2021-02-16 11:16:01 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-02-16 11:16:00 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2021-02-16 11:16:00 ----A---- C:\WINDOWS\system32\autochk.exe
2021-02-16 11:15:59 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2021-02-16 11:15:59 ----A---- C:\WINDOWS\system32\CaptureService.dll
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\Utilman.exe
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\Narrator.exe
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\AtBroker.exe
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\adsldpc.dll
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2021-02-16 11:15:57 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2021-02-16 11:15:57 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2021-02-16 11:15:56 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-02-16 11:15:56 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-02-16 11:15:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-02-16 11:15:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-02-16 11:15:55 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-02-16 11:15:54 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-02-16 11:15:51 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-02-16 11:15:51 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-02-16 11:15:50 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2021-02-16 11:15:50 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2021-02-16 11:15:50 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\wups2.dll
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2021-02-16 11:15:48 ----A---- C:\WINDOWS\system32\wups.dll
2021-02-16 11:15:48 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-02-16 11:15:48 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2021-02-16 11:15:47 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-02-16 11:15:47 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2021-02-16 11:15:47 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2021-02-16 11:15:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-02-16 11:15:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-02-16 11:15:46 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-02-16 11:15:45 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2021-02-16 11:15:45 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-02-16 11:15:45 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-02-16 11:15:43 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2021-02-16 11:15:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-02-16 11:15:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_InkingTypingPrivacy.dll
2021-02-16 11:15:41 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2021-02-16 11:15:41 ----A---- C:\WINDOWS\system32\untfs.dll
2021-02-16 11:15:40 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-02-16 11:15:40 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2021-02-16 11:15:40 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2021-02-16 11:15:39 ----A---- C:\WINDOWS\system32\ulib.dll
2021-02-16 11:15:39 ----A---- C:\WINDOWS\system32\drivers\condrv.sys
2021-02-16 11:15:38 ----A---- C:\WINDOWS\system32\ifsutil.dll
2021-02-16 11:15:38 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2021-02-16 11:15:38 ----A---- C:\WINDOWS\system32\container.dll
2021-02-16 11:15:37 ----A---- C:\WINDOWS\system32\wcimage.dll
2021-02-16 11:15:37 ----A---- C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-16 11:15:36 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-02-16 11:15:34 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-02-16 11:15:34 ----A---- C:\WINDOWS\system32\win32k.sys
2021-02-16 11:15:33 ----A---- C:\WINDOWS\system32\win32u.dll
2021-02-16 11:15:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2021-02-16 11:15:30 ----A---- C:\WINDOWS\system32\wpnprv.dll
2021-02-16 11:15:30 ----A---- C:\WINDOWS\system32\wpncore.dll
2021-02-16 11:15:29 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-02-16 11:15:29 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-02-16 11:15:28 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-02-16 11:15:28 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-02-16 11:15:27 ----A---- C:\WINDOWS\system32\kerberos.dll
2021-02-16 11:15:26 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2021-02-16 11:15:26 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2021-02-16 11:15:25 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2021-02-16 11:15:25 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2021-02-16 11:15:24 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2021-02-16 11:15:24 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2021-02-16 11:15:23 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2021-02-16 11:15:22 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2021-02-16 11:15:21 ----A---- C:\WINDOWS\system32\wintrust.dll
2021-02-16 11:15:20 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-02-16 11:15:18 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-02-16 11:15:17 ----A---- C:\WINDOWS\system32\esent.dll
2021-02-16 11:15:16 ----A---- C:\WINDOWS\system32\WWAHost.exe
2021-02-16 11:15:16 ----A---- C:\WINDOWS\system32\storewuauth.dll
2021-02-16 11:15:15 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-02-16 11:15:14 ----A---- C:\WINDOWS\system32\ISM.dll
2021-02-16 11:15:12 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-02-16 11:15:10 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-02-16 11:15:09 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-02-16 11:15:07 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-02-16 11:15:07 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-02-16 11:15:07 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-02-16 11:15:06 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-02-16 11:15:06 ----A---- C:\WINDOWS\system32\InputService.dll
2021-02-16 11:15:03 ----A---- C:\WINDOWS\system32\tquery.dll
2021-02-16 11:15:02 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-02-16 11:13:14 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-02-16 11:13:14 ----A---- C:\WINDOWS\system32\mssprxy.dll
2021-02-16 11:13:13 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2021-02-16 11:13:12 ----A---- C:\WINDOWS\system32\mssph.dll
2021-02-16 11:13:10 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-02-16 11:13:09 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-02-16 11:13:04 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-02-16 11:13:02 ----A---- C:\WINDOWS\system32\mssitlb.dll
2021-02-16 11:13:02 ----A---- C:\WINDOWS\system32\msscntrs.dll
2021-02-16 11:13:01 ----A---- C:\WINDOWS\system32\FntCache.dll
2021-02-16 11:13:00 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-02-16 11:13:00 ----A---- C:\WINDOWS\system32\DWrite.dll
2021-02-16 11:12:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-02-16 11:12:59 ----A---- C:\WINDOWS\system32\bisrv.dll
2021-02-16 11:12:58 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-02-16 11:12:57 ----A---- C:\WINDOWS\system32\cdd.dll
2021-02-16 11:12:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-02-16 11:12:55 ----A---- C:\WINDOWS\system32\D3D12Core.dll
2021-02-16 11:12:55 ----A---- C:\WINDOWS\system32\D3D12.dll
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\oemlicense.dll
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\clipwinrt.dll
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\Clipc.dll
2021-02-16 11:12:53 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2021-02-16 11:12:51 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-02-16 11:12:51 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2021-02-16 11:12:50 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-02-16 11:12:49 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2021-02-16 11:12:48 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2021-02-16 11:12:48 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2021-02-16 11:12:47 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2021-02-16 11:12:47 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-02-16 11:12:47 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-02-16 11:12:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2021-02-16 11:12:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2021-02-16 11:12:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2021-02-16 11:12:44 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2021-02-16 11:12:44 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2021-02-16 11:12:43 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2021-02-16 11:12:43 ----A---- C:\WINDOWS\system32\msftedit.dll
2021-02-16 11:12:41 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-02-16 11:12:40 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2021-02-16 11:12:39 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2021-02-16 11:12:39 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2021-02-16 11:12:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2021-02-16 11:12:38 ----A---- C:\WINDOWS\system32\cdprt.dll
2021-02-16 11:12:37 ----A---- C:\WINDOWS\system32\kernel32.dll
2021-02-16 11:12:36 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-02-16 11:12:36 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2021-02-16 11:12:36 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2021-02-16 11:12:35 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2021-02-16 11:12:35 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2021-02-16 11:12:35 ----A---- C:\WINDOWS\system32\dot3msm.dll
