Prosím o kontrolu logu - zpomalený ntb
Napsal: 15 kvě 2021 18:39
Zdravím všechny, prosím o kontrolu přiloženého logo - ntb není žádná raketa, slouží čistě k administrativní práci. Nicméně vzhledem k tomu, že je necelé 2 roky starý bych si představoval přeci jen malinko rychlejší odezvu. Taky start OS je někdy vskutku šnekoidní 
Děkuji velice, pokud si někdo najde čas...
Logfile of random's system information tool 1.10 (written by random/random)
Run by jiriw at 2021-05-15 19:31:29
Microsoft Windows 10 Home
System drive C: has 418 GB (88%) free of 476 GB
Total RAM: 3982 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:31:39, on 15.05.2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\Program Files\trend micro\jiriw.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://hp17win10.msn.com/?pc=HCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\BHO\ie_to_edge_bho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [PSUAMain] "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jiriw\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\jiriw\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [f.lux] "C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atiesrxx.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_67973 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem50.inf,%ServiceAppHelperDesc%;HP App Helper HSA Service (HPAppHelperCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe
O23 - Service: @oem50.inf,%ServiceDiagsDesc%;HP Diagnostics HSA Service (HPDiagsCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe
O23 - Service: @oem50.inf,%ServiceNetworkDesc%;HP Network HSA Service (HPNetworkCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe
O23 - Service: @oem50.inf,%ServiceSysInfoDesc%;HP System Info HSA Service (HPSysInfoCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe
O23 - Service: @oem51.inf,%hpanalyticscomp%;HP Analytics service (HpTouchpointAnalyticsService) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Panda Cloud Antivirus Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Panda VPN Service - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Panda Elam Service Protection (pselamsvc) - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @oem15.inf,%RtkBtManServ.SvcDesc%;Realtek Bluetooth Device Manager Service (RtkBtManServ) - Realtek Semiconductor Corp. - C:\WINDOWS\RtkBtManServ.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @oem4.inf,%SynTPEnhService.SVCDESC%;SynTPEnhService (SynTPEnhService) - Unknown owner - C:\WINDOWS\System32\SynTPEnhService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11065 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\SynTPEnhService.exe
C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
atieclxx
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2626287397760
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe"
"C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\RtkBtManServ.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
sihost.exe
"C:\WINDOWS\System32\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k BthAppGroup -p -s BluetoothUserService
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
schtasks /change /TN "AMDLinkUpdate" /TR "\"C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe\" -AMDLinkUpdate"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21042.95.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe"
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 4808
"C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\rundll32.exe" -localserver 22d8c27b-47a1-48d1-ad08-7da7abd79617
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe" -ServerName:microsoft.windowslive.mail.AppXfbjsbkxvprcgqg6q4c9jfr0pn3kv9x5s.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
dashost.exe {3f3f6be5-ff56-445e-be710ea4d27b2028}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\AUDIODG.EXE 0x4f0
"C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\BridgeCommunication.exe" 5d8ee695-2684-4d45-883d-71e80c19f021 Global\2aba4625-c70b-4358-947d-403cbe29ff83 1612
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\jiriw\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\jiriw\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\jiriw\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=90.0.4430.212 --initial-client-data=0xf0,0xf4,0xf8,0xc8,0xfc,0x7ffadd5a2920,0x7ffadd5a2930,0x7ffadd5a2940
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1716 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --service-sandbox-type=none --mojo-platform-channel-handle=1984 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2408 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=6468 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4268 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k SDRSVC
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1
C:\WINDOWS\explorer.exe /factory,{5BD95610-9434-43C2-886C-57852CC8A120} -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=149 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8976 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=151 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4680 /prefetch:1
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784
"C:\Users\jiriw\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\BHO\ie_to_edge_bho_64.dll [2021-05-13 550792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\BHO\ie_to_edge_bho.dll [2021-05-13 409984]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2020-04-24 11235928]
"RtlS5Wake"=C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2018-04-18 2097600]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\jiriw\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-03-22 1579368]
"com.squirrel.Teams.Teams"=C:\Users\jiriw\AppData\Local\Microsoft\Teams\Update.exe [2021-04-18 2453728]
"f.lux"=C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe [2021-02-04 1511824]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2021-04-22 33698888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"PSUAMain"=C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [2020-12-02 168456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"MaxGPOScriptWait"=600
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2021-05-15 19:31:30 ----D---- C:\Program Files\trend micro
2021-05-15 19:31:29 ----D---- C:\rsit
2021-05-15 07:09:59 ----A---- C:\WINDOWS\system32\wbadmin.exe
2021-05-15 07:09:59 ----A---- C:\WINDOWS\system32\msrahc.dll
2021-05-15 07:09:54 ----A---- C:\WINDOWS\system32\WalletService.dll
2021-05-15 07:09:49 ----A---- C:\WINDOWS\SYSWOW64\quickassist.exe
2021-05-15 07:09:49 ----A---- C:\WINDOWS\system32\quickassist.exe
2021-05-15 07:09:48 ----A---- C:\WINDOWS\system32\libcrypto.dll
2021-05-15 07:09:32 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-05-15 07:09:32 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2021-05-15 07:09:32 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-05-15 07:09:28 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2021-05-15 07:09:27 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\mfps.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2021-05-15 07:09:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-05-15 07:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\remotepg.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\rdvvmtransport.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2021-05-15 07:09:20 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2021-05-15 07:09:20 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2021-05-15 07:09:20 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-05-15 07:09:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-05-15 07:09:18 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-05-15 07:09:17 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\nshhttp.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2021-05-15 07:09:14 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2021-05-15 07:09:12 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2021-05-15 07:09:12 ----A---- C:\WINDOWS\system32\Spectrum.exe
2021-05-15 07:09:12 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2021-05-15 07:09:11 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2021-05-15 07:09:11 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2021-05-15 07:09:11 ----A---- C:\WINDOWS\system32\rdvvmtransport.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\SessEnv.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\remotepg.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FsIso.exe
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FrameServer.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\reseteng.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\fwcfg.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2021-05-15 07:09:07 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-05-15 07:09:07 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-05-15 07:09:06 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2021-05-15 07:09:06 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-05-15 07:09:05 ----A---- C:\WINDOWS\system32\jscript9.dll
2021-05-15 07:09:04 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-05-15 07:09:04 ----A---- C:\WINDOWS\system32\Chakra.dll
2021-05-15 07:09:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-05-15 07:09:01 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-05-15 07:09:01 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\smphost.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\nshhttp.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\jscript.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\drivers\EhStorClass.sys
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2021-05-15 07:08:57 ----A---- C:\WINDOWS\system32\spaceman.exe
2021-05-15 07:08:57 ----A---- C:\WINDOWS\system32\mispace.dll
2021-05-15 07:08:56 ----A---- C:\WINDOWS\system32\Windows.Internal.PlatformExtension.MiracastBannerExperience.dll
2021-05-15 07:08:56 ----A---- C:\WINDOWS\system32\storagewmi.dll
2021-05-15 07:08:46 ----A---- C:\WINDOWS\system32\resutils.dll
2021-05-15 07:08:46 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-05-15 07:08:46 ----A---- C:\WINDOWS\system32\CIDiag.exe
2021-05-15 07:08:45 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-05-15 07:08:45 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-05-15 07:08:45 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\hvloader.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\fphc.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\winipsec.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\nshipsec.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\httpapi.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\DMAppsRes.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\dabapi.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\mskeyprotect.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-05-15 07:08:37 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\dsregtask.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\SystemEventsBrokerClient.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2021-05-15 07:08:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-05-15 07:08:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-05-15 07:08:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-05-15 07:08:29 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2021-05-15 07:08:29 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2021-05-15 07:08:29 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2021-05-15 07:08:28 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2021-05-15 07:08:28 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2021-05-15 07:08:27 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-05-15 07:08:26 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2021-05-15 07:08:26 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2021-05-15 07:08:25 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2021-05-15 07:08:24 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2021-05-15 07:08:24 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2021-05-15 07:08:24 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2021-05-15 07:08:22 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2021-05-15 07:08:22 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-15 07:08:16 ----A---- C:\WINDOWS\system32\shell32.dll
2021-05-15 07:08:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\vpnike.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\vbscript.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\rasmans.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\rasapi32.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\rtm.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\mprdim.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\mprddm.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\iprtprio.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\drivers\ipfltdrv.sys
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\sppnp.dll
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\fphc.dll
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\drvstore.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\ubpm.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\taskschd.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\schedsvc.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\pnidui.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2021-05-15 07:08:06 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2021-05-15 07:08:06 ----A---- C:\WINDOWS\system32\LockController.dll
2021-05-15 07:08:06 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\winipsec.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\polstore.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\nshipsec.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\msIso.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\DMAppsRes.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\wkssvc.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\msctf.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\KernelBase.dll
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-05-15 07:08:02 ----A---- C:\WINDOWS\system32\smss.exe
