Dobrý den mohu poprosit o kontrolu logu z PC? Mám problém správce úloh ukazuje 100% využití disku ale ne pokaždé..
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2022
Ran by DGaap (administrator) on DESKTOP-4J06272 (Micro-Star International Co., Ltd. MS-7D42) (23-11-2022 18:21:59)
Running from C:\Users\DGaap\Desktop
Loaded Profiles: DGaap
Platform: Microsoft Windows 11 Home Version 22H2 22621.819 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avpui.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe [3495880 2022-06-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\Run: [HP DeskJet 4530 series (NET)] => C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-17] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38789456 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\Run: [MicrosoftEdgeAutoLaunch_4146E221EBF7D13E69F596621982BCEF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892168 2022-11-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP D811 Status Monitor: C:\Windows\system32\hpinkstsD811LM.dll [393352 2017-04-05] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2057488 2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {0E2CA3D4-8564-40A4-A570-0B5118F59DCF} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [94208 2022-11-09] (Microsoft Windows -> )
Task: {13B84B47-BEE4-4DF2-B03E-63283C6E9C4A} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.53\Installer\setup.exe --handle-crash="$(ProcessPath)" (No File)
Task: {1489A683-9F2A-45EA-A91E-665852F35D66} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [55280 2022-11-06] (HP Inc. -> HP Inc.)
Task: {149E654D-8DE0-432A-9166-2832EA7C691B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {21D4F86F-928F-4908-98D0-D989D9641E93} - System32\Tasks\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {2391BA3F-7A6A-4E86-A5AB-B9CDDCF01E0C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {296585B5-89B1-4081-8493-D452BCF411F9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3A8CA65A-5625-40FD-A750-403779C47499} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2022-06-14] () [File not signed]
Task: {418351A8-0EF1-4FA5-BA96-6DDA97DB51EC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4835A429-736D-491F-8117-953AF25F3AB4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4FAE9B2D-4C19-4499-B76B-DD01A857E206} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-10-20] (Piriform Software Ltd -> Piriform)
Task: {50CB9CF6-F937-4EDB-9186-A8D264C6D38D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {5D121F6B-EC72-42CC-B158-54D19D8D1F2D} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2022-06-28] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {6576B8EE-46F4-43D5-9F8B-5096C8263ABC} - System32\Tasks\CCleanerSkipUAC - DGaap => C:\Program Files\CCleaner\CCleaner.exe [32472400 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {76D0C711-F4FE-44A6-9406-D25BDD5EDA8A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7C2190D2-2BE1-43D7-8ADD-1626630651FD} - System32\Tasks\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {7FD81627-C62F-45FE-B37C-F13FDD61A837} - System32\Tasks\iTop BLACK FRIDAY Task (One-Time) => C:\Program Files\iTop Screen Recorder\Pub\isrbfr.exe /isr (No File)
Task: {810E46A4-5420-49AE-B4CB-D5063C7F6E08} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {92EAFDDF-6974-4DC5-A8B3-3C3B4D828253} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [55280 2022-11-06] (HP Inc. -> HP Inc.)
Task: {9ACDA022-2EB7-430C-8BB8-1964E423A3E4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AFCD85AA-FFA9-4380-BABE-44F0EDCF3CB9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BA4E1600-E4DC-4D2D-90EA-E0A7381004E6} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {C45A65DF-2D3F-403E-894B-FC69C627F228} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {C74F5EC1-F0E0-4928-9DDE-7AC3D524D6D3} - System32\Tasks\HPCustParticipation HP DeskJet 4530 series => C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPCustPartic.exe [6439072 2021-11-17] (HP Inc. -> HP Inc.)
Task: {CE5B59FD-7AB3-4892-BBF5-39EBC4617E7F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D97B0005-6E98-45EA-A8AE-0E57F12CA45D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
Task: {E5B5D212-E400-4DA4-BE15-8FE6DD364914} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EF68B3B0-A9B2-44F5-935B-D9DD066E8632} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "6d818975-7b8e-4ca8-9fc9-6993fae75fb8" --version "6.05.10110" --silent
Task: {EFD5B574-2A31-4D3C-86A5-B5E20EC16658} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {F0F6DE6A-BF55-475C-A4BF-5F116F67B138} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{52656b66-0acb-4d9f-9683-0a600206cc76}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b528f227-cc9c-4ea0-96d0-dc5036d416af}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\DGaap\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-23]
Edge HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1017664951-3671858022-2397921313-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1017664951-3671858022-2397921313-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1017664951-3671858022-2397921313-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Default [2022-11-23]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Extension: (Záložky na iCloudu) - C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-11-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-22]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-11-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-25]
CHR Profile: C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-11-09]
CHR Profile: C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-11-09]
CHR Extension: (Ochrana Kaspersky) - C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-08-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-29]
CHR Profile: C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\System Profile [2022-11-09]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe [184768 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9811832 2022-10-04] (BattlEye Innovations e.K. -> )
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1185616 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12515768 2022-11-11] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-10-29] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228848 2022-11-06] (HP Inc. -> HP Inc.)