2021-02-16 11:12:34 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2021-02-16 11:12:34 ----A---- C:\WINDOWS\system32\dot3svc.dll
2021-02-16 11:12:34 ----A---- C:\WINDOWS\system32\dot3api.dll
2021-02-16 11:12:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2021-02-16 11:12:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2021-02-16 11:12:32 ----A---- C:\WINDOWS\system32\localspl.dll
2021-02-16 11:12:32 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2021-02-16 11:12:30 ----A---- C:\WINDOWS\system32\WpcMon.exe
2021-02-16 11:12:30 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\AudioSes.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\audiodg.exe
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\audiosrv.dll
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\AudioEng.dll
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\vac.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-02-16 11:12:24 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\xboxgipsvc.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\umpo.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\iscsilog.dll
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2021-02-16 11:12:21 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2021-02-16 11:12:21 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2021-02-12 00:00:51 ----D---- C:\FRST
======List of files/folders modified in the last 1 month======
2021-03-10 13:29:49 ----D---- C:\Program Files\trend micro
2021-03-10 13:29:47 ----D---- C:\WINDOWS\Temp
2021-03-10 13:26:18 ----D---- C:\WINDOWS\system32\SleepStudy
2021-03-10 13:26:12 ----D---- C:\WINDOWS\system32\catroot2
2021-03-10 13:14:38 ----RD---- C:\WINDOWS\Microsoft.NET
2021-03-10 13:09:02 ----D---- C:\WINDOWS\system32\config
2021-03-10 13:06:31 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-03-10 12:57:36 ----D---- C:\WINDOWS\Prefetch
2021-03-10 12:57:23 ----HD---- C:\Program Files\WindowsApps
2021-03-10 12:42:42 ----D---- C:\WINDOWS\system32\sru
2021-03-10 12:31:47 ----SHD---- C:\WINDOWS\Installer
2021-03-10 12:31:38 ----D---- C:\WINDOWS\System32
2021-03-10 12:31:37 ----D---- C:\WINDOWS\SysWOW64
2021-03-10 12:31:37 ----D---- C:\Program Files (x86)\Microsoft Office
2021-03-10 12:25:58 ----D---- C:\WINDOWS\INF
2021-03-10 12:24:11 ----D---- C:\WINDOWS\AppReadiness
2021-03-10 12:11:14 ----SHD---- C:\System Volume Information
2021-03-10 11:54:37 ----DC---- C:\WINDOWS\Panther
2021-03-10 11:54:36 ----D---- C:\WINDOWS\debug
2021-03-10 11:54:36 ----D---- C:\Windows
2021-03-10 11:48:10 ----D---- C:\Program Files\CCleaner
2021-03-10 11:46:21 ----D---- C:\WINDOWS\system32\Tasks
2021-03-10 11:45:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-24 13:38:16 ----D---- C:\WINDOWS\system32\Logs
2021-02-24 13:38:15 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-02-18 21:24:29 ----D---- C:\ProgramData\AVAST Software
2021-02-18 21:13:44 ----D---- C:\WINDOWS\WinSxS
2021-02-18 21:11:29 ----D---- C:\WINDOWS\system32\DriverStore
2021-02-18 21:09:10 ----D---- C:\WINDOWS\ServiceState
2021-02-18 21:09:08 ----ASH---- C:\DumpStack.log.tmp
2021-02-18 21:09:04 ----D---- C:\WINDOWS\LiveKernelReports
2021-02-18 21:06:12 ----D---- C:\WINDOWS\SYSWOW64\migration
2021-02-18 21:06:12 ----D---- C:\WINDOWS\SYSWOW64\Keywords
2021-02-18 21:06:11 ----D---- C:\WINDOWS\SYSWOW64\en-US
2021-02-18 21:06:11 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2021-02-18 21:06:06 ----D---- C:\WINDOWS\SystemResources
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\zh-TW
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\zh-CN
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\th-TH
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\sv-SE
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\ru-RU
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\ro-RO
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\pt-PT
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\pt-BR
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\pl-PL
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\oobe
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\nl-NL
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\nb-NO
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\migration
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\ko-KR
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\Keywords
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\ja-jp
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\it-IT
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\fr-FR
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\fr-CA
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\fi-FI
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\es-MX
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\es-ES
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\en-US
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\en-GB
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\el-GR
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\drivers\en-US
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\drivers
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\de-DE
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\da-DK
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\cs-CZ
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\ar-SA
2021-02-18 21:05:52 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-02-18 21:05:52 ----D---- C:\WINDOWS\servicing
2021-02-18 21:05:52 ----D---- C:\WINDOWS\PolicyDefinitions
2021-02-18 21:05:51 ----D---- C:\WINDOWS\bcastdvr
2021-02-18 21:05:51 ----D---- C:\Program Files\Windows Mail
2021-02-18 21:05:51 ----D---- C:\Program Files\Common Files\System
2021-02-18 21:05:51 ----D---- C:\Program Files (x86)\Windows Mail
2021-02-16 11:43:03 ----D---- C:\WINDOWS\CbsTemp
2021-02-16 10:23:26 ----D---- C:\WINDOWS\system32\MRT
2021-02-16 09:45:45 ----AC---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2021-01-02 36792]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2021-01-02 247888]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2021-01-02 97360]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2021-01-02 16832]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2021-01-02 84496]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2021-01-07 324904]
R0 BTATH_BUS;@oem29.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2014-02-25 35016]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2021-01-02 41984]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2021-01-02 208672]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2021-01-02 332880]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2021-01-02 42424]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2021-01-02 176384]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2021-01-02 522480]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2021-01-02 108928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2021-01-02 851256]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2021-01-08 468888]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2017-11-27 27552]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2021-01-07 214808]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2021-02-16 149312]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-02-16 495104]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2021-01-02 53248]
R3 athr;@oem143.inf,%ATHR.Service.DispName%;Dell Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwbx.sys [2017-11-27 4309896]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-07-13 610336]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2021-01-02 279040]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-01-16 113664]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-12-07 65536]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2021-01-02 106496]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-12-07 133632]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2021-01-16 1559040]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-01-16 110592]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 DellRbtn;@oem35.inf,%DellRbtn%;Airplane Mode Switch; C:\WINDOWS\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 dtlitescsibus;@oem153.inf,%DisplayName%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2020-04-02 42256]
R3 dtliteusbbus;@oem9.inf,%DisplayName%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2020-04-02 59360]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2019-11-18 6486608]
R3 IntcDAud;@oem190.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem134.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2021-01-02 322376]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2021-01-02 18432]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-01-16 45568]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 dtproscsibus;DAEMON Tools Pro Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [2020-03-24 30264]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2021-01-02 95048]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2021-01-02 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2021-01-02 386048]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-16 207360]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2021-01-02 104760]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2014-02-27 272088]