2021-05-15 07:08:02 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2021-05-15 07:08:01 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\utcutil.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\runexehelper.exe
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\hal.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\dabapi.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\dab.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\oleaut32.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\httpapi.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\drivers\http.sys
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\diagtrack.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\ci.dll
2021-05-15 07:07:58 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2021-05-15 07:07:58 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\wow64.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\conhost.exe
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\wimserv.exe
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\wimgapi.dll
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2021-05-15 07:07:55 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2021-05-15 07:07:55 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2021-05-15 07:07:54 ----A---- C:\WINDOWS\system32\refsutil.exe
2021-05-15 07:07:53 ----A---- C:\WINDOWS\system32\uReFS.dll
2021-05-15 07:07:53 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2021-05-15 07:07:53 ----A---- C:\WINDOWS\system32\cldapi.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\appraiser.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\acmigration.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\invagent.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\ConstraintIndex.Search.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\aeinv.dll
2021-05-15 07:07:49 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\NotificationController.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-05-15 07:07:41 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-05-15 07:07:41 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-05-15 07:07:40 ----A---- C:\WINDOWS\system32\ReAgent.dll
2021-05-15 07:07:39 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-05-15 07:07:39 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\AppResolver.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\wc_storage.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\SHCore.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\container.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\bindfltapi.dll
2021-05-15 07:07:36 ----A---- C:\WINDOWS\system32\win32u.dll
2021-05-15 07:07:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-05-15 07:07:36 ----A---- C:\WINDOWS\system32\win32k.sys
2021-05-15 07:07:35 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2021-05-15 07:07:35 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-05-15 07:07:35 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-05-15 07:07:34 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-05-15 07:07:34 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\wfapigp.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\icfupgd.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\fwmdmcsp.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\fwbase.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2021-05-15 07:07:32 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-05-15 07:07:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-05-15 07:07:31 ----A---- C:\WINDOWS\system32\ISM.dll
2021-05-15 07:07:30 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-05-15 07:07:30 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-05-15 07:07:28 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-05-15 07:07:28 ----A---- C:\WINDOWS\system32\InputService.dll
2021-05-15 07:07:27 ----A---- C:\WINDOWS\system32\win32kbase.sys
2021-05-15 07:07:27 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-05-15 07:07:27 ----A---- C:\WINDOWS\system32\dxgi.dll
2021-05-15 07:07:26 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\cdd.dll
2021-05-15 07:07:24 ----A---- C:\WINDOWS\system32\oemlicense.dll
2021-05-15 07:07:24 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2021-05-15 07:07:23 ----A---- C:\WINDOWS\system32\mskeyprotect.dll
2021-05-15 07:07:23 ----A---- C:\WINDOWS\system32\Clipc.dll
2021-05-15 07:07:22 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2021-05-15 07:07:22 ----A---- C:\WINDOWS\system32\certcli.dll
2021-05-15 07:07:21 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-05-15 07:07:21 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-05-15 07:07:18 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-05-15 07:07:17 ----A---- C:\WINDOWS\system32\aadtb.dll
2021-05-15 07:07:17 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2021-05-15 07:07:16 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\vdsbas.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2021-05-15 07:07:13 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2021-05-15 07:07:13 ----A---- C:\WINDOWS\system32\diskpart.exe
2021-05-15 07:07:12 ----A---- C:\WINDOWS\system32\twinui.dll
2021-05-15 07:07:12 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\wfdprov.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\usbmon.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2021-05-15 07:07:10 ----A---- C:\WINDOWS\system32\wlansec.dll
2021-05-15 07:07:10 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\wlansvc.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\wlanapi.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\stobject.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\dsregtask.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\explorer.exe
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\Wpc.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\spoolsv.exe
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\dsreg.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\cmifw.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcApi.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2021-05-15 07:07:06 ----A---- C:\WINDOWS\system32\WpcTok.exe
2021-05-15 07:07:06 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2021-05-15 07:07:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-05-15 07:07:05 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-05-15 07:07:05 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\autopilot.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-05-15 07:06:58 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2021-05-15 07:06:58 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2021-05-15 07:06:58 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\sbp2port.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2021-05-15 07:06:56 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2021-05-15 07:06:56 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2021-05-14 22:54:35 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2021-05-14 22:54:33 ----A---- C:\WINDOWS\system32\poqexec.exe
2021-05-03 21:45:27 ----N---- C:\WINDOWS\KMSEmulator.exe
2021-05-01 11:31:08 ----D---- C:\Users\jiriw\AppData\Roaming\GHISLER
2021-05-01 11:31:08 ----D---- C:\totalcmd
2021-04-22 16:40:42 ----D---- C:\Users\jiriw\AppData\Roaming\Geek Uninstaller
2021-04-22 16:30:44 ----D---- C:\AdwCleaner
2021-04-22 16:22:18 ----D---- C:\Program Files\CCleaner
2021-04-22 16:07:02 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-20 17:06:54 ----A---- C:\WINDOWS\SYSWOW64\WinFax.dll
2021-04-20 17:06:54 ----A---- C:\WINDOWS\SYSWOW64\FXSRESM.dll
2021-04-20 17:06:54 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\SYSWOW64\FXSCOM.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\WinFax.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXST30.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSRESM.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSCOM.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-04-20 17:06:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2021-04-20 17:06:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2021-04-20 17:06:21 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2021-04-20 17:06:21 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2021-04-20 17:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2021-04-20 17:06:20 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-04-20 17:06:20 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2021-04-20 17:06:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-04-20 17:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2021-04-20 17:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2021-04-20 17:06:18 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2021-04-20 17:06:15 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2021-04-20 17:06:15 ----A---- C:\WINDOWS\system32\winmde.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\mfds.dll
2021-04-20 17:06:13 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-04-20 17:06:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2021-04-20 17:06:13 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2021-04-20 17:06:12 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2021-04-20 17:06:11 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2021-04-20 17:06:08 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\opengl32.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\mstext40.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\msoert2.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\wincredprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\gpresult.exe
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\dxdiagn.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\dpapiprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\dimsroam.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\cngprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\capiprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\adprovider.dll
2021-04-20 17:05:50 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\icsvcext.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhlisten.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\SIHClient.exe
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\PktMonApi.dll
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\PktMon.exe
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\pcwutl.dll
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\pcwrun.exe
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\drivers\PktMon.sys
2021-04-20 17:05:42 ----A---- C:\WINDOWS\system32\rdpudd.dll
2021-04-20 17:05:42 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2021-04-20 17:05:42 ----A---- C:\WINDOWS\system32\certreq.exe
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\opengl32.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\odbcconf.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\msisip.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\msi.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2021-04-20 17:05:40 ----A---- C:\WINDOWS\system32\msoert2.dll
2021-04-20 17:05:40 ----A---- C:\WINDOWS\system32\INETRES.dll
2021-04-20 17:05:40 ----A---- C:\WINDOWS\system32\inetcomm.dll
2021-04-20 17:05:37 ----A---- C:\WINDOWS\system32\vbsapi.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\wincredprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\gpresult.exe
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\dpapiprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\dimsroam.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\cngprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\capiprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\adprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\HelpPane.exe
2021-04-20 17:05:35 ----A---- C:\WINDOWS\system32\vmdevicehost.dll
2021-04-20 17:05:35 ----A---- C:\WINDOWS\system32\computestorage.dll
2021-04-20 17:05:35 ----A---- C:\WINDOWS\system32\computecore.dll
2021-04-20 17:05:32 ----A---- C:\WINDOWS\system32\securekernel.exe
2021-04-20 17:05:31 ----A---- C:\WINDOWS\system32\NgcIsoCtnr.dll
2021-04-20 17:05:25 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2021-04-20 17:05:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2021-04-20 17:05:24 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2021-04-20 17:05:24 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2021-04-20 17:05:23 ----A---- C:\WINDOWS\SYSWOW64\joinutil.dll
2021-04-20 17:05:23 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2021-04-20 17:05:21 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2021-04-20 17:05:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2021-04-20 17:05:19 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2021-04-20 17:05:19 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2021-04-20 17:05:18 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2021-04-20 17:05:18 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\MuiUnattend.exe
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\cryptnet.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\CredProvHelper.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\Apphlpdm.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2021-04-20 17:05:12 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2021-04-20 17:05:12 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2021-04-20 17:05:10 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2021-04-20 17:05:10 ----A---- C:\WINDOWS\SYSWOW64\dmxmlhelputils.dll
2021-04-20 17:05:10 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2021-04-20 17:05:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2021-04-20 17:05:09 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2021-04-20 17:05:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2021-04-20 17:05:07 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2021-04-20 17:05:06 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2021-04-20 17:05:06 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2021-04-20 17:05:06 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2021-04-20 17:05:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2021-04-20 17:05:05 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2021-04-20 17:05:04 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmRes.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\wsmprovhost.exe