R3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16196920 2022-11-09] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137544 2022-11-09] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 atvi-randgrid_sr; C:\Games\Steam\steamapps\common\Call of Duty HQ\randgrid.sys [2513192 2022-11-20] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2022-11-21] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-06-23] (Intel Corporation -> Intel Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88784 2022-08-10] (Intel Corporation -> Intel Corporation)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [727696 2022-10-01] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1717424 2022-10-01] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [244832 2022-11-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [382304 2022-09-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [360000 2022-09-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [189520 2022-09-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [270672 2022-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-17] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-06-24] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-24] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-10-12] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-11-23 18:21 - 2022-11-23 18:22 - 000030483 _____ C:\Users\DGaap\Desktop\FRST.txt
2022-11-23 18:21 - 2022-11-23 18:22 - 000000000 ____D C:\FRST
2022-11-23 18:20 - 2022-11-23 18:20 - 001222144 _____ C:\Users\DGaap\Downloads\RSITx64.exe
2022-11-23 18:18 - 2022-11-23 18:18 - 002375680 _____ (Farbar) C:\Users\DGaap\Desktop\FRST64.exe
2022-11-21 00:12 - 2022-11-21 00:12 - 000725758 _____ C:\WINDOWS\system32\perfh005.dat
2022-11-21 00:12 - 2022-11-21 00:12 - 000151026 _____ C:\WINDOWS\system32\perfc005.dat
2022-11-21 00:06 - 2022-11-21 00:06 - 000003656 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-11-21 00:06 - 2022-11-21 00:06 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2022-11-21 00:06 - 2022-11-21 00:06 - 000000000 ____D C:\Program Files (x86)\OpenAL
2022-11-21 00:05 - 2022-11-21 00:05 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2022-11-21 00:04 - 2022-11-21 00:04 - 001210224 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2022-11-21 00:01 - 2022-11-21 00:01 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2022-11-20 23:57 - 2022-11-20 23:57 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\Mozilla
2022-11-20 23:53 - 2022-11-20 23:53 - 019497204 _____ C:\WINDOWS\system32\Drivers\Netwfw10.dat
2022-11-20 23:53 - 2022-11-20 23:53 - 005067328 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys
2022-11-20 23:53 - 2022-11-20 23:53 - 001427008 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter10.dll
2022-11-20 23:52 - 2022-11-20 23:52 - 000098696 _____ (Asmedia Technology) C:\WINDOWS\system32\Drivers\asstahci64.sys
2022-11-20 23:51 - 2022-11-20 23:55 - 000000000 ____D C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
2022-11-20 23:51 - 2022-11-20 23:51 - 000003352 _____ C:\WINDOWS\system32\Tasks\iTop BLACK FRIDAY Task (One-Time)
2022-11-20 23:51 - 2022-11-20 23:51 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\iTop Screen Recorder
2022-11-20 23:51 - 2022-11-20 23:51 - 000000000 ____D C:\Users\DGaap\AppData\LocalLow\iTop Screen Recorder
2022-11-20 23:51 - 2022-11-20 23:51 - 000000000 ____D C:\ProgramData\iTop VPN
2022-11-20 23:51 - 2022-11-20 23:51 - 000000000 ____D C:\ProgramData\iTop
2022-11-20 23:50 - 2022-11-23 18:05 - 000000000 ____D C:\ProgramData\ProductData
2022-11-20 23:50 - 2022-11-23 18:05 - 000000000 ____D C:\Program Files (x86)\IObit
2022-11-20 23:50 - 2022-11-21 00:06 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\IObit
2022-11-20 23:50 - 2022-11-21 00:06 - 000000000 ____D C:\Users\DGaap\AppData\LocalLow\IObit
2022-11-20 23:50 - 2022-11-21 00:06 - 000000000 ____D C:\ProgramData\IObit
2022-11-20 23:38 - 2022-11-20 23:38 - 000000112 ___SH C:\bootTel.dat
2022-11-20 23:23 - 2022-11-20 23:23 - 000000000 ____D C:\Users\DGaap\AppData\Local\mbam
2022-11-20 23:22 - 2022-11-20 23:22 - 000000000 ____D C:\Program Files\Malwarebytes
2022-11-20 22:27 - 2022-11-20 22:27 - 000000000 ____D C:\Users\DGaap\Documents\Call of Duty
2022-11-20 22:26 - 2022-11-20 22:27 - 000000000 ____D C:\Users\DGaap\AppData\Local\Activision
2022-11-20 19:14 - 2022-11-20 19:14 - 000000209 _____ C:\Users\DGaap\Desktop\Call of Duty® Modern Warfare® II Warzone™ 2.0.url