S3 RTSUER;@oem54.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2019-11-18 424384]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2021-01-25 169672]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2017-11-27 106944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2021-01-02 621728]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2021-01-02 351848]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2021-01-02 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 CDPUserSvc_11acfb;Uživatelská služba platformy připojených zařízení_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2021-02-22 8988552]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 McAfee WebAdvisor;McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [2021-02-11 959752]
R2 OneSyncSvc_11acfb;Hostitel synchronizace_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2019-11-18 268368]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2021-01-02 8477080]
R3 BluetoothUserService_11acfb;Služba pro podporu uživatelů Bluetooth_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 cbdhsvc_11acfb;Uživatelská služba schránky_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-04-02 4507328]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 PimIndexMaintenanceSvc_11acfb;Data kontaktů_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 PrintWorkflowUserSvc_11acfb;PrintWorkflow_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2021-02-16 988056]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-09 224160]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-19 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 AarSvc_11acfb;Agent Activation Runtime_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-06-09 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 BcastDVRUserService_11acfb;Uživatelská služba pro GameDVR a vysílání her_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 CaptureService_11acfb;CaptureService_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 ConsentUxUserSvc_11acfb;ConsentUX_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-16 386816]
S3 CredentialEnrollmentManagerUserSvc_11acfb;CredentialEnrollmentManagerUserSvc_11acfb; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-16 386816]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DeviceAssociationBrokerSvc_11acfb;DeviceAssociationBroker_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicePickerUserSvc_11acfb;DevicePicker_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicesFlowUserSvc_11acfb;Tok zařízení_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-01-16 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-09 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\elevation_service.exe [2021-02-18 1434216]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-19 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-21 6058960]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 MessagingService_11acfb;Služba zasílání zpráv_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\elevation_service.exe [2021-03-03 1559936]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 214832]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-16 106496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-01-16 1265152]
-----------------EOF-----------------
prosím o pomoc. Mám problém s prohlížečem Chrome. Zničehonic se mi do chromu vetřelo Yahoo (při otevření nové karty prohlížeče Chrome nevyhledává přes Google) a všechno se zpomalilo. K tomu se se mi přidal do počítače McAfee webadvisor. Bohužel v období, kdy se tyto problémy objevily, si neuvědomuji, že bych něco stahoval nebo instaloval (ale je možné, že mám jen krátkou paměť). Zároveň se mi stává, že když chci počítač čistit pomocí CCleaneru, požaduje po mě CCleaner uzavření (nakonec vynucené) Chromu, který ale není vědomě spuštěný a na hlavním panelu zobrazený.
V neposlední řadě jsem měl problém s vygenerováním logu z FRST. Všechno probíhalo, ale soubory .txt byly nakonec prázdné. Na druhý pokus mi FRST uzavřel Avast do truhly. Ani na třetí pokus to nevyšlo. Nevím, zda to k něčemu bude, improvizuji, přikládám alespoň log z RSIT, přestože mám Windows 10.
Předem děkuji za pomoc.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2021-03-10 13:29:39
Microsoft Windows 10 Home
System drive C: has 211 GB (44%) free of 476 GB
Total RAM: 3979 MB (33% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:29:56, on 10.03.2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)
Boot mode: Normal
Running processes:
C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe
C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe
C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\FileCoAuth.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\trend micro\Uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\BHO\ie_to_edge_bho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll
O3 - Toolbar: PDFXChange 2012 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Uzivatel\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [PTOneClick] C:\Program Files (x86)\Webex\Webex\Applications\ptoneclk.exe /AutoRunning="1"
O4 - HKCU\..\Run: [CiscoMeetingDaemon] "C:\Users\Uzivatel\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
O4 - HKCU\..\RunOnce: [Delete Cached Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Delete Cached Standalone Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Uninstall 21.002.0104.0005\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 21.002.0104.0005] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.002.0104.0005"
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - https://fpdownload.macromedia.com/pub/s ... tor/sw.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) -
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_11acfb - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: McAfee WebAdvisor - McAfee, LLC - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: McAfee True Key (TrueKey) - McAfee, LLC. - C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: McAfee True Key Scheduler (TrueKeyScheduler) - McAfee, LLC. - C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe
O23 - Service: McAfee True Key Helper Service (TrueKeyServiceHelper) - McAfee, LLC. - C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: Cisco WebEx Update Service (WebexService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13605 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0b3649ce-3e06-497f-8f06-f2810cfe5563 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a09089d9-895b-4eea-9ee8-00d7f96d4fc4 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-03bee061-e9ec-4629-b607-c748e6200523 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-c6441e7c-eb9c-44c8-9635-43d099bbbfb7 -LifetimeId:6a832a03-56c8-40c0-9c40-bc930067a363 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SensorService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SensrSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
dashost.exe {9cd2abde-f7d8-441a-aeb637a14fd073d4}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
"C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="3A6E3760-408E-C4E3-BC55-64D1C2926775" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s upnphost
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe"
"C:\Program Files\McAfee\WebAdvisor\UIHost.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k BthAppGroup -p -s BluetoothUserService
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe"
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"ctfmon.exe"
/QuitInfo:0000000000000260;0000000000000264;
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
"C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\Dell\QuickSet\quickset.exe"
AvastUI.exe /nogui
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\Windows\System32\mousocoreworker.exe -Embedding
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8336,15844533243635794032,4482839678625286598,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8432 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=8336,15844533243635794032,4482839678625286598,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8808 /prefetch:8
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe" -ServerName:microsoft.windowslive.mail.AppXfbjsbkxvprcgqg6q4c9jfr0pn3kv9x5s.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxAccounts.exe" -ServerName:microsoft.windowslive.manageaccounts.AppXdbf3yp5apt3t7q877db3gnz5zqpf71zj.mca
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s WebClient
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe"
"C:\Users\Uzivatel\AppData\Roaming\Zoom\bin\Zoom.exe" --action=preload --runaszvideo=TRUE --useroption=4504149475459072 --useroption2=1170935903118426176 --useroption3=2305984846219149824 --haszoomim=1
/updateInstalled /background
"C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=8336,15844533243635794032,4482839678625286598,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=audio --no-sandbox --force-wave-audio --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Uzivatel\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=10164 /prefetch:8
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\FileCoAuth.exe" -Embedding
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
/Skip /ProcessResult /PRODUCT:Reader /LANG:CZE
taskhostw.exe