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\wsmplpxy.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WSManMigrationPlugin.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2021-04-20 17:05:02 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2021-04-20 17:05:02 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\TaskSchdPS.dll
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\onex.dll
2021-04-20 17:05:00 ----A---- C:\WINDOWS\SYSWOW64\tbs.dll
2021-04-20 17:04:59 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-04-20 17:04:49 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-04-20 17:04:49 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-04-20 17:04:49 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-04-20 17:04:49 ----A---- C:\WINDOWS\system32\spwizres.dll
2021-04-20 17:04:47 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2021-04-20 17:04:47 ----A---- C:\WINDOWS\system32\twext.dll
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\rascustom.dll
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\drvinst.exe
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\comdlg32.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\npmproxy.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\netprofm.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\joinutil.dll
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\TaskSchdPS.dll
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\taskhostw.exe
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\taskcomp.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\TabSvc.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\schtasks.exe
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\ktmw32.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2021-04-20 17:04:41 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2021-04-20 17:04:41 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-04-20 17:04:41 ----A---- C:\WINDOWS\system32\gdi32full.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\pdh.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\d3d9.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\shutdownux.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\policymanager.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\MuiUnattend.exe
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\credprovs.dll
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\winlogon.exe
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2021-04-20 17:04:28 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2021-04-20 17:04:28 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\lpk.dll
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\fontsub.dll
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\dciman32.dll
2021-04-20 17:04:25 ----A---- C:\WINDOWS\system32\sechost.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\sspisrv.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\sspicli.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\lsass.exe
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2021-04-20 17:04:23 ----A---- C:\WINDOWS\system32\services.exe
2021-04-20 17:04:23 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\wermgr.exe
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\weretw.dll
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\wer.dll
2021-04-20 17:04:18 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2021-04-20 17:04:18 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2021-04-20 17:04:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2021-04-20 17:04:16 ----A---- C:\WINDOWS\system32\winhttp.dll
2021-04-20 17:04:16 ----A---- C:\WINDOWS\system32\webio.dll
2021-04-20 17:04:16 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\tzres.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\samsrv.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\samlib.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\profsvc.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\offlinesam.dll
2021-04-20 17:04:14 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2021-04-20 17:04:14 ----A---- C:\WINDOWS\system32\dcntel.dll
2021-04-20 17:04:13 ----A---- C:\WINDOWS\system32\rpcss.dll
2021-04-20 17:04:13 ----A---- C:\WINDOWS\system32\cryptnet.dll
2021-04-20 17:04:12 ----A---- C:\WINDOWS\system32\WinTypes.dll
2021-04-20 17:04:12 ----A---- C:\WINDOWS\system32\wincorlib.dll
2021-04-20 17:04:11 ----A---- C:\WINDOWS\system32\combase.dll
2021-04-20 17:04:11 ----A---- C:\WINDOWS\system32\aepic.dll
2021-04-20 17:04:10 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2021-04-20 17:04:09 ----A---- C:\WINDOWS\system32\dnsapi.dll
2021-04-20 17:04:07 ----A---- C:\WINDOWS\system32\dcomp.dll
2021-04-20 17:04:06 ----A---- C:\WINDOWS\system32\winsku.dll
2021-04-20 17:04:06 ----A---- C:\WINDOWS\system32\uDWM.dll
2021-04-20 17:04:05 ----A---- C:\WINDOWS\system32\winbrand.dll
2021-04-20 17:04:05 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2021-04-20 17:04:04 ----A---- C:\WINDOWS\system32\winload.exe
2021-04-20 17:04:04 ----A---- C:\WINDOWS\system32\cxcredprov.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\CredProvHelper.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\cflapi.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidsvc.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidapi.dll
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\shimeng.dll
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\sdbinst.exe
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\generaltel.dll
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\apphelp.dll
2021-04-20 17:04:01 ----A---- C:\WINDOWS\system32\pcaevts.dll
2021-04-20 17:04:01 ----A---- C:\WINDOWS\system32\devinv.dll
2021-04-20 17:04:00 ----A---- C:\WINDOWS\system32\pcalua.exe
2021-04-20 17:04:00 ----A---- C:\WINDOWS\system32\pcadm.dll
2021-04-20 17:03:59 ----A---- C:\WINDOWS\system32\pcaui.exe
2021-04-20 17:03:59 ----A---- C:\WINDOWS\system32\pcasvc.dll
2021-04-20 17:03:59 ----A---- C:\WINDOWS\system32\Apphlpdm.dll
2021-04-20 17:03:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2021-04-20 17:03:58 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2021-04-20 17:03:58 ----A---- C:\WINDOWS\system32\aitstatic.exe
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\WsmRes.dll
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\wsmplpxy.dll
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\wups2.dll
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\virtdisk.dll
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\convertvhd.exe
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\wups.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\UsoClient.exe
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-04-20 17:03:42 ----A---- C:\WINDOWS\system32\usoapi.dll
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\wcimage.dll
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\drivers\condrv.sys
2021-04-20 17:03:40 ----A---- C:\WINDOWS\system32\user32.dll
2021-04-20 17:03:40 ----A---- C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-20 17:03:39 ----A---- C:\WINDOWS\system32\wpnapps.dll
2021-04-20 17:03:39 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2021-04-20 17:03:39 ----A---- C:\WINDOWS\system32\drivers\CEA.sys
2021-04-20 17:03:38 ----A---- C:\WINDOWS\system32\EventAggregation.dll
2021-04-20 17:03:38 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2021-04-20 17:03:37 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2021-04-20 17:03:35 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2021-04-20 17:03:35 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-04-20 17:03:35 ----A---- C:\WINDOWS\system32\InputHost.dll
2021-04-20 17:03:33 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2021-04-20 17:03:33 ----A---- C:\WINDOWS\system32\directxdatabaseupdater.exe
2021-04-20 17:03:32 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2021-04-20 17:03:32 ----A---- C:\WINDOWS\system32\dxgiadaptercache.exe
2021-04-20 17:03:31 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2021-04-20 17:03:28 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2021-04-20 17:03:28 ----A---- C:\WINDOWS\system32\msxml6r.dll
2021-04-20 17:03:28 ----A---- C:\WINDOWS\system32\msxml6.dll
2021-04-20 17:03:27 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2021-04-20 17:03:27 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2021-04-20 17:03:27 ----A---- C:\WINDOWS\system32\cryptngc.dll
2021-04-20 17:03:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2021-04-20 17:03:26 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2021-04-20 17:03:26 ----A---- C:\WINDOWS\system32\dmxmlhelputils.dll
2021-04-20 17:03:25 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2021-04-20 17:03:22 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2021-04-20 17:03:22 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-04-20 17:03:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2021-04-20 17:03:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2021-04-20 17:03:19 ----A---- C:\WINDOWS\system32\authui.dll
2021-04-20 17:03:18 ----A---- C:\WINDOWS\system32\kernel32.dll
2021-04-20 17:03:17 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2021-04-20 17:03:17 ----A---- C:\WINDOWS\system32\lsm.dll
2021-04-20 17:03:16 ----A---- C:\WINDOWS\system32\onex.dll
2021-04-20 17:03:16 ----A---- C:\WINDOWS\system32\LicensingCSP.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\tbs.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\drivers\tbs.sys
2021-04-20 17:03:10 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\AudioSes.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\AudioEng.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\audiodg.exe
2021-04-20 17:03:06 ----A---- C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2021-04-20 17:03:06 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2021-04-20 17:03:05 ----A---- C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2021-04-20 17:03:03 ----A---- C:\WINDOWS\system32\drivers\Synth3dVsc.sys
2021-04-20 17:03:03 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2021-04-20 17:03:03 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\pciide.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\intelide.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\ataport.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2021-04-20 17:02:58 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
======List of files/folders modified in the last 1 month======
2021-05-15 19:31:30 ----D---- C:\Program Files
2021-05-15 19:26:49 ----D---- C:\WINDOWS\Temp
2021-05-15 19:26:25 ----D---- C:\WINDOWS\INF
2021-05-15 19:26:20 ----D---- C:\WINDOWS\Prefetch
2021-05-15 19:22:04 ----D---- C:\WINDOWS\system32\config
2021-05-15 19:19:53 ----D---- C:\WINDOWS\debug
2021-05-15 19:19:53 ----D---- C:\Windows
2021-05-15 19:18:40 ----D---- C:\WINDOWS\system32\sru
2021-05-15 19:17:58 ----D---- C:\WINDOWS\system32\SleepStudy
2021-05-15 11:40:27 ----D---- C:\WINDOWS\AppReadiness
2021-05-15 11:40:19 ----D---- C:\WINDOWS\System32
2021-05-15 11:40:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-15 11:33:00 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-05-15 11:32:24 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-05-15 11:32:14 ----D---- C:\WINDOWS\system32\Tasks
2021-05-15 11:31:54 ----D---- C:\WINDOWS\system32\drivers
2021-05-15 11:31:29 ----ASH---- C:\DumpStack.log.tmp
2021-05-15 10:47:21 ----D---- C:\WINDOWS\WinSxS
2021-05-15 10:42:11 ----D---- C:\WINDOWS\system32\DriverStore
2021-05-15 10:39:30 ----D---- C:\WINDOWS\system32\catroot2
2021-05-15 10:38:01 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\wbem
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\setup
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\oobe
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\migration
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\Dism
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SysWOW64
2021-05-15 10:37:54 ----D---- C:\WINDOWS\SystemResources
2021-05-15 10:37:50 ----D---- C:\WINDOWS\system32\WinMetadata
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\wbem
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\setup
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\OpenSSH
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\oobe
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\migration
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\lt-LT
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\en-US
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\en-GB
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\drivers\en-GB
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\Dism
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\cs-CZ
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\Boot
2021-05-15 10:37:35 ----RD---- C:\WINDOWS\PrintDialog
2021-05-15 10:37:35 ----D---- C:\WINDOWS\Provisioning
2021-05-15 10:37:35 ----D---- C:\WINDOWS\PolicyDefinitions
2021-05-15 10:37:34 ----D---- C:\WINDOWS\en-GB
2021-05-15 10:37:34 ----D---- C:\WINDOWS\DiagTrack
2021-05-15 10:37:34 ----D---- C:\WINDOWS\cs-CZ
2021-05-15 10:37:34 ----D---- C:\WINDOWS\bcastdvr
2021-05-15 10:37:34 ----D---- C:\WINDOWS\apppatch
2021-05-15 10:37:04 ----D---- C:\WINDOWS\system32\drivers\UMDF
2021-05-15 07:59:36 ----RD---- C:\WINDOWS\Microsoft.NET
2021-05-15 07:45:52 ----D---- C:\WINDOWS\CbsTemp
2021-05-15 07:41:42 ----A---- C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-15 07:38:49 ----SHD---- C:\WINDOWS\Installer
2021-05-15 07:38:48 ----SHD---- C:\Config.Msi
2021-05-15 06:40:47 ----SHD---- C:\System Volume Information
2021-05-14 23:13:45 ----HD---- C:\Program Files\WindowsApps
2021-05-14 22:52:34 ----D---- C:\WINDOWS\system32\MRT
2021-05-14 16:31:12 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-05-11 21:27:01 ----D---- C:\WINDOWS\SoftwareDistribution
2021-05-07 02:56:50 ----D---- C:\KMPlayer
2021-05-03 21:45:30 ----A---- C:\WINDOWS\AutoKMS.ini
2021-05-01 09:49:43 ----D---- C:\WINDOWS\system32\Logs
2021-05-01 09:49:42 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-04-23 21:17:32 ----D---- C:\ProgramData\Microsoft Help
2021-04-22 16:54:40 ----D---- C:\Users\jiriw\AppData\Roaming\Wise Disk Cleaner
2021-04-22 16:50:59 ----D---- C:\Program Files (x86)\TeamViewer
2021-04-22 16:50:57 ----RSD---- C:\WINDOWS\Fonts