2022-11-19 15:36 - 2022-11-19 15:36 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-11-19 15:36 - 2022-11-19 15:36 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2022-11-17 21:00 - 2022-11-17 21:01 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-11-17 20:58 - 2022-11-15 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-11-17 20:58 - 2022-11-15 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-11-17 20:58 - 2022-11-15 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-11-17 20:58 - 2022-11-15 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-11-17 20:58 - 2022-11-15 06:53 - 001487872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-11-17 20:58 - 2022-11-15 06:53 - 001444408 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-11-17 20:58 - 2022-11-15 06:53 - 001444408 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-11-17 20:58 - 2022-11-15 06:53 - 001226736 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-11-17 20:58 - 2022-11-15 06:53 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-11-17 20:58 - 2022-11-15 06:53 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-11-17 20:58 - 2022-11-15 06:49 - 001532424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-11-17 20:58 - 2022-11-15 06:49 - 001191936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-11-17 20:58 - 2022-11-15 06:49 - 000851480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-11-17 20:58 - 2022-11-15 06:49 - 000671792 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-11-17 20:58 - 2022-11-15 06:49 - 000507432 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-11-17 20:58 - 2022-11-15 06:48 - 002162688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-11-17 20:58 - 2022-11-15 06:48 - 001618936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-11-17 20:58 - 2022-11-15 06:48 - 000950280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-11-17 20:58 - 2022-11-15 06:48 - 000738312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-11-17 20:58 - 2022-11-15 06:48 - 000734720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-11-17 20:58 - 2022-11-15 06:47 - 012453896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-11-17 20:58 - 2022-11-15 06:47 - 010220552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-11-17 20:58 - 2022-11-15 06:47 - 005891080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-11-17 20:58 - 2022-11-15 06:47 - 005857280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2022-11-17 20:58 - 2022-11-15 06:47 - 005817336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-11-17 20:58 - 2022-11-15 06:47 - 003334664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-11-17 20:58 - 2022-11-15 06:47 - 000458240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-11-17 20:58 - 2022-11-15 06:46 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-11-17 20:58 - 2022-11-15 06:45 - 006511856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-11-17 20:58 - 2022-11-13 13:23 - 000100633 _____ C:\WINDOWS\system32\nvinfo.pb
2022-11-15 11:53 - 2022-11-15 11:53 - 000037396 _____ C:\Users\DGaap\Downloads\Pojistka.pdf
2022-11-15 11:51 - 2022-11-15 11:51 - 000016217 _____ C:\Users\DGaap\Downloads\%C5%BD%C3%A1dost (1).pdf
2022-11-15 09:03 - 2022-11-15 09:03 - 000193932 _____ C:\Users\DGaap\Downloads\priloha_1104543267_0_Vyzva_f3-f4.pdf
2022-11-14 13:21 - 2022-11-14 13:21 - 000193932 _____ C:\Users\DGaap\Downloads\priloha_1104543267_0_Výzva f3-f4.pdf
2022-11-11 08:45 - 2022-07-14 00:32 - 000060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2022-11-09 15:00 - 2022-11-09 15:00 - 000000209 _____ C:\Users\DGaap\Desktop\Sniper Ghost Warrior Contracts 2.url
2022-11-09 11:42 - 2022-11-09 11:42 - 000094208 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-11-09 11:42 - 2022-11-09 11:42 - 000016519 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-11-09 11:40 - 2022-11-09 11:40 - 000062832 _____ C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe
2022-11-09 11:26 - 2022-11-09 11:26 - 000000000 ___HD C:\$WinREAgent
2022-11-04 20:45 - 2022-11-04 20:45 - 000259085 _____ C:\Users\DGaap\Downloads\practicemode_1.3.4.zip
2022-11-01 09:45 - 2022-11-01 09:45 - 000015218 _____ C:\Users\DGaap\Downloads\%C5%BD%C3%A1dost.pdf
2022-10-29 17:12 - 2022-10-29 17:12 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\EasyAntiCheat
2022-10-29 17:10 - 2022-10-29 17:12 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2022-10-29 10:06 - 2022-10-29 10:06 - 000000208 _____ C:\Users\DGaap\Desktop\Hunt Showdown.url
2022-10-27 20:49 - 2022-10-27 20:49 - 004745894 _____ C:\Users\DGaap\Downloads\TDC-Manual.pdf
2022-10-25 17:29 - 2022-10-25 17:29 - 000000000 ____D C:\WINDOWS\PCHEALTH
2022-10-25 17:29 - 2022-10-25 17:29 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2022-10-25 09:54 - 2022-10-25 17:34 - 000000000 ____D C:\Battlestate Games
2022-10-25 09:54 - 2022-10-25 09:54 - 000000877 _____ C:\Users\Public\Desktop\Battlestate Games Launcher.lnk
2022-10-25 09:54 - 2022-10-25 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-11-23 18:17 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-23 18:06 - 2022-09-30 05:16 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-11-23 18:06 - 2022-09-30 05:16 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-11-23 18:06 - 2022-07-24 21:08 - 000000000 ____D C:\Program Files\CCleaner
2022-11-23 18:03 - 2022-06-07 01:55 - 000000000 ____D C:\ProgramData\NVIDIA
2022-11-23 18:03 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-23 18:00 - 2022-06-24 21:50 - 000000000 ____D C:\Users\DGaap\AppData\Local\D3DSCache