C:\WINDOWS\system32\svchost.exe -k PrintWorkflow -s PrintWorkflowUserSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
werfault.exe /hc /shared Global\9cf7ac073d4942bd955dd7cd5795eec5 /t 2036 /p 4712
"C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe" -ServerName:App.AppXbdkk0yrkwpcgeaem8zk81k8py1eaahny.mca
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=88.0.4324.182 --initial-client-data=0xe4,0xe8,0xec,0xc0,0xf0,0x7ff9f61d9e90,0x7ff9f61d9ea0,0x7ff9f61d9eb0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --gpu-preferences=OAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAABQAAABAAAAAAAAAAAAAAAAYAAAAQAAAAAAAAAAEAAAAFAAAAEAAAAAAAAAABAAAABgAAAA== --mojo-platform-channel-handle=1720 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --service-sandbox-type=network --mojo-platform-channel-handle=2052 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2300 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --extension-process --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3588 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files\McAfee\WebAdvisor\BrowserHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.b71e2b9f2fee95f4 > \\.\pipe\chrome.nativeMessaging.out.b71e2b9f2fee95f4
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\McAfee\WebAdvisor\BrowserHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=7324 /prefetch:8
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21021.116.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.21021.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2536 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=99 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1572 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20110.11001.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1632,12862647702858159671,11588987301547099018,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=103 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12108 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 780 784 792 8192 788 764
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x650
"C:\Users\Uzivatel\Downloads\RSITx64.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s dmwappushservice
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s SmsRouter
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23 1452072]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\BHO\ie_to_edge_bho_64.dll [2021-03-03 548232]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-03-10 189248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-02-11 1409680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23 1073880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\BHO\ie_to_edge_bho.dll [2021-03-03 416648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-19 473664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-02-11 1105208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23 1452072]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23 1073880]
{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - PDFXChange 2012 - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll [2013-01-19 423488]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2019-11-18 9269352]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2019-11-18 1506384]
"WavesSvc"=C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [2014-02-17 519256]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2014-02-27 3775816]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2021-01-02 117352]
"RtHDVBg_PushButton"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2019-11-18 1506384]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-23 2779376]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [2014-02-25 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"com.squirrel.Teams.Teams"=C:\Users\Uzivatel\AppData\Local\Microsoft\Teams\Update.exe [2020-11-23 2453688]
"OneDrive"=C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2021-02-27 1942400]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2021-03-05 32726088]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2020-04-02 365760]
"PTOneClick"=C:\Program Files (x86)\Webex\Webex\Applications\ptoneclk.exe [2020-09-18 7690560]
"CiscoMeetingDaemon"=C:\Users\Uzivatel\AppData\Local\WebEx\ciscowebexstart.exe [2021-01-22 2427592]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Delete Cached Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
"Delete Cached Standalone Update Binary"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
"Uninstall 21.002.0104.0005\amd64"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
"Uninstall 21.002.0104.0005"=C:\WINDOWS\system32\cmd.exe [2021-01-16 289792]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [2014-02-25 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
"C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
"C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"DisableCAD"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2021-02-16 11:24:37 ----A---- C:\WINDOWS\system32\FXSUNATD.exe
2021-02-16 11:24:37 ----A---- C:\WINDOWS\system32\FXSROUTE.dll
2021-02-16 11:24:37 ----A---- C:\WINDOWS\system32\FXSMON.dll
2021-02-16 11:24:36 ----A---- C:\WINDOWS\system32\FXSSVC.exe
2021-02-16 11:24:36 ----A---- C:\WINDOWS\system32\FXSEVENT.dll
2021-02-16 11:24:31 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2021-02-16 11:24:31 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2021-02-16 11:24:31 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2021-02-16 11:24:31 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\fvewiz.dll
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-02-16 11:24:30 ----A---- C:\WINDOWS\system32\bdesvc.dll
2021-02-16 11:24:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2021-02-16 11:24:29 ----A---- C:\WINDOWS\system32\fveui.dll
2021-02-16 11:24:28 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2021-02-16 11:24:26 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2021-02-16 11:23:32 ----A---- C:\WINDOWS\system32\cdp.dll
2021-02-16 11:23:32 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2021-02-16 11:23:05 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-02-16 11:23:04 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2021-02-16 11:23:04 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2021-02-16 11:23:03 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-02-16 11:23:02 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2021-02-16 11:23:02 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2021-02-16 11:23:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-02-16 11:23:00 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-02-16 11:22:59 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-02-16 11:22:58 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2021-02-16 11:22:58 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2021-02-16 11:22:57 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2021-02-16 11:22:56 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-02-16 11:22:53 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-02-16 11:22:53 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2021-02-16 11:22:52 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-02-16 11:22:52 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-02-16 11:22:51 ----A---- C:\WINDOWS\system32\msvproc.dll
2021-02-16 11:22:51 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-02-16 11:22:50 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-02-16 11:22:50 ----A---- C:\WINDOWS\system32\mfps.dll
2021-02-16 11:22:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-02-16 11:22:49 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2021-02-16 11:22:48 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2021-02-16 11:22:48 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2021-02-16 11:22:45 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2021-02-16 11:22:43 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-02-16 11:22:43 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-02-16 11:22:42 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2021-02-16 11:22:42 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\cryptuiwizard.dll
2021-02-16 11:22:41 ----A---- C:\WINDOWS\SYSWOW64\CertPKICmdlet.dll
2021-02-16 11:22:40 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2021-02-16 11:22:40 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-02-16 11:22:38 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-02-16 11:22:37 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-02-16 11:22:36 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-02-16 11:22:36 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2021-02-16 11:22:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-02-16 11:22:34 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-02-16 11:22:33 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-02-16 11:20:55 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-02-16 11:20:54 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2021-02-16 11:20:54 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2021-02-16 11:20:54 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2021-02-16 11:20:53 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhlisten.dll