2021-04-22 16:47:32 ----HD---- C:\ProgramData
2021-04-22 16:35:06 ----D---- C:\ProgramData\HP
2021-04-22 16:34:29 ----HD---- C:\hp
2021-04-22 16:34:29 ----D---- C:\Program Files (x86)\HP
2021-04-22 16:34:28 ----D---- C:\WINDOWS\system32\HP
2021-04-22 16:34:26 ----D---- C:\Users\jiriw\AppData\Roaming\Hewlett-Packard
2021-04-22 16:34:26 ----D---- C:\ProgramData\Hewlett-Packard
2021-04-22 16:08:45 ----D---- C:\WINDOWS\system32\WDI
2021-04-22 16:00:20 ----D---- C:\Program Files (x86)\Wise
2021-04-21 16:59:36 ----RD---- C:\WINDOWS\assembly
2021-04-21 16:52:04 ----D---- C:\WINDOWS\system32\CatRoot
2021-04-21 16:50:29 ----SD---- C:\WINDOWS\system32\DiagSvcs
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\zh-TW
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\zh-CN
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\uk-UA
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\tr-TR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\th-TH
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sv-SE
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sl-SI
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sk-SK
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ru-RU
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ro-RO
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\pt-PT
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\pt-BR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\pl-PL
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\nl-NL
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\nb-NO
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\lv-LV
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ko-KR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ja-jp
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\it-IT
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\hu-HU
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\hr-HR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\he-IL
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\fr-FR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\fr-CA
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\fi-FI
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\et-EE
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\es-MX
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\es-ES
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\el-GR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\drivers\en-US
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\de-DE
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\da-DK
2021-04-21 16:50:28 ----D---- C:\WINDOWS\system32\bg-BG
2021-04-21 16:50:28 ----D---- C:\WINDOWS\system32\ar-SA
2021-04-20 17:03:02 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2021-04-20 15:17:53 ----D---- C:\WINDOWS\Logs
2021-04-18 15:54:58 ----D---- C:\WINDOWS\system32\drivers\wd
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdpsp;@oem28.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\System32\drivers\amdpsp.sys [2019-06-27 138064]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-09-28 41984]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2021-03-18 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 NNSDNS;NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [2020-12-02 141088]
R1 NNSHTTP;NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [2020-12-02 212768]
R1 NNSHTTPS;NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [2020-12-02 125728]
R1 NNSIDS;NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [2020-12-02 132384]
R1 NNSNAHSL;NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [2020-11-23 111296]
R1 NNSPICC;NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [2020-12-02 152864]
R1 NNSPIHSW;NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [2020-12-02 102688]
R1 NNSPOP3;NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [2020-12-02 135456]
R1 NNSPROT;NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [2020-12-02 347424]
R1 NNSPRV;NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [2020-12-10 353592]
R1 NNSSMTP;NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [2020-12-02 123168]
R1 NNSSTRM;NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [2020-12-02 327968]
R1 PSINKNC;PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [2020-12-02 216864]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2021-05-15 148816]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-05-15 495616]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2020-10-28 53248]
R2 PSINAflt;PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [2020-12-02 195872]
R2 PSINFile;PSINFile; C:\WINDOWS\system32\DRIVERS\PSINFile.sys [2020-12-27 171296]
R2 PSINProc;PSINProc; C:\WINDOWS\system32\DRIVERS\PSINProc.sys [2020-12-27 148768]
R2 PSINProt;PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [2020-12-02 160544]
R2 PSINReg;PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [2020-12-02 130336]
R3 aftap0901;@oem52.inf,%DeviceDescription%;AnchorFree TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\aftap0901.sys [2017-11-16 48624]
R3 AmdAS4;@oem11.inf,%AmdAS4.SVCDESC%;AmdAS4 service; C:\WINDOWS\System32\drivers\AmdAS4.sys [2019-05-10 35848]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atikmdag.sys [2019-05-10 53511472]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atikmpag.sys [2019-05-10 592176]
R3 AtiHDAudioService;@oem29.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2019-05-10 108152]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2021-04-20 284672]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-05-15 113664]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-12-07 65536]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2020-09-28 106496]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-12-07 133632]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2021-05-15 1560064]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-05-15 110592]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 HPCustomCapDriver;@oem34.inf,%HPCustomCapDriverDesc%;HP Application Driver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [2019-04-18 25024]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2020-04-24 7328856]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2020-09-28 322376]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
R3 rt640x64;@oem23.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-03-28 1137928]
R3 RtkBtFilter;@oem15.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [2019-11-30 787232]
R3 RTWlanE;@oem2.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2019-12-04 11722328]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 psinelam;psinelam; C:\WINDOWS\system32\DRIVERS\psinelam.sys [2020-07-10 21432]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-28 18432]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-05-15 45568]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2021-05-15 95056]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2020-10-28 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-09-28 386048]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 MpKsl4cc06120;MpKsl4cc06120; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{38D8FB3F-87FD-43E2-9331-3932A9C701A7}\MpKslDrv.sys [2021-04-20 97528]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-15 207360]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2021-04-20 129872]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 PSKMAD;PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [2019-02-20 72984]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 RTSUER;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2019-03-26 442664]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2021-01-25 169672]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atiesrxx.exe [2019-05-10 506672]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 CDPUserSvc_67973;Uživatelská služba platformy připojených zařízení_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
R2 HPAppHelperCap;@oem50.inf,%ServiceAppHelperDesc%;HP App Helper HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe [2021-03-24 731152]
R2 HPDiagsCap;@oem50.inf,%ServiceDiagsDesc%;HP Diagnostics HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe [2021-03-24 728608]
R2 HPNetworkCap;@oem50.inf,%ServiceNetworkDesc%;HP Network HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe [2021-03-24 728608]
R2 HPSysInfoCap;@oem50.inf,%ServiceSysInfoDesc%;HP System Info HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe [2021-03-24 729608]
R2 HpTouchpointAnalyticsService;@oem51.inf,%hpanalyticscomp%;HP Analytics service; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe [2021-03-17 480280]
R2 NanoServiceMain;Panda Cloud Antivirus Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [2020-12-01 98896]
R2 OneSyncSvc_67973;Hostitel synchronizace_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 PandaAgent;Panda Devices Agent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [2019-02-19 84176]
R2 pselamsvc;Panda Elam Service Protection; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [2020-07-09 189288]
R2 PSUAService;Panda Product Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [2020-12-02 59440]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2020-04-24 269840]
R2 RtkBtManServ;@oem15.inf,%RtkBtManServ.SvcDesc%;Realtek Bluetooth Device Manager Service; C:\WINDOWS\RtkBtManServ.exe [2019-11-30 738712]
R3 BluetoothUserService_67973;Služba pro podporu uživatelů Bluetooth_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 cbdhsvc_67973;Uživatelská služba schránky_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 PimIndexMaintenanceSvc_67973;Data kontaktů_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-10-29 213392]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-01 156104]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 AarSvc_67973;Agent Activation Runtime_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-12-07 55664]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 BcastDVRUserService_67973;Uživatelská služba pro GameDVR a vysílání her_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 CaptureService_67973;CaptureService_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 ConsentUxUserSvc_67973;ConsentUX_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-18 388888]
S3 CredentialEnrollmentManagerUserSvc_67973;CredentialEnrollmentManagerUserSvc_67973; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-18 388888]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DeviceAssociationBrokerSvc_67973;DeviceAssociationBroker_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicePickerUserSvc_67973;DevicePicker_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicesFlowUserSvc_67973;Tok zařízení_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-04-20 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-10-29 213392]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\elevation_service.exe [2021-05-08 1498216]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-01 156104]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 MessagingService_67973;Služba zasílání zpráv_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\elevation_service.exe [2021-05-13 1567616]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-14 161472]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Panda VPN Service;Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [2017-11-20 320848]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-18 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PrintWorkflowUserSvc_67973;PrintWorkflow_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
-----------------EOF-----------------
Děkuji velice, pokud si někdo najde čas...Logfile of random's system information tool 1.10 (written by random/random)
Run by jiriw at 2021-05-15 19:31:29
Microsoft Windows 10 Home
System drive C: has 418 GB (88%) free of 476 GB
Total RAM: 3982 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:31:39, on 15.05.2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\Program Files\trend micro\jiriw.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://hp17win10.msn.com/?pc=HCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\BHO\ie_to_edge_bho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [PSUAMain] "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jiriw\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\jiriw\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [f.lux] "C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atiesrxx.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_67973 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem50.inf,%ServiceAppHelperDesc%;HP App Helper HSA Service (HPAppHelperCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe
O23 - Service: @oem50.inf,%ServiceDiagsDesc%;HP Diagnostics HSA Service (HPDiagsCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe
O23 - Service: @oem50.inf,%ServiceNetworkDesc%;HP Network HSA Service (HPNetworkCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe
O23 - Service: @oem50.inf,%ServiceSysInfoDesc%;HP System Info HSA Service (HPSysInfoCap) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe
O23 - Service: @oem51.inf,%hpanalyticscomp%;HP Analytics service (HpTouchpointAnalyticsService) - HP Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Panda Cloud Antivirus Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Panda VPN Service - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Panda Elam Service Protection (pselamsvc) - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @oem15.inf,%RtkBtManServ.SvcDesc%;Realtek Bluetooth Device Manager Service (RtkBtManServ) - Realtek Semiconductor Corp. - C:\WINDOWS\RtkBtManServ.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @oem4.inf,%SynTPEnhService.SVCDESC%;SynTPEnhService (SynTPEnhService) - Unknown owner - C:\WINDOWS\System32\SynTPEnhService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11065 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe
C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\SynTPEnhService.exe
C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
atieclxx
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2626287397760
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe"