2022-11-23 18:00 - 2022-04-06 19:07 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-23 17:57 - 2022-06-24 21:53 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-23 17:57 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-21 19:54 - 2022-09-28 12:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-21 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-11-21 14:33 - 2022-09-28 12:27 - 000003300 _____ C:\WINDOWS\system32\Tasks\klcp_update
2022-11-21 14:33 - 2022-06-24 21:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2022-11-21 14:33 - 2022-06-24 21:54 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2022-11-21 08:16 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2022-11-21 08:03 - 2022-06-26 05:56 - 000000000 ____D C:\Program Files\TeamViewer
2022-11-21 08:02 - 2022-09-28 12:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-21 08:02 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2022-11-21 08:02 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-11-21 08:02 - 2022-04-06 19:07 - 000012288 ___SH C:\DumpStack.log.tmp
2022-11-21 00:12 - 2022-09-28 12:29 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-21 00:06 - 2022-04-06 21:11 - 000000000 ____D C:\ProgramData\Package Cache
2022-11-20 23:44 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-11-20 23:10 - 2022-09-28 12:24 - 000495640 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-11-20 19:20 - 2022-06-28 22:20 - 000000000 ____D C:\Program Files (x86)\Thrustmaster
2022-11-20 19:20 - 2022-06-07 01:57 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-11-19 15:36 - 2022-08-12 20:29 - 002815440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-11-19 15:36 - 2022-08-12 20:29 - 000460240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-11-19 15:36 - 2022-08-12 20:29 - 000243192 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-11-19 15:36 - 2022-08-12 20:29 - 000198136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-11-19 15:36 - 2022-08-12 20:29 - 000165368 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-11-19 15:36 - 2022-08-12 20:29 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-11-19 15:13 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-11-19 08:58 - 2022-09-28 12:27 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-11-19 08:56 - 2022-06-24 21:50 - 000000000 ____D C:\Users\DGaap\AppData\Local\NVIDIA
2022-11-17 15:48 - 2022-09-11 08:07 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\com.adobe.dunamis
2022-11-17 14:19 - 2022-09-28 12:27 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-11-17 14:18 - 2022-10-11 18:27 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-11-17 14:18 - 2022-10-11 18:27 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-11-15 08:59 - 2022-09-28 12:24 - 000000000 ____D C:\Users\DGaap
2022-11-15 06:45 - 2022-09-28 11:18 - 007643384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-11-14 23:23 - 2022-09-28 12:27 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-11-14 23:23 - 2022-09-28 12:27 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-11-14 21:24 - 2022-09-28 12:27 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1017664951-3671858022-2397921313-1001
2022-11-14 21:24 - 2022-09-28 12:27 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1017664951-3671858022-2397921313-1001
2022-11-14 21:24 - 2022-06-24 21:52 - 000002381 _____ C:\Users\DGaap\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-12 17:36 - 2022-06-26 05:56 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\TeamViewer
2022-11-12 11:33 - 2022-06-24 21:54 - 000000000 ____D C:\Users\DGaap\AppData\Local\CrashDumps
2022-11-11 08:50 - 2022-04-06 21:12 - 000000000 ____D C:\Program Files\Microsoft Office
2022-11-11 08:45 - 2022-09-28 12:27 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-09-28 12:27 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 08:45 - 2022-06-24 21:54 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-11 08:45 - 2022-06-07 01:56 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-11-11 08:45 - 2022-06-07 01:55 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-11-11 08:45 - 2022-06-07 01:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-11-11 04:21 - 2022-08-12 20:29 - 000316880 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInputRedist.dll
2022-11-11 02:35 - 2022-08-12 20:29 - 000199672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInputRedist.dll
2022-11-10 20:39 - 2022-10-18 17:31 - 000000000 ____D C:\Users\DGaap\AppData\Local\WeMod
2022-11-10 20:39 - 2022-07-24 20:07 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\WeMod
2022-11-10 20:39 - 2022-07-24 20:07 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2022-11-10 20:39 - 2022-07-10 21:24 - 000000000 ____D C:\Users\DGaap\AppData\Local\SquirrelTemp
2022-11-09 14:47 - 2022-09-28 11:17 - 000000000 ___DC C:\WINDOWS\Panther
2022-11-09 14:47 - 2022-07-17 20:16 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\MPC-HC
2022-11-09 12:02 - 2022-06-24 21:50 - 000000000 ____D C:\Users\DGaap\AppData\Local\Packages