2021-02-16 11:20:46 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-02-16 11:20:45 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-02-16 11:20:44 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-02-16 11:20:44 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2021-02-16 11:20:44 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2021-02-16 11:20:43 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2021-02-16 11:20:43 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-02-16 11:20:43 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2021-02-16 11:20:42 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-02-16 11:20:42 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-02-16 11:20:41 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-02-16 11:20:40 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-02-16 11:20:40 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-02-16 11:20:39 ----A---- C:\WINDOWS\system32\Windows.System.Profile.HardwareId.dll
2021-02-16 11:20:39 ----A---- C:\WINDOWS\system32\cryptuiwizard.dll
2021-02-16 11:20:39 ----A---- C:\WINDOWS\system32\CertPKICmdlet.dll
2021-02-16 11:20:38 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-02-16 11:20:38 ----A---- C:\WINDOWS\system32\nltest.exe
2021-02-16 11:20:38 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-02-16 11:20:37 ----A---- C:\WINDOWS\system32\msi.dll
2021-02-16 11:20:35 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-02-16 11:20:35 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-02-16 11:20:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-02-16 11:20:32 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-02-16 11:20:32 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-02-16 11:20:32 ----A---- C:\WINDOWS\system32\Chakra.dll
2021-02-16 11:20:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-02-16 11:20:28 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-02-16 11:20:27 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-02-16 11:20:23 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-02-16 11:20:21 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2021-02-16 11:20:20 ----A---- C:\WINDOWS\system32\werui.dll
2021-02-16 11:20:18 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-02-16 11:20:17 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-02-16 11:20:17 ----A---- C:\WINDOWS\system32\packager.dll
2021-02-16 11:20:15 ----A---- C:\WINDOWS\system32\autofmt.exe
2021-02-16 11:20:15 ----A---- C:\WINDOWS\system32\autoconv.exe
2021-02-16 11:20:14 ----A---- C:\WINDOWS\system32\edpcsp.dll
2021-02-16 11:20:13 ----A---- C:\WINDOWS\system32\EDPCleanup.exe
2021-02-16 11:20:13 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2021-02-16 11:20:12 ----A---- C:\WINDOWS\system32\ClipUp.exe
2021-02-16 11:20:11 ----A---- C:\WINDOWS\system32\computecore.dll
2021-02-16 11:20:07 ----A---- C:\WINDOWS\system32\resutils.dll
2021-02-16 11:20:07 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-02-16 11:20:06 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-02-16 11:20:06 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\vertdll.dll
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\securekernel.exe
2021-02-16 11:20:05 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-02-16 11:20:04 ----A---- C:\WINDOWS\system32\ResourceMapper.dll
2021-02-16 11:20:04 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-02-16 11:20:03 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2021-02-16 11:20:02 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-02-16 11:20:02 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2021-02-16 11:20:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2021-02-16 11:20:01 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2021-02-16 11:20:00 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2021-02-16 11:19:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-02-16 11:19:58 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-02-16 11:19:58 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-02-16 11:19:57 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-02-16 11:19:57 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2021-02-16 11:19:56 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2021-02-16 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2021-02-16 11:19:21 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2021-02-16 11:19:21 ----A---- C:\WINDOWS\SYSWOW64\dmpushproxy.dll
2021-02-16 11:19:21 ----A---- C:\WINDOWS\SYSWOW64\DMAppsRes.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\WerEnc.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2021-02-16 11:19:20 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2021-02-16 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2021-02-16 11:19:18 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2021-02-16 11:19:18 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2021-02-16 11:19:18 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2021-02-16 11:19:17 ----A---- C:\WINDOWS\SYSWOW64\adsldpc.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2021-02-16 11:19:16 ----A---- C:\WINDOWS\SYSWOW64\AtBroker.exe
2021-02-16 11:19:15 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2021-02-16 11:19:12 ----A---- C:\WINDOWS\SYSWOW64\ulib.dll
2021-02-16 11:19:12 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2021-02-16 11:19:12 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2021-02-16 11:19:11 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2021-02-16 11:19:10 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2021-02-16 11:19:09 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2021-02-16 11:19:08 ----A---- C:\WINDOWS\SYSWOW64\D3D12Core.dll
2021-02-16 11:19:08 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2021-02-16 11:19:07 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-02-16 11:19:07 ----A---- C:\WINDOWS\SYSWOW64\DiagnosticInvoker.dll
2021-02-16 11:19:06 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2021-02-16 11:19:06 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2021-02-16 11:19:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2021-02-16 11:19:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2021-02-16 11:19:05 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2021-02-16 11:19:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2021-02-16 11:19:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2021-02-16 11:19:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2021-02-16 11:19:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2021-02-16 11:19:02 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2021-02-16 11:19:01 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2021-02-16 11:18:59 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-02-16 11:18:58 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2021-02-16 11:18:57 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2021-02-16 11:18:56 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2021-02-16 11:18:56 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2021-02-16 11:18:55 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2021-02-16 11:18:54 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2021-02-16 11:18:53 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2021-02-16 11:18:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2021-02-16 11:18:52 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2021-02-16 11:18:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2021-02-16 11:18:51 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2021-02-16 11:18:50 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2021-02-16 11:18:50 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2021-02-16 11:18:49 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2021-02-16 11:18:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-02-16 11:18:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2021-02-16 11:18:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2021-02-16 11:18:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2021-02-16 11:18:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Controls.dll
2021-02-16 11:18:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-02-16 11:18:42 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2021-02-16 11:18:42 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-02-16 11:18:42 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-02-16 11:18:41 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2021-02-16 11:18:41 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2021-02-16 11:18:41 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2021-02-16 11:18:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-02-16 11:18:40 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2021-02-16 11:18:39 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-02-16 11:18:39 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2021-02-16 11:18:38 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-02-16 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2021-02-16 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2021-02-16 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2021-02-16 11:18:36 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2021-02-16 11:17:42 ----A---- C:\WINDOWS\system32\pku2u.dll
2021-02-16 11:17:40 ----A---- C:\WINDOWS\system32\LsaIso.exe
2021-02-16 11:17:40 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2021-02-16 11:17:37 ----A---- C:\WINDOWS\system32\shell32.dll
2021-02-16 11:17:36 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2021-02-16 11:17:36 ----A---- C:\WINDOWS\system32\ntshrui.dll