"C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\RtkBtManServ.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k netsvcs
sihost.exe
"C:\WINDOWS\System32\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k BthAppGroup -p -s BluetoothUserService
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
schtasks /change /TN "AMDLinkUpdate" /TR "\"C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe\" -AMDLinkUpdate"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe" -ServerName:InputApp.AppX9jnwykgrccxc8by3hsrsh07r423xzvav.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21042.95.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe"
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 4808
"C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\rundll32.exe" -localserver 22d8c27b-47a1-48d1-ad08-7da7abd79617
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe" -ServerName:microsoft.windowslive.mail.AppXfbjsbkxvprcgqg6q4c9jfr0pn3kv9x5s.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
dashost.exe {3f3f6be5-ff56-445e-be710ea4d27b2028}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\AUDIODG.EXE 0x4f0
"C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\BridgeCommunication.exe" 5d8ee695-2684-4d45-883d-71e80c19f021 Global\2aba4625-c70b-4358-947d-403cbe29ff83 1612
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\jiriw\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\jiriw\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\jiriw\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=90.0.4430.212 --initial-client-data=0xf0,0xf4,0xf8,0xc8,0xfc,0x7ffadd5a2920,0x7ffadd5a2930,0x7ffadd5a2940
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1716 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --service-sandbox-type=none --mojo-platform-channel-handle=1984 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2408 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=6468 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4268 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k SDRSVC
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1
C:\WINDOWS\explorer.exe /factory,{5BD95610-9434-43C2-886C-57852CC8A120} -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=149 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8976 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1704,4573090783759700482,14513147867818378507,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=151 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4680 /prefetch:1
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784
"C:\Users\jiriw\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\BHO\ie_to_edge_bho_64.dll [2021-05-13 550792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\BHO\ie_to_edge_bho.dll [2021-05-13 409984]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2020-04-24 11235928]
"RtlS5Wake"=C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2018-04-18 2097600]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\jiriw\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2020-03-22 1579368]
"com.squirrel.Teams.Teams"=C:\Users\jiriw\AppData\Local\Microsoft\Teams\Update.exe [2021-04-18 2453728]
"f.lux"=C:\Users\jiriw\AppData\Local\FluxSoftware\Flux\flux.exe [2021-02-04 1511824]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2021-04-22 33698888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"PSUAMain"=C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [2020-12-02 168456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NanoServiceMain]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSUAService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"MaxGPOScriptWait"=600
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2021-05-15 19:31:30 ----D---- C:\Program Files\trend micro
2021-05-15 19:31:29 ----D---- C:\rsit
2021-05-15 07:09:59 ----A---- C:\WINDOWS\system32\wbadmin.exe
2021-05-15 07:09:59 ----A---- C:\WINDOWS\system32\msrahc.dll
2021-05-15 07:09:54 ----A---- C:\WINDOWS\system32\WalletService.dll
2021-05-15 07:09:49 ----A---- C:\WINDOWS\SYSWOW64\quickassist.exe
2021-05-15 07:09:49 ----A---- C:\WINDOWS\system32\quickassist.exe
2021-05-15 07:09:48 ----A---- C:\WINDOWS\system32\libcrypto.dll
2021-05-15 07:09:32 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-05-15 07:09:32 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2021-05-15 07:09:32 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2021-05-15 07:09:31 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-05-15 07:09:28 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2021-05-15 07:09:27 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\mfps.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2021-05-15 07:09:26 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2021-05-15 07:09:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-05-15 07:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\remotepg.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\rdvvmtransport.dll
2021-05-15 07:09:23 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2021-05-15 07:09:22 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2021-05-15 07:09:21 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2021-05-15 07:09:20 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2021-05-15 07:09:20 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2021-05-15 07:09:20 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-05-15 07:09:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-05-15 07:09:18 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-05-15 07:09:17 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\nshhttp.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-05-15 07:09:15 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2021-05-15 07:09:14 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2021-05-15 07:09:12 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2021-05-15 07:09:12 ----A---- C:\WINDOWS\system32\Spectrum.exe
2021-05-15 07:09:12 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2021-05-15 07:09:11 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2021-05-15 07:09:11 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2021-05-15 07:09:11 ----A---- C:\WINDOWS\system32\rdvvmtransport.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\SessEnv.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\remotepg.dll
2021-05-15 07:09:10 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FsIso.exe
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2021-05-15 07:09:09 ----A---- C:\WINDOWS\system32\FrameServer.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\reseteng.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\fwcfg.dll
2021-05-15 07:09:08 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2021-05-15 07:09:07 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-05-15 07:09:07 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-05-15 07:09:06 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2021-05-15 07:09:06 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-05-15 07:09:05 ----A---- C:\WINDOWS\system32\jscript9.dll
2021-05-15 07:09:04 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-05-15 07:09:04 ----A---- C:\WINDOWS\system32\Chakra.dll
2021-05-15 07:09:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-05-15 07:09:01 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-05-15 07:09:01 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\smphost.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\nshhttp.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\jscript.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\drivers\EhStorClass.sys
2021-05-15 07:08:58 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2021-05-15 07:08:57 ----A---- C:\WINDOWS\system32\spaceman.exe
2021-05-15 07:08:57 ----A---- C:\WINDOWS\system32\mispace.dll
2021-05-15 07:08:56 ----A---- C:\WINDOWS\system32\Windows.Internal.PlatformExtension.MiracastBannerExperience.dll
2021-05-15 07:08:56 ----A---- C:\WINDOWS\system32\storagewmi.dll
2021-05-15 07:08:46 ----A---- C:\WINDOWS\system32\resutils.dll
2021-05-15 07:08:46 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-05-15 07:08:46 ----A---- C:\WINDOWS\system32\CIDiag.exe
2021-05-15 07:08:45 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-05-15 07:08:45 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-05-15 07:08:45 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\hvloader.dll
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-05-15 07:08:44 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\fphc.dll
2021-05-15 07:08:43 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-05-15 07:08:41 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\winipsec.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\nshipsec.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\httpapi.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\DMAppsRes.dll
2021-05-15 07:08:40 ----A---- C:\WINDOWS\SYSWOW64\dabapi.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2021-05-15 07:08:39 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\mskeyprotect.dll
2021-05-15 07:08:38 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-05-15 07:08:37 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2021-05-15 07:08:36 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2021-05-15 07:08:35 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\dsregtask.dll
2021-05-15 07:08:34 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\SystemEventsBrokerClient.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2021-05-15 07:08:33 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2021-05-15 07:08:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-05-15 07:08:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-05-15 07:08:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-05-15 07:08:29 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2021-05-15 07:08:29 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2021-05-15 07:08:29 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2021-05-15 07:08:28 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2021-05-15 07:08:28 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2021-05-15 07:08:27 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-05-15 07:08:26 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2021-05-15 07:08:26 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2021-05-15 07:08:25 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2021-05-15 07:08:24 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2021-05-15 07:08:24 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2021-05-15 07:08:24 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntime.dll
2021-05-15 07:08:23 ----A---- C:\WINDOWS\SYSWOW64\AarSvc.dll
2021-05-15 07:08:22 ----A---- C:\WINDOWS\SYSWOW64\agentactivationruntimewindows.dll
2021-05-15 07:08:22 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-15 07:08:16 ----A---- C:\WINDOWS\system32\shell32.dll
2021-05-15 07:08:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\vpnike.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\vbscript.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\rasmans.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\rasapi32.dll
2021-05-15 07:08:15 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\rtm.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\mprdim.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\mprddm.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\iprtprio.dll
2021-05-15 07:08:14 ----A---- C:\WINDOWS\system32\drivers\ipfltdrv.sys
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\sppnp.dll
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\fphc.dll
2021-05-15 07:08:08 ----A---- C:\WINDOWS\system32\drvstore.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\ubpm.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\taskschd.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\schedsvc.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\pnidui.dll
2021-05-15 07:08:07 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2021-05-15 07:08:06 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2021-05-15 07:08:06 ----A---- C:\WINDOWS\system32\LockController.dll
2021-05-15 07:08:06 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\winipsec.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\polstore.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\nshipsec.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\msIso.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-05-15 07:08:05 ----A---- C:\WINDOWS\system32\DMAppsRes.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\wkssvc.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\msctf.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2021-05-15 07:08:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\KernelBase.dll
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2021-05-15 07:08:03 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-05-15 07:08:02 ----A---- C:\WINDOWS\system32\smss.exe
2021-05-15 07:08:02 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2021-05-15 07:08:01 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\utcutil.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\runexehelper.exe
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\hal.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\dabapi.dll
2021-05-15 07:08:00 ----A---- C:\WINDOWS\system32\dab.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\oleaut32.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\httpapi.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\drivers\http.sys
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\diagtrack.dll
2021-05-15 07:07:59 ----A---- C:\WINDOWS\system32\ci.dll
2021-05-15 07:07:58 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2021-05-15 07:07:58 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\wow64.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2021-05-15 07:07:57 ----A---- C:\WINDOWS\system32\conhost.exe
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\wimserv.exe
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\wimgapi.dll