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-11-09 11:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-11-09 11:47 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-11-09 11:41 - 2022-09-28 12:24 - 003212288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-11-09 10:59 - 2022-06-24 22:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-11-09 10:55 - 2022-06-24 22:16 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-11-07 08:33 - 2022-09-28 12:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-11-07 08:33 - 2022-06-26 03:55 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-11-01 11:50 - 2022-06-25 21:45 - 000000000 ____D C:\Games
2022-10-26 10:12 - 2022-07-10 21:24 - 000000000 ____D C:\Users\DGaap\AppData\Local\Discord
2022-10-25 09:54 - 2022-06-26 00:43 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\Battlestate Games
2022-10-25 09:54 - 2022-06-26 00:43 - 000000000 ____D C:\Users\DGaap\AppData\Local\Battlestate Games
2022-10-24 09:43 - 2022-07-17 19:40 - 000000000 ____D C:\Users\DGaap\AppData\Roaming\vlc
==================== Files in the root of some directories ========
2022-07-16 09:31 - 2022-07-16 09:31 - 000002266 _____ () C:\Users\DGaap\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2022
Ran by DGaap (23-11-2022 18:23:14)
Running from C:\Users\DGaap\Desktop
Microsoft Windows 11 Home Version 22H2 22621.819 (X64) (2022-09-28 11:27:51)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1017664951-3671858022-2397921313-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1017664951-3671858022-2397921313-503 - Limited - Disabled)
DGaap (S-1-5-21-1017664951-3671858022-2397921313-1001 - Administrator - Enabled) => C:\Users\DGaap
Guest (S-1-5-21-1017664951-3671858022-2397921313-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1017664951-3671858022-2397921313-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.003.20282 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Battlestate Games Launcher 12.12.2.1944 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.12.2.1944 - Battlestate Games)
CCleaner (HKLM\...\CCleaner) (Version: 6.05 - Piriform)
Documentation Manager (HKLM\...\{17C797EF-1D27-41CF-8A52-024F33A8A8FE}) (Version: 22.80.1.1 - Intel Corporation) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{439E5170-CFC8-4944-8119-746ECF219399}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.12.32.19904 - Battlestate Games)
GIMP 2.10.32-1 (HKLM\...\GIMP-2_is1) (Version: 2.10.32 - The GIMP Team)
Google Chrome (HKLM\...\{C73007F9-C8A5-3240-B266-F49CD63F52F5}) (Version: 107.0.5304.107 - Google LLC)
HP Dropbox Plugin (HKLM-x32\...\{D58993B3-BA5F-4181-8D1C-05D0302398EB}) (Version: 40.13.54.81239 - HP)
HP Google Drive Plugin (HKLM-x32\...\{C777EAED-CEE8-4AF4-A2DE-2A0FC510481A}) (Version: 40.13.54.81239 - HP)
Intel(R) Chipset Device Software (HKLM\...\{89D00C61-DC40-4846-B938-E2E6158EDAAA}) (Version: 10.1.18836.8283 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{9b79ab4c-1596-44ee-84e2-a2001f7af089}) (Version: 10.1.18836.8283 - Intel(R) Corporation)
Intel(R) LMS (HKLM\...\{DFFC9992-3A41-4155-A834-9831C6E58D98}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2130.16.0.2387 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{FA6E1882-F6C1-47E1-A6CB-FC1F5460E311}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{38F0D70E-8F07-4BF9-A5E0-6946C3D614D8}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{8EC4CB19-850D-4BD4-B914-F63DF7DAD67D}) (Version: 30.100.2131.26 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2131.26 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00002070-0220-1029-84C8-B8D95FA3C8C3}) (Version: 22.70.2.1 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{741cd892-0384-4ac9-929f-e3a263d9dc07}) (Version: 22.80.1.1 - Intel Corporation) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky)
K-Lite Codec Pack 17.3.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 17.3.0 - KLCP)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.15726.20202 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.56 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.52 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{6BBE9278-659F-FA16-E4B8-C2D60DE0DCC7}) (Version: 10.1.22621.1863 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\OneDriveSetup.exe) (Version: 22.225.1026.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 101.0.1 (x64 cs)) (Version: 101.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 101.0.1 - Mozilla)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 526.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 526.98 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
PDF-XChange Editor (HKLM\...\{D9768EA7-98DE-4260-A55E-28DD9C4AFD04}) (Version: 9.0.354.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{ce6c8945-b029-4ebe-b3d4-96f6f0081e71}) (Version: 9.0.354.0 - Tracker Software Products (Canada) Ltd.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9279.1 - Realtek Semiconductor Corp.)