2021-02-16 11:17:35 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-02-16 11:17:35 ----A---- C:\WINDOWS\system32\comdlg32.dll
2021-02-16 11:17:34 ----A---- C:\WINDOWS\system32\vbscript.dll
2021-02-16 11:17:34 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2021-02-16 11:17:33 ----A---- C:\WINDOWS\system32\umpoext.dll
2021-02-16 11:17:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-02-16 11:17:32 ----A---- C:\WINDOWS\system32\nlasvc.dll
2021-02-16 11:17:32 ----A---- C:\WINDOWS\system32\nlaapi.dll
2021-02-16 11:17:32 ----A---- C:\WINDOWS\system32\ncsi.dll
2021-02-16 11:17:25 ----A---- C:\WINDOWS\system32\ubpm.dll
2021-02-16 11:17:25 ----A---- C:\WINDOWS\system32\sppobjs.dll
2021-02-16 11:17:25 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2021-02-16 11:17:24 ----A---- C:\WINDOWS\system32\sppcext.dll
2021-02-16 11:17:22 ----A---- C:\WINDOWS\system32\sppsvc.exe
2021-02-16 11:17:21 ----A---- C:\WINDOWS\system32\msIso.dll
2021-02-16 11:17:21 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-02-16 11:17:21 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-02-16 11:17:20 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-02-16 11:17:19 ----A---- C:\WINDOWS\system32\profsvcext.dll
2021-02-16 11:17:19 ----A---- C:\WINDOWS\system32\actxprxy.dll
2021-02-16 11:17:18 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-02-16 11:17:18 ----A---- C:\WINDOWS\system32\efsext.dll
2021-02-16 11:17:16 ----A---- C:\WINDOWS\system32\edptask.dll
2021-02-16 11:17:16 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2021-02-16 11:17:15 ----A---- C:\WINDOWS\system32\tdh.dll
2021-02-16 11:17:15 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2021-02-16 11:17:15 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-02-16 11:17:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-02-16 11:17:13 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-02-16 11:17:13 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2021-02-16 11:17:13 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2021-02-16 11:17:12 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-02-16 11:17:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-02-16 11:17:11 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-02-16 11:17:11 ----A---- C:\WINDOWS\system32\dmpushproxy.dll
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\DMAppsRes.dll
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\coredpus.dll
2021-02-16 11:17:10 ----A---- C:\WINDOWS\system32\configmanager2.dll
2021-02-16 11:17:09 ----A---- C:\WINDOWS\system32\wuuhext.dll
2021-02-16 11:17:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-02-16 11:17:08 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-02-16 11:17:08 ----A---- C:\WINDOWS\system32\msctf.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\lpk.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\fontsub.dll
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2021-02-16 11:17:07 ----A---- C:\WINDOWS\system32\dciman32.dll
2021-02-16 11:17:06 ----A---- C:\WINDOWS\system32\netlogon.dll
2021-02-16 11:17:05 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-02-16 11:17:03 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-02-16 11:17:02 ----A---- C:\WINDOWS\system32\drivers\NetAdapterCx.sys
2021-02-16 11:17:01 ----A---- C:\WINDOWS\system32\KernelBase.dll
2021-02-16 11:17:00 ----A---- C:\WINDOWS\system32\sechost.dll
2021-02-16 11:17:00 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2021-02-16 11:16:57 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-02-16 11:16:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-02-16 11:16:56 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2021-02-16 11:16:56 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\WerFault.exe
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\WerEnc.dll
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\Faultrep.dll
2021-02-16 11:16:55 ----A---- C:\WINDOWS\system32\dbgcore.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\utcutil.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\diagtrack.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2021-02-16 11:16:54 ----A---- C:\WINDOWS\system32\dbghelp.dll
2021-02-16 11:16:53 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2021-02-16 11:16:09 ----A---- C:\WINDOWS\system32\lsasrv.dll
2021-02-16 11:16:09 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2021-02-16 11:16:08 ----A---- C:\WINDOWS\system32\oleaut32.dll
2021-02-16 11:16:08 ----A---- C:\WINDOWS\system32\drivers\http.sys
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\tzres.dll
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\schannel.dll
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\profsvc.dll
2021-02-16 11:16:07 ----A---- C:\WINDOWS\system32\msv1_0.dll
2021-02-16 11:16:06 ----A---- C:\WINDOWS\system32\crypt32.dll
2021-02-16 11:16:05 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2021-02-16 11:16:05 ----A---- C:\WINDOWS\system32\rpcss.dll
2021-02-16 11:16:05 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2021-02-16 11:16:04 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2021-02-16 11:16:04 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2021-02-16 11:16:03 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2021-02-16 11:16:03 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2021-02-16 11:16:02 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-02-16 11:16:01 ----A---- C:\WINDOWS\system32\zipfldr.dll
2021-02-16 11:16:01 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-02-16 11:16:00 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2021-02-16 11:16:00 ----A---- C:\WINDOWS\system32\autochk.exe
2021-02-16 11:15:59 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2021-02-16 11:15:59 ----A---- C:\WINDOWS\system32\CaptureService.dll
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\Utilman.exe
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\Narrator.exe
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\AtBroker.exe
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\adsldpc.dll
2021-02-16 11:15:58 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2021-02-16 11:15:57 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2021-02-16 11:15:57 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2021-02-16 11:15:56 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-02-16 11:15:56 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-02-16 11:15:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-02-16 11:15:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-02-16 11:15:55 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-02-16 11:15:54 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-02-16 11:15:51 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-02-16 11:15:51 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-02-16 11:15:50 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2021-02-16 11:15:50 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2021-02-16 11:15:50 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\wups2.dll
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-02-16 11:15:49 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2021-02-16 11:15:48 ----A---- C:\WINDOWS\system32\wups.dll
2021-02-16 11:15:48 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-02-16 11:15:48 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2021-02-16 11:15:47 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-02-16 11:15:47 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2021-02-16 11:15:47 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2021-02-16 11:15:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-02-16 11:15:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-02-16 11:15:46 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-02-16 11:15:45 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2021-02-16 11:15:45 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-02-16 11:15:45 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-02-16 11:15:43 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2021-02-16 11:15:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-02-16 11:15:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_InkingTypingPrivacy.dll
2021-02-16 11:15:41 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2021-02-16 11:15:41 ----A---- C:\WINDOWS\system32\untfs.dll
2021-02-16 11:15:40 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-02-16 11:15:40 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2021-02-16 11:15:40 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2021-02-16 11:15:39 ----A---- C:\WINDOWS\system32\ulib.dll
2021-02-16 11:15:39 ----A---- C:\WINDOWS\system32\drivers\condrv.sys
2021-02-16 11:15:38 ----A---- C:\WINDOWS\system32\ifsutil.dll
2021-02-16 11:15:38 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2021-02-16 11:15:38 ----A---- C:\WINDOWS\system32\container.dll
2021-02-16 11:15:37 ----A---- C:\WINDOWS\system32\wcimage.dll
2021-02-16 11:15:37 ----A---- C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-16 11:15:36 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-02-16 11:15:34 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-02-16 11:15:34 ----A---- C:\WINDOWS\system32\win32k.sys
2021-02-16 11:15:33 ----A---- C:\WINDOWS\system32\win32u.dll
2021-02-16 11:15:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2021-02-16 11:15:30 ----A---- C:\WINDOWS\system32\wpnprv.dll