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-05-15 07:07:56 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2021-05-15 07:07:55 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2021-05-15 07:07:55 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2021-05-15 07:07:54 ----A---- C:\WINDOWS\system32\refsutil.exe
2021-05-15 07:07:53 ----A---- C:\WINDOWS\system32\uReFS.dll
2021-05-15 07:07:53 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2021-05-15 07:07:53 ----A---- C:\WINDOWS\system32\cldapi.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\appraiser.dll
2021-05-15 07:07:51 ----A---- C:\WINDOWS\system32\acmigration.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\invagent.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\ConstraintIndex.Search.dll
2021-05-15 07:07:50 ----A---- C:\WINDOWS\system32\aeinv.dll
2021-05-15 07:07:49 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\NotificationController.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-05-15 07:07:42 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-05-15 07:07:41 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-05-15 07:07:41 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-05-15 07:07:40 ----A---- C:\WINDOWS\system32\ReAgent.dll
2021-05-15 07:07:39 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-05-15 07:07:39 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-05-15 07:07:38 ----A---- C:\WINDOWS\system32\AppResolver.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\wc_storage.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\SHCore.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\container.dll
2021-05-15 07:07:37 ----A---- C:\WINDOWS\system32\bindfltapi.dll
2021-05-15 07:07:36 ----A---- C:\WINDOWS\system32\win32u.dll
2021-05-15 07:07:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-05-15 07:07:36 ----A---- C:\WINDOWS\system32\win32k.sys
2021-05-15 07:07:35 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2021-05-15 07:07:35 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-05-15 07:07:35 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-05-15 07:07:34 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-05-15 07:07:34 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\wfapigp.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\icfupgd.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\fwmdmcsp.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\fwbase.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2021-05-15 07:07:33 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2021-05-15 07:07:32 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-05-15 07:07:31 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2021-05-15 07:07:31 ----A---- C:\WINDOWS\system32\ISM.dll
2021-05-15 07:07:30 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-05-15 07:07:30 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-05-15 07:07:29 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-05-15 07:07:28 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-05-15 07:07:28 ----A---- C:\WINDOWS\system32\InputService.dll
2021-05-15 07:07:27 ----A---- C:\WINDOWS\system32\win32kbase.sys
2021-05-15 07:07:27 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-05-15 07:07:27 ----A---- C:\WINDOWS\system32\dxgi.dll
2021-05-15 07:07:26 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2021-05-15 07:07:25 ----A---- C:\WINDOWS\system32\cdd.dll
2021-05-15 07:07:24 ----A---- C:\WINDOWS\system32\oemlicense.dll
2021-05-15 07:07:24 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2021-05-15 07:07:23 ----A---- C:\WINDOWS\system32\mskeyprotect.dll
2021-05-15 07:07:23 ----A---- C:\WINDOWS\system32\Clipc.dll
2021-05-15 07:07:22 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2021-05-15 07:07:22 ----A---- C:\WINDOWS\system32\certcli.dll
2021-05-15 07:07:21 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-05-15 07:07:21 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-05-15 07:07:18 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-05-15 07:07:17 ----A---- C:\WINDOWS\system32\aadtb.dll
2021-05-15 07:07:17 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2021-05-15 07:07:16 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\vdsbas.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2021-05-15 07:07:14 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2021-05-15 07:07:13 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2021-05-15 07:07:13 ----A---- C:\WINDOWS\system32\diskpart.exe
2021-05-15 07:07:12 ----A---- C:\WINDOWS\system32\twinui.dll
2021-05-15 07:07:12 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\wfdprov.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\usbmon.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-05-15 07:07:11 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2021-05-15 07:07:10 ----A---- C:\WINDOWS\system32\wlansec.dll
2021-05-15 07:07:10 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\wlansvc.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\wlanapi.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\stobject.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\system32\dsregtask.dll
2021-05-15 07:07:09 ----A---- C:\WINDOWS\explorer.exe
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\Wpc.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\spoolsv.exe
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\dsreg.dll
2021-05-15 07:07:08 ----A---- C:\WINDOWS\system32\cmifw.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\WpcApi.dll
2021-05-15 07:07:07 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2021-05-15 07:07:06 ----A---- C:\WINDOWS\system32\WpcTok.exe
2021-05-15 07:07:06 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2021-05-15 07:07:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-05-15 07:07:05 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-05-15 07:07:05 ----A---- C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\autopilot.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-05-15 07:07:04 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-05-15 07:06:58 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2021-05-15 07:06:58 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2021-05-15 07:06:58 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\sbp2port.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2021-05-15 07:06:57 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2021-05-15 07:06:56 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2021-05-15 07:06:56 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2021-05-14 22:54:35 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2021-05-14 22:54:33 ----A---- C:\WINDOWS\system32\poqexec.exe
2021-05-03 21:45:27 ----N---- C:\WINDOWS\KMSEmulator.exe
2021-05-01 11:31:08 ----D---- C:\Users\jiriw\AppData\Roaming\GHISLER
2021-05-01 11:31:08 ----D---- C:\totalcmd
2021-04-22 16:40:42 ----D---- C:\Users\jiriw\AppData\Roaming\Geek Uninstaller
2021-04-22 16:30:44 ----D---- C:\AdwCleaner
2021-04-22 16:22:18 ----D---- C:\Program Files\CCleaner
2021-04-22 16:07:02 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-20 17:06:54 ----A---- C:\WINDOWS\SYSWOW64\WinFax.dll
2021-04-20 17:06:54 ----A---- C:\WINDOWS\SYSWOW64\FXSRESM.dll
2021-04-20 17:06:54 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\SYSWOW64\FXSCOM.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\WinFax.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXST30.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSRESM.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSCOM.dll
2021-04-20 17:06:53 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-04-20 17:06:47 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-04-20 17:06:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2021-04-20 17:06:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2021-04-20 17:06:21 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2021-04-20 17:06:21 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2021-04-20 17:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2021-04-20 17:06:20 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-04-20 17:06:20 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2021-04-20 17:06:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-04-20 17:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2021-04-20 17:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2021-04-20 17:06:18 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2021-04-20 17:06:15 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2021-04-20 17:06:15 ----A---- C:\WINDOWS\system32\winmde.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-04-20 17:06:14 ----A---- C:\WINDOWS\system32\mfds.dll
2021-04-20 17:06:13 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-04-20 17:06:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2021-04-20 17:06:13 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2021-04-20 17:06:12 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2021-04-20 17:06:11 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2021-04-20 17:06:08 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\opengl32.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2021-04-20 17:06:05 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\mstext40.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\msoert2.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2021-04-20 17:05:55 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\wincredprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\gpresult.exe
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\dxdiagn.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\dpapiprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\dimsroam.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\cngprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\capiprovider.dll
2021-04-20 17:05:51 ----A---- C:\WINDOWS\SYSWOW64\adprovider.dll
2021-04-20 17:05:50 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\icsvcext.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhlisten.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-04-20 17:05:45 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\SIHClient.exe
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-04-20 17:05:44 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\PktMonApi.dll
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\PktMon.exe
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\pcwutl.dll
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\pcwrun.exe
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2021-04-20 17:05:43 ----A---- C:\WINDOWS\system32\drivers\PktMon.sys
2021-04-20 17:05:42 ----A---- C:\WINDOWS\system32\rdpudd.dll
2021-04-20 17:05:42 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2021-04-20 17:05:42 ----A---- C:\WINDOWS\system32\certreq.exe
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\opengl32.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\odbcconf.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\msisip.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\msi.dll
2021-04-20 17:05:41 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2021-04-20 17:05:40 ----A---- C:\WINDOWS\system32\msoert2.dll
2021-04-20 17:05:40 ----A---- C:\WINDOWS\system32\INETRES.dll
2021-04-20 17:05:40 ----A---- C:\WINDOWS\system32\inetcomm.dll
2021-04-20 17:05:37 ----A---- C:\WINDOWS\system32\vbsapi.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\wincredprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\gpresult.exe
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\dpapiprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\dimsroam.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\cngprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\capiprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\system32\adprovider.dll
2021-04-20 17:05:36 ----A---- C:\WINDOWS\HelpPane.exe
2021-04-20 17:05:35 ----A---- C:\WINDOWS\system32\vmdevicehost.dll
2021-04-20 17:05:35 ----A---- C:\WINDOWS\system32\computestorage.dll
2021-04-20 17:05:35 ----A---- C:\WINDOWS\system32\computecore.dll
2021-04-20 17:05:32 ----A---- C:\WINDOWS\system32\securekernel.exe
2021-04-20 17:05:31 ----A---- C:\WINDOWS\system32\NgcIsoCtnr.dll
2021-04-20 17:05:25 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2021-04-20 17:05:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2021-04-20 17:05:24 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2021-04-20 17:05:24 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2021-04-20 17:05:23 ----A---- C:\WINDOWS\SYSWOW64\joinutil.dll
2021-04-20 17:05:23 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2021-04-20 17:05:21 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2021-04-20 17:05:20 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2021-04-20 17:05:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2021-04-20 17:05:19 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2021-04-20 17:05:19 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2021-04-20 17:05:18 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2021-04-20 17:05:18 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\MuiUnattend.exe
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2021-04-20 17:05:17 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2021-04-20 17:05:16 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2021-04-20 17:05:15 ----A---- C:\WINDOWS\SYSWOW64\cryptnet.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2021-04-20 17:05:14 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\CredProvHelper.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\Apphlpdm.dll
2021-04-20 17:05:13 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2021-04-20 17:05:12 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2021-04-20 17:05:12 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2021-04-20 17:05:11 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2021-04-20 17:05:10 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2021-04-20 17:05:10 ----A---- C:\WINDOWS\SYSWOW64\dmxmlhelputils.dll