REDlauncher (HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Studie vylepšování produktu HP DeskJet 4530 series (HKLM\...\{79C4417A-70A3-44B3-98BE-CC38A8AEDCDE}) (Version: 40.15.1231.21321 - HP Inc.)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.35.9 - TeamViewer)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 38.2 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\Wargaming.net Game Center) (Version: 22.4.1.367 - Wargaming.net)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
XVM verze 9.2.1 (HKLM-x32\...\{2865cd27-6b8b-4413-8272-cd968f316050}_is1) (Version: 9.2.1 - XVM Team)
Základní software zařízení HP DeskJet 4530 series (HKLM\...\{B46461A1-5DE6-484A-A1F2-79DA628FC4E2}) (Version: 40.15.1231.21321 - HP Inc.)
Packages:
=========
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.52074.0_x64__8wekyb3d8bbwe [2022-08-15] (Microsoft Corporation)
Clipchamp -> C:\Program Files\WindowsApps\Clipchamp.Clipchamp_2.5.5.0_neutral__yxz26nhyzhsrt [2022-11-17] (Microsoft Corp.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6 [2022-11-06] (HP Inc.)
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.37.0_x64__8wekyb3d8bbwe [2022-11-09] (Microsoft Corp.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-10-05] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_52.11010.438.0_x64__8wekyb3d8bbwe [2022-10-20] (Microsoft Corporation)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.19.4101.0_x64__8wekyb3d8bbwe [2022-11-04] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.1.28.0_x64__8wekyb3d8bbwe [2022-08-25] (Microsoft Studios)
ms-resource:APP_WINDOW_NAME -> C:\Program Files\WindowsApps\MicrosoftCorporationII.QuickAssist_2.0.9.0_x64__8wekyb3d8bbwe [2022-10-01] (Microsoft Corp.)
ms-resource:AppStoreName -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_2.1.32791.0_x64__8wekyb3d8bbwe [2022-11-02] (Microsoft Corporation)
ms-resource:AppxManifest_DisplayName -> C:\Windows\SystemApps\Microsoft.Windows.PrintQueueActionCenter_cw5n1h2txyewy [2022-09-28] (Microsoft Corporation)
ms-resource:ProductPkgDisplayName -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.Core_cw5n1h2txyewy [2022-11-09] (ms-resource:ProductPublisherDisplayName)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-11-17] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.36.273.0_x64__dt26b99r8h8gj [2022-10-29] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-06-26] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0 [2022-11-14] (Spotify AB) [Startup Task]
WinRAR -> C:\Program Files\WinRAR [2022-06-24] (0)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-06-28] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2021-04-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-06-28] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-06-28] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\nvshext.dll [2022-11-15] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-06-28] (AO Kaspersky Lab -> AO Kaspersky Lab)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2022-04-06 21:16 - 2022-04-06 21:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2022-04-06 21:16 - 2022-04-06 21:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => ""="Memory"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TextInputManagementService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\Software\Microsoft\Internet Explorer\Main,Start Page = www.hal3000.cz
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.hal3000.cz
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2021-06-05 13:08 - 2021-06-05 13:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\DGaap\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\788679.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\StartupApproved\Run: => "HP DeskJet 4530 series (NET)"
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1017664951-3671858022-2397921313-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_4146E221EBF7D13E69F596621982BCEF"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{D1D09BE1-C30B-4A34-B200-8CAD1B7BA3C6}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{29357EC0-7BBD-46FD-A445-1A6353E1A243}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{48085D9B-EB1C-4100-80FA-852E6413B046}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{076EBD63-AB4D-401C-AED0-C8DE619E1683}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{0A39B4F4-AD58-4C0E-912F-A69405BB801C}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> HP Inc.)