2021-02-16 11:15:30 ----A---- C:\WINDOWS\system32\wpncore.dll
2021-02-16 11:15:29 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-02-16 11:15:29 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-02-16 11:15:28 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-02-16 11:15:28 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-02-16 11:15:27 ----A---- C:\WINDOWS\system32\kerberos.dll
2021-02-16 11:15:26 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2021-02-16 11:15:26 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2021-02-16 11:15:25 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2021-02-16 11:15:25 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2021-02-16 11:15:24 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2021-02-16 11:15:24 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2021-02-16 11:15:23 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2021-02-16 11:15:22 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2021-02-16 11:15:21 ----A---- C:\WINDOWS\system32\wintrust.dll
2021-02-16 11:15:20 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-02-16 11:15:18 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-02-16 11:15:17 ----A---- C:\WINDOWS\system32\esent.dll
2021-02-16 11:15:16 ----A---- C:\WINDOWS\system32\WWAHost.exe
2021-02-16 11:15:16 ----A---- C:\WINDOWS\system32\storewuauth.dll
2021-02-16 11:15:15 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-02-16 11:15:14 ----A---- C:\WINDOWS\system32\ISM.dll
2021-02-16 11:15:12 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-02-16 11:15:10 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-02-16 11:15:09 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-02-16 11:15:07 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-02-16 11:15:07 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-02-16 11:15:07 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-02-16 11:15:06 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-02-16 11:15:06 ----A---- C:\WINDOWS\system32\InputService.dll
2021-02-16 11:15:03 ----A---- C:\WINDOWS\system32\tquery.dll
2021-02-16 11:15:02 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-02-16 11:13:14 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-02-16 11:13:14 ----A---- C:\WINDOWS\system32\mssprxy.dll
2021-02-16 11:13:13 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2021-02-16 11:13:12 ----A---- C:\WINDOWS\system32\mssph.dll
2021-02-16 11:13:10 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-02-16 11:13:09 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-02-16 11:13:04 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-02-16 11:13:02 ----A---- C:\WINDOWS\system32\mssitlb.dll
2021-02-16 11:13:02 ----A---- C:\WINDOWS\system32\msscntrs.dll
2021-02-16 11:13:01 ----A---- C:\WINDOWS\system32\FntCache.dll
2021-02-16 11:13:00 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-02-16 11:13:00 ----A---- C:\WINDOWS\system32\DWrite.dll
2021-02-16 11:12:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-02-16 11:12:59 ----A---- C:\WINDOWS\system32\bisrv.dll
2021-02-16 11:12:58 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-02-16 11:12:57 ----A---- C:\WINDOWS\system32\cdd.dll
2021-02-16 11:12:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-02-16 11:12:55 ----A---- C:\WINDOWS\system32\D3D12Core.dll
2021-02-16 11:12:55 ----A---- C:\WINDOWS\system32\D3D12.dll
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\oemlicense.dll
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\clipwinrt.dll
2021-02-16 11:12:54 ----A---- C:\WINDOWS\system32\Clipc.dll
2021-02-16 11:12:53 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2021-02-16 11:12:51 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-02-16 11:12:51 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2021-02-16 11:12:50 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-02-16 11:12:49 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2021-02-16 11:12:48 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2021-02-16 11:12:48 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2021-02-16 11:12:47 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2021-02-16 11:12:47 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-02-16 11:12:47 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-02-16 11:12:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2021-02-16 11:12:46 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2021-02-16 11:12:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2021-02-16 11:12:44 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2021-02-16 11:12:44 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2021-02-16 11:12:43 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2021-02-16 11:12:43 ----A---- C:\WINDOWS\system32\msftedit.dll
2021-02-16 11:12:41 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-02-16 11:12:40 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2021-02-16 11:12:39 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2021-02-16 11:12:39 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2021-02-16 11:12:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2021-02-16 11:12:38 ----A---- C:\WINDOWS\system32\cdprt.dll
2021-02-16 11:12:37 ----A---- C:\WINDOWS\system32\kernel32.dll
2021-02-16 11:12:36 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-02-16 11:12:36 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2021-02-16 11:12:36 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2021-02-16 11:12:35 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2021-02-16 11:12:35 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2021-02-16 11:12:35 ----A---- C:\WINDOWS\system32\dot3msm.dll
2021-02-16 11:12:34 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2021-02-16 11:12:34 ----A---- C:\WINDOWS\system32\dot3svc.dll
2021-02-16 11:12:34 ----A---- C:\WINDOWS\system32\dot3api.dll
2021-02-16 11:12:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2021-02-16 11:12:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2021-02-16 11:12:32 ----A---- C:\WINDOWS\system32\localspl.dll
2021-02-16 11:12:32 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2021-02-16 11:12:30 ----A---- C:\WINDOWS\system32\WpcMon.exe
2021-02-16 11:12:30 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2021-02-16 11:12:29 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\AudioSes.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2021-02-16 11:12:28 ----A---- C:\WINDOWS\system32\audiodg.exe
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\audiosrv.dll
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\AudioEng.dll
2021-02-16 11:12:27 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\vac.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-02-16 11:12:26 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-02-16 11:12:24 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\xboxgipsvc.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\umpo.dll
2021-02-16 11:12:23 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\iscsilog.dll
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2021-02-16 11:12:22 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2021-02-16 11:12:21 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2021-02-16 11:12:21 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2021-02-12 00:00:51 ----D---- C:\FRST
======List of files/folders modified in the last 1 month======
2021-03-10 13:29:49 ----D---- C:\Program Files\trend micro
2021-03-10 13:29:47 ----D---- C:\WINDOWS\Temp
2021-03-10 13:26:18 ----D---- C:\WINDOWS\system32\SleepStudy
2021-03-10 13:26:12 ----D---- C:\WINDOWS\system32\catroot2
2021-03-10 13:14:38 ----RD---- C:\WINDOWS\Microsoft.NET
2021-03-10 13:09:02 ----D---- C:\WINDOWS\system32\config
2021-03-10 13:06:31 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-03-10 12:57:36 ----D---- C:\WINDOWS\Prefetch
2021-03-10 12:57:23 ----HD---- C:\Program Files\WindowsApps
2021-03-10 12:42:42 ----D---- C:\WINDOWS\system32\sru
2021-03-10 12:31:47 ----SHD---- C:\WINDOWS\Installer
2021-03-10 12:31:38 ----D---- C:\WINDOWS\System32
2021-03-10 12:31:37 ----D---- C:\WINDOWS\SysWOW64
2021-03-10 12:31:37 ----D---- C:\Program Files (x86)\Microsoft Office
2021-03-10 12:25:58 ----D---- C:\WINDOWS\INF
2021-03-10 12:24:11 ----D---- C:\WINDOWS\AppReadiness
2021-03-10 12:11:14 ----SHD---- C:\System Volume Information
2021-03-10 11:54:37 ----DC---- C:\WINDOWS\Panther
2021-03-10 11:54:36 ----D---- C:\WINDOWS\debug
2021-03-10 11:54:36 ----D---- C:\Windows
2021-03-10 11:48:10 ----D---- C:\Program Files\CCleaner
2021-03-10 11:46:21 ----D---- C:\WINDOWS\system32\Tasks
2021-03-10 11:45:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-24 13:38:16 ----D---- C:\WINDOWS\system32\Logs
2021-02-24 13:38:15 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-02-18 21:24:29 ----D---- C:\ProgramData\AVAST Software
2021-02-18 21:13:44 ----D---- C:\WINDOWS\WinSxS
2021-02-18 21:11:29 ----D---- C:\WINDOWS\system32\DriverStore
2021-02-18 21:09:10 ----D---- C:\WINDOWS\ServiceState
2021-02-18 21:09:08 ----ASH---- C:\DumpStack.log.tmp
2021-02-18 21:09:04 ----D---- C:\WINDOWS\LiveKernelReports
2021-02-18 21:06:12 ----D---- C:\WINDOWS\SYSWOW64\migration
2021-02-18 21:06:12 ----D---- C:\WINDOWS\SYSWOW64\Keywords
2021-02-18 21:06:11 ----D---- C:\WINDOWS\SYSWOW64\en-US
2021-02-18 21:06:11 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2021-02-18 21:06:06 ----D---- C:\WINDOWS\SystemResources