2021-04-20 17:05:10 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2021-04-20 17:05:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2021-04-20 17:05:09 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2021-04-20 17:05:08 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2021-04-20 17:05:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2021-04-20 17:05:07 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2021-04-20 17:05:06 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2021-04-20 17:05:06 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2021-04-20 17:05:06 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2021-04-20 17:05:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2021-04-20 17:05:05 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2021-04-20 17:05:04 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmRes.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\wsmprovhost.exe
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\wsmplpxy.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmAuto.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WSManMigrationPlugin.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\WsmAgent.dll
2021-04-20 17:05:03 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2021-04-20 17:05:02 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2021-04-20 17:05:02 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\TaskSchdPS.dll
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2021-04-20 17:05:01 ----A---- C:\WINDOWS\SYSWOW64\onex.dll
2021-04-20 17:05:00 ----A---- C:\WINDOWS\SYSWOW64\tbs.dll
2021-04-20 17:04:59 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-04-20 17:04:50 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-04-20 17:04:49 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-04-20 17:04:49 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-04-20 17:04:49 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-04-20 17:04:49 ----A---- C:\WINDOWS\system32\spwizres.dll
2021-04-20 17:04:47 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2021-04-20 17:04:47 ----A---- C:\WINDOWS\system32\twext.dll
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\rascustom.dll
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\drvinst.exe
2021-04-20 17:04:46 ----A---- C:\WINDOWS\system32\comdlg32.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\npmproxy.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\netprofm.dll
2021-04-20 17:04:45 ----A---- C:\WINDOWS\system32\joinutil.dll
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\TaskSchdPS.dll
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\taskhostw.exe
2021-04-20 17:04:43 ----A---- C:\WINDOWS\system32\taskcomp.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\TabSvc.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\schtasks.exe
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\ktmw32.dll
2021-04-20 17:04:42 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2021-04-20 17:04:41 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2021-04-20 17:04:41 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-04-20 17:04:41 ----A---- C:\WINDOWS\system32\gdi32full.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\pdh.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\d3d9.dll
2021-04-20 17:04:40 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-04-20 17:04:39 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\shutdownux.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\policymanager.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\MuiUnattend.exe
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-04-20 17:04:38 ----A---- C:\WINDOWS\system32\credprovs.dll
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\winlogon.exe
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2021-04-20 17:04:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2021-04-20 17:04:28 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2021-04-20 17:04:28 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\lpk.dll
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\fontsub.dll
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2021-04-20 17:04:27 ----A---- C:\WINDOWS\system32\dciman32.dll
2021-04-20 17:04:25 ----A---- C:\WINDOWS\system32\sechost.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\sspisrv.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\sspicli.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\lsass.exe
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2021-04-20 17:04:24 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2021-04-20 17:04:23 ----A---- C:\WINDOWS\system32\services.exe
2021-04-20 17:04:23 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\wermgr.exe
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\weretw.dll
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2021-04-20 17:04:20 ----A---- C:\WINDOWS\system32\wer.dll
2021-04-20 17:04:18 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2021-04-20 17:04:18 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2021-04-20 17:04:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2021-04-20 17:04:16 ----A---- C:\WINDOWS\system32\winhttp.dll
2021-04-20 17:04:16 ----A---- C:\WINDOWS\system32\webio.dll
2021-04-20 17:04:16 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\tzres.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\samsrv.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\samlib.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\profsvc.dll
2021-04-20 17:04:15 ----A---- C:\WINDOWS\system32\offlinesam.dll
2021-04-20 17:04:14 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2021-04-20 17:04:14 ----A---- C:\WINDOWS\system32\dcntel.dll
2021-04-20 17:04:13 ----A---- C:\WINDOWS\system32\rpcss.dll
2021-04-20 17:04:13 ----A---- C:\WINDOWS\system32\cryptnet.dll
2021-04-20 17:04:12 ----A---- C:\WINDOWS\system32\WinTypes.dll
2021-04-20 17:04:12 ----A---- C:\WINDOWS\system32\wincorlib.dll
2021-04-20 17:04:11 ----A---- C:\WINDOWS\system32\combase.dll
2021-04-20 17:04:11 ----A---- C:\WINDOWS\system32\aepic.dll
2021-04-20 17:04:10 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2021-04-20 17:04:09 ----A---- C:\WINDOWS\system32\dnsapi.dll
2021-04-20 17:04:07 ----A---- C:\WINDOWS\system32\dcomp.dll
2021-04-20 17:04:06 ----A---- C:\WINDOWS\system32\winsku.dll
2021-04-20 17:04:06 ----A---- C:\WINDOWS\system32\uDWM.dll
2021-04-20 17:04:05 ----A---- C:\WINDOWS\system32\winbrand.dll
2021-04-20 17:04:05 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2021-04-20 17:04:04 ----A---- C:\WINDOWS\system32\winload.exe
2021-04-20 17:04:04 ----A---- C:\WINDOWS\system32\cxcredprov.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\CredProvHelper.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\cflapi.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidsvc.dll
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2021-04-20 17:04:03 ----A---- C:\WINDOWS\system32\appidapi.dll
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\shimeng.dll
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\sdbinst.exe
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\generaltel.dll
2021-04-20 17:04:02 ----A---- C:\WINDOWS\system32\apphelp.dll
2021-04-20 17:04:01 ----A---- C:\WINDOWS\system32\pcaevts.dll
2021-04-20 17:04:01 ----A---- C:\WINDOWS\system32\devinv.dll
2021-04-20 17:04:00 ----A---- C:\WINDOWS\system32\pcalua.exe
2021-04-20 17:04:00 ----A---- C:\WINDOWS\system32\pcadm.dll
2021-04-20 17:03:59 ----A---- C:\WINDOWS\system32\pcaui.exe
2021-04-20 17:03:59 ----A---- C:\WINDOWS\system32\pcasvc.dll
2021-04-20 17:03:59 ----A---- C:\WINDOWS\system32\Apphlpdm.dll
2021-04-20 17:03:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2021-04-20 17:03:58 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2021-04-20 17:03:58 ----A---- C:\WINDOWS\system32\aitstatic.exe
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\WsmRes.dll
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\wsmplpxy.dll
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2021-04-20 17:03:52 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2021-04-20 17:03:51 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\wups2.dll
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\virtdisk.dll
2021-04-20 17:03:45 ----A---- C:\WINDOWS\system32\convertvhd.exe
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\wups.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2021-04-20 17:03:44 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\UsoClient.exe
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-04-20 17:03:43 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-04-20 17:03:42 ----A---- C:\WINDOWS\system32\usoapi.dll
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\wcimage.dll
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2021-04-20 17:03:41 ----A---- C:\WINDOWS\system32\drivers\condrv.sys
2021-04-20 17:03:40 ----A---- C:\WINDOWS\system32\user32.dll
2021-04-20 17:03:40 ----A---- C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-20 17:03:39 ----A---- C:\WINDOWS\system32\wpnapps.dll
2021-04-20 17:03:39 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2021-04-20 17:03:39 ----A---- C:\WINDOWS\system32\drivers\CEA.sys
2021-04-20 17:03:38 ----A---- C:\WINDOWS\system32\EventAggregation.dll
2021-04-20 17:03:38 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2021-04-20 17:03:37 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2021-04-20 17:03:36 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2021-04-20 17:03:35 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2021-04-20 17:03:35 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-04-20 17:03:35 ----A---- C:\WINDOWS\system32\InputHost.dll
2021-04-20 17:03:33 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.DisplayEnhancementOverride.dll
2021-04-20 17:03:33 ----A---- C:\WINDOWS\system32\directxdatabaseupdater.exe
2021-04-20 17:03:32 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2021-04-20 17:03:32 ----A---- C:\WINDOWS\system32\dxgiadaptercache.exe
2021-04-20 17:03:31 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2021-04-20 17:03:28 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2021-04-20 17:03:28 ----A---- C:\WINDOWS\system32\msxml6r.dll
2021-04-20 17:03:28 ----A---- C:\WINDOWS\system32\msxml6.dll
2021-04-20 17:03:27 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2021-04-20 17:03:27 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2021-04-20 17:03:27 ----A---- C:\WINDOWS\system32\cryptngc.dll
2021-04-20 17:03:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2021-04-20 17:03:26 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2021-04-20 17:03:26 ----A---- C:\WINDOWS\system32\dmxmlhelputils.dll
2021-04-20 17:03:25 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2021-04-20 17:03:22 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2021-04-20 17:03:22 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2021-04-20 17:03:21 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-04-20 17:03:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2021-04-20 17:03:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2021-04-20 17:03:19 ----A---- C:\WINDOWS\system32\authui.dll
2021-04-20 17:03:18 ----A---- C:\WINDOWS\system32\kernel32.dll
2021-04-20 17:03:17 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2021-04-20 17:03:17 ----A---- C:\WINDOWS\system32\lsm.dll
2021-04-20 17:03:16 ----A---- C:\WINDOWS\system32\onex.dll
2021-04-20 17:03:16 ----A---- C:\WINDOWS\system32\LicensingCSP.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\tbs.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2021-04-20 17:03:11 ----A---- C:\WINDOWS\system32\drivers\tbs.sys
2021-04-20 17:03:10 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\AudioSes.dll
2021-04-20 17:03:08 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\AudioEng.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2021-04-20 17:03:07 ----A---- C:\WINDOWS\system32\audiodg.exe
2021-04-20 17:03:06 ----A---- C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2021-04-20 17:03:06 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2021-04-20 17:03:05 ----A---- C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2021-04-20 17:03:03 ----A---- C:\WINDOWS\system32\drivers\Synth3dVsc.sys
2021-04-20 17:03:03 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2021-04-20 17:03:03 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2021-04-20 17:03:01 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\pciide.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\intelide.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\ataport.sys
2021-04-20 17:03:00 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2021-04-20 17:02:58 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
======List of files/folders modified in the last 1 month======
2021-05-15 19:31:30 ----D---- C:\Program Files
2021-05-15 19:26:49 ----D---- C:\WINDOWS\Temp
2021-05-15 19:26:25 ----D---- C:\WINDOWS\INF
2021-05-15 19:26:20 ----D---- C:\WINDOWS\Prefetch
2021-05-15 19:22:04 ----D---- C:\WINDOWS\system32\config
2021-05-15 19:19:53 ----D---- C:\WINDOWS\debug
2021-05-15 19:19:53 ----D---- C:\Windows
2021-05-15 19:18:40 ----D---- C:\WINDOWS\system32\sru
2021-05-15 19:17:58 ----D---- C:\WINDOWS\system32\SleepStudy
2021-05-15 11:40:27 ----D---- C:\WINDOWS\AppReadiness
2021-05-15 11:40:19 ----D---- C:\WINDOWS\System32
2021-05-15 11:40:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-15 11:33:00 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-05-15 11:32:24 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-05-15 11:32:14 ----D---- C:\WINDOWS\system32\Tasks
2021-05-15 11:31:54 ----D---- C:\WINDOWS\system32\drivers
2021-05-15 11:31:29 ----ASH---- C:\DumpStack.log.tmp
2021-05-15 10:47:21 ----D---- C:\WINDOWS\WinSxS
2021-05-15 10:42:11 ----D---- C:\WINDOWS\system32\DriverStore
2021-05-15 10:39:30 ----D---- C:\WINDOWS\system32\catroot2
2021-05-15 10:38:01 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\wbem
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\setup
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\oobe
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\migration
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\Dism
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2021-05-15 10:38:00 ----D---- C:\WINDOWS\SysWOW64
2021-05-15 10:37:54 ----D---- C:\WINDOWS\SystemResources
2021-05-15 10:37:50 ----D---- C:\WINDOWS\system32\WinMetadata
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\wbem
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\setup
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\OpenSSH