FirewallRules: [{317D5BDE-27FE-4802-8A5D-5F777DA87C44}] => (Allow) LPort=5357
FirewallRules: [{94842C42-2E1A-4656-B2C9-C5A54B4F0A25}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\DeviceSetup.exe (HP Inc. -> HP Inc.)
FirewallRules: [{D69A1C5D-B0E2-40F3-9E15-25B0CA7E1D8A}] => (Allow) C:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{5E7AC38C-BF02-433A-9822-663C0A902CFF}] => (Allow) C:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{D61CA3AA-80B7-47D8-92B6-ED398B173728}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1E4B96B9-20A8-411C-A051-3A0D03BD741D}] => (Allow) C:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F0114640-9C89-4561-BA51-781C0BFA7B1F}] => (Allow) C:\Games\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{87512B09-B6F2-4161-B6BE-9FC34E2FA846}] => (Allow) C:\Games\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{26632BCE-3246-4AA8-BA56-61CC518C0F23}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C7C6D065-3D40-488A-8C71-AFE58D92175C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DB99A5A5-C125-4E14-B80A-A6914BA81781}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BA5AD07E-1D6F-4827-96E5-9A9751C168B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F381038B-FF4A-4DAE-8F7D-6A47322DC356}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{51A5914E-B524-40E0-85AB-26A7426F8AE2}] => (Allow) C:\Games\Steam\steamapps\common\UBOAT\UBOAT Launcher.exe (Deep Water Studio) [File not signed]
FirewallRules: [{4CF907B8-05BD-40CC-9045-64006425B4F6}] => (Allow) C:\Games\Steam\steamapps\common\UBOAT\UBOAT Launcher.exe (Deep Water Studio) [File not signed]
FirewallRules: [TCP Query User{3B3D0FAA-7EF0-43BA-84BE-C506AA075DEE}C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [UDP Query User{CFC3972E-0119-44C8-9652-5E1884DE1CB6}C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{6A360435-FDC7-4267-B343-9B831B3707CD}] => (Allow) C:\Games\Steam\steamapps\common\Tetris Effect Connected\TetrisEffect.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{269981E7-CDD1-430F-886C-0DD7781CE826}] => (Allow) C:\Games\Steam\steamapps\common\Tetris Effect Connected\TetrisEffect.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{62D8F963-B1AA-497F-B714-EB390A991183}C:\games\steam\steamapps\common\tetris effect connected\tetriseffect\binaries\win64\tetriseffect-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\tetris effect connected\tetriseffect\binaries\win64\tetriseffect-win64-shipping.exe (Enhance) [File not signed]
FirewallRules: [UDP Query User{BDE6DEE2-02FC-47ED-A3C9-0F2B6254466F}C:\games\steam\steamapps\common\tetris effect connected\tetriseffect\binaries\win64\tetriseffect-win64-shipping.exe] => (Allow) C:\games\steam\steamapps\common\tetris effect connected\tetriseffect\binaries\win64\tetriseffect-win64-shipping.exe (Enhance) [File not signed]
FirewallRules: [{32EFA6DF-BDD7-4867-BE7F-3BBB145A5A42}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{5A15533C-D543-4262-9FD8-CCDD05E1D8E4}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{79C68640-9296-4155-A494-782B633C9144}] => (Allow) C:\Games\Steam\steamapps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{D12BB020-AD5F-4792-8E99-D0F35A44B089}] => (Allow) C:\Games\Steam\steamapps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{95228C4D-BB18-4C7A-ADBB-E6FEA2308D11}] => (Allow) C:\Games\Steam\steamapps\common\Sniper Ghost Warrior Contracts 2\win_x64\SGWContracts2.exe (CI Games S.A.) [File not signed]
FirewallRules: [{658F297F-3983-4416-B95D-C2034F851500}] => (Allow) C:\Games\Steam\steamapps\common\Sniper Ghost Warrior Contracts 2\win_x64\SGWContracts2.exe (CI Games S.A.) [File not signed]
FirewallRules: [{6D19C622-B335-457F-AEEB-19282906E635}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{50D39584-25ED-48BD-9DB5-B097516ECEA8}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{48FA1C84-A1EB-4670-AF22-B692ABB0F4F2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{38B506F8-11FE-44E8-82AA-BD425E9FD45F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{541D6779-B111-4DD1-BE4A-6C3270F6ACD2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{5B65F8CC-0B9E-40EA-B608-6FF2BF9B155A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CD0B3114-8D4E-44E1-AF74-8E8A8BC5644A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{694C9904-9F28-40FC-9751-4CC80DA17F0B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7F0118AC-C033-41E5-8768-8544A213E3D1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{56BD02FE-386A-4546-9BEB-3175EE0F44E0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{41724426-EF94-4E4