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\zh-TW
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\zh-CN
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\th-TH
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\sv-SE
2021-02-18 21:06:05 ----D---- C:\WINDOWS\system32\ru-RU
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\ro-RO
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\pt-PT
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\pt-BR
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\pl-PL
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\oobe
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\nl-NL
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\nb-NO
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\migration
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\ko-KR
2021-02-18 21:06:04 ----D---- C:\WINDOWS\system32\Keywords
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\ja-jp
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\it-IT
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\fr-FR
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\fr-CA
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\fi-FI
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\es-MX
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\es-ES
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\en-US
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\en-GB
2021-02-18 21:06:03 ----D---- C:\WINDOWS\system32\el-GR
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\drivers\en-US
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\drivers
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\de-DE
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\da-DK
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\cs-CZ
2021-02-18 21:06:02 ----D---- C:\WINDOWS\system32\ar-SA
2021-02-18 21:05:52 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-02-18 21:05:52 ----D---- C:\WINDOWS\servicing
2021-02-18 21:05:52 ----D---- C:\WINDOWS\PolicyDefinitions
2021-02-18 21:05:51 ----D---- C:\WINDOWS\bcastdvr
2021-02-18 21:05:51 ----D---- C:\Program Files\Windows Mail
2021-02-18 21:05:51 ----D---- C:\Program Files\Common Files\System
2021-02-18 21:05:51 ----D---- C:\Program Files (x86)\Windows Mail
2021-02-16 11:43:03 ----D---- C:\WINDOWS\CbsTemp
2021-02-16 10:23:26 ----D---- C:\WINDOWS\system32\MRT
2021-02-16 09:45:45 ----AC---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2021-01-02 36792]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2021-01-02 247888]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2021-01-02 97360]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2021-01-02 16832]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2021-01-02 84496]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2021-01-07 324904]
R0 BTATH_BUS;@oem29.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2014-02-25 35016]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2021-01-02 41984]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2021-01-02 208672]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2021-01-02 332880]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2021-01-02 42424]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2021-01-02 176384]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2021-01-02 522480]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2021-01-02 108928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2021-01-02 851256]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2021-01-08 468888]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2017-11-27 27552]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2021-01-07 214808]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2021-02-16 149312]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-02-16 495104]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2021-01-02 53248]
R3 athr;@oem143.inf,%ATHR.Service.DispName%;Dell Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwbx.sys [2017-11-27 4309896]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-07-13 610336]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2021-01-02 279040]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-01-16 113664]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-12-07 65536]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2021-01-02 106496]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-12-07 133632]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2021-01-16 1559040]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-01-16 110592]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 DellRbtn;@oem35.inf,%DellRbtn%;Airplane Mode Switch; C:\WINDOWS\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 dtlitescsibus;@oem153.inf,%DisplayName%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2020-04-02 42256]
R3 dtliteusbbus;@oem9.inf,%DisplayName%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2020-04-02 59360]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2019-11-18 6486608]
R3 IntcDAud;@oem190.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem134.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2021-01-02 322376]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2021-01-02 18432]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-01-16 45568]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 dtproscsibus;DAEMON Tools Pro Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [2020-03-24 30264]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2021-01-02 95048]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2021-01-02 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2021-01-02 386048]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-16 207360]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2021-01-02 104760]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2014-02-27 272088]
S3 RTSUER;@oem54.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2019-11-18 424384]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2019-12-07 35128]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2021-01-25 169672]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2017-11-27 106944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2021-01-02 621728]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2021-01-02 351848]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2021-01-02 58048]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 CDPUserSvc_11acfb;Uživatelská služba platformy připojených zařízení_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2021-02-22 8988552]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 McAfee WebAdvisor;McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [2021-02-11 959752]
R2 OneSyncSvc_11acfb;Hostitel synchronizace_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2019-11-18 268368]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2021-01-02 8477080]
R3 BluetoothUserService_11acfb;Služba pro podporu uživatelů Bluetooth_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 cbdhsvc_11acfb;Uživatelská služba schránky_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2020-04-02 4507328]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 PimIndexMaintenanceSvc_11acfb;Data kontaktů_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 PrintWorkflowUserSvc_11acfb;PrintWorkflow_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2021-02-16 988056]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-09 224160]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-19 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 AarSvc_11acfb;Agent Activation Runtime_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-06-09 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 BcastDVRUserService_11acfb;Uživatelská služba pro GameDVR a vysílání her_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 CaptureService_11acfb;CaptureService_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 ConsentUxUserSvc_11acfb;ConsentUX_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-16 386816]
S3 CredentialEnrollmentManagerUserSvc_11acfb;CredentialEnrollmentManagerUserSvc_11acfb; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-16 386816]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DeviceAssociationBrokerSvc_11acfb;DeviceAssociationBroker_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicePickerUserSvc_11acfb;DevicePicker_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevicesFlowUserSvc_11acfb;Tok zařízení_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-01-16 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-09 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\elevation_service.exe [2021-02-18 1434216]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-19 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-21 6058960]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 MessagingService_11acfb;Služba zasílání zpráv_11acfb; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.45\elevation_service.exe [2021-03-03 1559936]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 214832]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-16 106496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2021-01-02 57360]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2021-01-02 57360]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-01-16 1265152]
-----------------EOF-----------------
)