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\oobe
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\migration
2021-05-15 10:37:49 ----D---- C:\WINDOWS\system32\lt-LT
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\en-US
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\en-GB
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\drivers\en-GB
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\Dism
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\cs-CZ
2021-05-15 10:37:48 ----D---- C:\WINDOWS\system32\Boot
2021-05-15 10:37:35 ----RD---- C:\WINDOWS\PrintDialog
2021-05-15 10:37:35 ----D---- C:\WINDOWS\Provisioning
2021-05-15 10:37:35 ----D---- C:\WINDOWS\PolicyDefinitions
2021-05-15 10:37:34 ----D---- C:\WINDOWS\en-GB
2021-05-15 10:37:34 ----D---- C:\WINDOWS\DiagTrack
2021-05-15 10:37:34 ----D---- C:\WINDOWS\cs-CZ
2021-05-15 10:37:34 ----D---- C:\WINDOWS\bcastdvr
2021-05-15 10:37:34 ----D---- C:\WINDOWS\apppatch
2021-05-15 10:37:04 ----D---- C:\WINDOWS\system32\drivers\UMDF
2021-05-15 07:59:36 ----RD---- C:\WINDOWS\Microsoft.NET
2021-05-15 07:45:52 ----D---- C:\WINDOWS\CbsTemp
2021-05-15 07:41:42 ----A---- C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-15 07:38:49 ----SHD---- C:\WINDOWS\Installer
2021-05-15 07:38:48 ----SHD---- C:\Config.Msi
2021-05-15 06:40:47 ----SHD---- C:\System Volume Information
2021-05-14 23:13:45 ----HD---- C:\Program Files\WindowsApps
2021-05-14 22:52:34 ----D---- C:\WINDOWS\system32\MRT
2021-05-14 16:31:12 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-05-11 21:27:01 ----D---- C:\WINDOWS\SoftwareDistribution
2021-05-07 02:56:50 ----D---- C:\KMPlayer
2021-05-03 21:45:30 ----A---- C:\WINDOWS\AutoKMS.ini
2021-05-01 09:49:43 ----D---- C:\WINDOWS\system32\Logs
2021-05-01 09:49:42 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-04-23 21:17:32 ----D---- C:\ProgramData\Microsoft Help
2021-04-22 16:54:40 ----D---- C:\Users\jiriw\AppData\Roaming\Wise Disk Cleaner
2021-04-22 16:50:59 ----D---- C:\Program Files (x86)\TeamViewer
2021-04-22 16:50:57 ----RSD---- C:\WINDOWS\Fonts
2021-04-22 16:47:32 ----HD---- C:\ProgramData
2021-04-22 16:35:06 ----D---- C:\ProgramData\HP
2021-04-22 16:34:29 ----HD---- C:\hp
2021-04-22 16:34:29 ----D---- C:\Program Files (x86)\HP
2021-04-22 16:34:28 ----D---- C:\WINDOWS\system32\HP
2021-04-22 16:34:26 ----D---- C:\Users\jiriw\AppData\Roaming\Hewlett-Packard
2021-04-22 16:34:26 ----D---- C:\ProgramData\Hewlett-Packard
2021-04-22 16:08:45 ----D---- C:\WINDOWS\system32\WDI
2021-04-22 16:00:20 ----D---- C:\Program Files (x86)\Wise
2021-04-21 16:59:36 ----RD---- C:\WINDOWS\assembly
2021-04-21 16:52:04 ----D---- C:\WINDOWS\system32\CatRoot
2021-04-21 16:50:29 ----SD---- C:\WINDOWS\system32\DiagSvcs
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\zh-TW
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\zh-CN
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\uk-UA
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\tr-TR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\th-TH
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sv-SE
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sl-SI
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\sk-SK
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ru-RU
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ro-RO
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\pt-PT
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\pt-BR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\pl-PL
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\nl-NL
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\nb-NO
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\lv-LV
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ko-KR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\ja-jp
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\it-IT
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\hu-HU
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\hr-HR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\he-IL
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\fr-FR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\fr-CA
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\fi-FI
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\et-EE
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\es-MX
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\es-ES
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\el-GR
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\drivers\en-US
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\de-DE
2021-04-21 16:50:29 ----D---- C:\WINDOWS\system32\da-DK
2021-04-21 16:50:28 ----D---- C:\WINDOWS\system32\bg-BG
2021-04-21 16:50:28 ----D---- C:\WINDOWS\system32\ar-SA
2021-04-20 17:03:02 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2021-04-20 15:17:53 ----D---- C:\WINDOWS\Logs
2021-04-18 15:54:58 ----D---- C:\WINDOWS\system32\drivers\wd
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdpsp;@oem28.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\System32\drivers\amdpsp.sys [2019-06-27 138064]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 57360]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-09-28 41984]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2021-03-18 91136]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 NNSDNS;NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [2020-12-02 141088]
R1 NNSHTTP;NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [2020-12-02 212768]
R1 NNSHTTPS;NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [2020-12-02 125728]
R1 NNSIDS;NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [2020-12-02 132384]
R1 NNSNAHSL;NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [2020-11-23 111296]
R1 NNSPICC;NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [2020-12-02 152864]
R1 NNSPIHSW;NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [2020-12-02 102688]
R1 NNSPOP3;NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [2020-12-02 135456]
R1 NNSPROT;NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [2020-12-02 347424]
R1 NNSPRV;NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [2020-12-10 353592]
R1 NNSSMTP;NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [2020-12-02 123168]
R1 NNSSTRM;NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [2020-12-02 327968]
R1 PSINKNC;PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [2020-12-02 216864]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2021-05-15 148816]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-05-15 495616]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2020-10-28 53248]
R2 PSINAflt;PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [2020-12-02 195872]
R2 PSINFile;PSINFile; C:\WINDOWS\system32\DRIVERS\PSINFile.sys [2020-12-27 171296]
R2 PSINProc;PSINProc; C:\WINDOWS\system32\DRIVERS\PSINProc.sys [2020-12-27 148768]
R2 PSINProt;PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [2020-12-02 160544]
R2 PSINReg;PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [2020-12-02 130336]
R3 aftap0901;@oem52.inf,%DeviceDescription%;AnchorFree TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\aftap0901.sys [2017-11-16 48624]
R3 AmdAS4;@oem11.inf,%AmdAS4.SVCDESC%;AmdAS4 service; C:\WINDOWS\System32\drivers\AmdAS4.sys [2019-05-10 35848]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atikmdag.sys [2019-05-10 53511472]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atikmpag.sys [2019-05-10 592176]
R3 AtiHDAudioService;@oem29.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2019-05-10 108152]
R3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2021-04-20 284672]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-05-15 113664]
R3 BthHFAud;@microsoft_bluetooth_hfp.inf,%BTHHFAUD_DISPLAY_NAME%;Microsoft Bluetooth Hands-Free Audio driver; C:\WINDOWS\System32\drivers\BthHfAud.sys [2019-12-07 65536]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2020-09-28 106496]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-12-07 133632]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2021-05-15 1560064]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-05-15 110592]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
R3 HPCustomCapDriver;@oem34.inf,%HPCustomCapDriverDesc%;HP Application Driver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [2019-04-18 25024]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2020-04-24 7328856]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2020-09-28 322376]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
R3 rt640x64;@oem23.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2019-03-28 1137928]
R3 RtkBtFilter;@oem15.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [2019-11-30 787232]
R3 RTWlanE;@oem2.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2019-12-04 11722328]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-12-07 138040]
S0 psinelam;psinelam; C:\WINDOWS\system32\DRIVERS\psinelam.sys [2020-07-10 21432]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-12-07 158736]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 415232]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-28 18432]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-05-15 45568]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 66560]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2021-05-15 95056]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2020-10-28 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-09-28 386048]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 MpKsl4cc06120;MpKsl4cc06120; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{38D8FB3F-87FD-43E2-9331-3932A9C701A7}\MpKslDrv.sys [2021-04-20 97528]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-15 207360]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2021-04-20 129872]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 PSKMAD;PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [2019-02-20 72984]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-12-07 990008]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S3 RTSUER;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2019-03-26 442664]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2021-01-25 169672]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0342174.inf_amd64_8d1532c19168217b\B342118\atiesrxx.exe [2019-05-10 506672]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 CDPUserSvc_67973;Uživatelská služba platformy připojených zařízení_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
R2 HPAppHelperCap;@oem50.inf,%ServiceAppHelperDesc%;HP App Helper HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe [2021-03-24 731152]
R2 HPDiagsCap;@oem50.inf,%ServiceDiagsDesc%;HP Diagnostics HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe [2021-03-24 728608]
R2 HPNetworkCap;@oem50.inf,%ServiceNetworkDesc%;HP Network HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe [2021-03-24 728608]
R2 HPSysInfoCap;@oem50.inf,%ServiceSysInfoDesc%;HP System Info HSA Service; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe [2021-03-24 729608]
R2 HpTouchpointAnalyticsService;@oem51.inf,%hpanalyticscomp%;HP Analytics service; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe [2021-03-17 480280]
R2 NanoServiceMain;Panda Cloud Antivirus Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [2020-12-01 98896]
R2 OneSyncSvc_67973;Hostitel synchronizace_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R2 PandaAgent;Panda Devices Agent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [2019-02-19 84176]
R2 pselamsvc;Panda Elam Service Protection; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [2020-07-09 189288]
R2 PSUAService;Panda Product Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [2020-12-02 59440]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2020-04-24 269840]
R2 RtkBtManServ;@oem15.inf,%RtkBtManServ.SvcDesc%;Realtek Bluetooth Device Manager Service; C:\WINDOWS\RtkBtManServ.exe [2019-11-30 738712]
R3 BluetoothUserService_67973;Služba pro podporu uživatelů Bluetooth_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 cbdhsvc_67973;Uživatelská služba schránky_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 PimIndexMaintenanceSvc_67973;Data kontaktů_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-10-29 213392]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-01 156104]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 AarSvc_67973;Agent Activation Runtime_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-12-07 55664]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 BcastDVRUserService_67973;Uživatelská služba pro GameDVR a vysílání her_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 CaptureService_67973;CaptureService_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 ConsentUxUserSvc_67973;ConsentUX_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-18 388888]
S3 CredentialEnrollmentManagerUserSvc_67973;CredentialEnrollmentManagerUserSvc_67973; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-18 388888]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DeviceAssociationBrokerSvc_67973;DeviceAssociationBroker_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicePickerUserSvc_67973;DevicePicker_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevicesFlowUserSvc_67973;Tok zařízení_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-04-20 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-10-29 213392]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\elevation_service.exe [2021-05-08 1498216]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-05-01 156104]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 MessagingService_67973;Služba zasílání zpráv_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.62\elevation_service.exe [2021-05-13 1567616]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-14 161472]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Panda VPN Service;Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [2017-11-20 320848]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-18 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PrintWorkflowUserSvc_67973;PrintWorkflow_67973; C:\WINDOWS\system32\svchost.exe [2020-10-28 57360]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2020-10-28 57360]
-----------------EOF-----------------