D-B9AB-8696C8B3EEDC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CC1B340E-E4D5-4056-A6FD-04A9F29DE94A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DC88850D-29F4-48E2-8D2F-C2AA8707FAEC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{13E6CFB4-EA1B-40AC-81A1-DCC264222CBB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4C8804C3-19EA-4258-A683-53F0FAF8FC76}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8819E5D7-BEA5-41ED-88BC-6BFC47BAA92D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1DDC5520-7475-4E33-B9F7-AC0EF239C45E}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B0EF8D21-BED7-4DDF-AB2E-DAF10D518D2E}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{47961EA2-DC6B-4391-87A1-08450D17718B}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{525240A0-0EC2-46D0-89E9-BA6CFF431ED4}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F2EF8F56-8A7E-4835-BE2F-745FCB53B117}] => (Allow) C:\Games\Steam\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{5A4C45DC-0848-4DC3-B390-650E50492072}] => (Allow) C:\Games\Steam\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision)
==================== Restore Points =========================
07-11-2022 16:11:26 Naplánovaný kontrolní bod
09-11-2022 10:53:13 Instalační služba modulů systému Windows
09-11-2022 11:28:27 Instalační služba modulů systému Windows
17-11-2022 09:13:44 Naplánovaný kontrolní bod
20-11-2022 23:51:48 Driver Booster : Intel(R) Wireless Bluetooth(R)
21-11-2022 00:02:23 Driver Booster : Intel(R) Wireless Bluetooth(R)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (11/23/2022 06:07:48 PM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x305; CorrelationId: {7B0B9C59-0DA0-40EB-9597-3D0205434CB2}
Error: (11/20/2022 10:49:33 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 10.0.22621.608 programu SystemSettings.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (11/20/2022 07:16:47 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 10.0.22621.755 programu explorer.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (11/19/2022 03:36:37 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: gameinputsvc.exe, verze: 0.2210.22621.1846, časové razítko: 0x79ac3219
Název chybujícího modulu: ntdll.dll, verze: 10.0.22621.755, časové razítko: 0x8a328c67
Kód výjimky: 0xc0000374
Posun chyby: 0x000000000010c249
ID chybujícího procesu: 0x0x1b68
Čas spuštění chybující aplikace: 0x0x1d8fbf5deed7b06
Cesta k chybující aplikaci: C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 4f5035c4-dd2b-4301-8a7f-df41a746d197
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (11/12/2022 11:33:15 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-4J06272)
Description: Název chybující aplikace: SGWContracts2.exe, verze: 1.0.0.39421, časové razítko: 0x6136f27b
Název chybujícího modulu: SGWContracts2.exe, verze: 1.0.0.39421, časové razítko: 0x6136f27b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000010c7f19
ID chybujícího procesu: 0x0x28cc
Čas spuštění chybující aplikace: 0x0x1d8f6783cfac8a2
Cesta k chybující aplikaci: C:\Games\Steam\steamapps\common\Sniper Ghost Warrior Contracts 2\win_x64\SGWContracts2.exe
Cesta k chybujícímu modulu: C:\Games\Steam\steamapps\common\Sniper Ghost Warrior Contracts 2\win_x64\SGWContracts2.exe
ID zprávy: 609296c8-c6b9-45c4-b858-e1887d708da2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (11/09/2022 11:54:38 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (11/09/2022 11:28:29 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x8007001f, Zařízení připojené k systému nefunguje.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (11/08/2022 10:25:41 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: gameinputsvc.exe, verze: 0.2210.22621.1846, časové razítko: 0x79ac3219
Název chybujícího modulu: ntdll.dll, verze: 10.0.22621.608, časové razítko: 0xf2e8a5ab
Kód výjimky: 0xc0000374
Posun chyby: 0x000000000010c1c9
ID chybujícího procesu: 0x0x3fe8
Čas spuštění chybující aplikace: 0x0x1d8f3b89dbebb0e
Cesta k chybující aplikaci: C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: d0fb5db2-b400-44aa-bee6-8b328d8c0f6b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (11/22/2022 02:25:02 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (11/20/2022 11:28:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby UsoSvc s argumenty Není k dispozici za účelem spuštění serveru:
{B91D5831-B1BD-4608-8198-D72E155020F7}
Error: (11/20/2022 11:28:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby UsoSvc s argumenty Není k dispozici za účelem spuštění serveru:
{B91D5831-B1BD-4608-8198-D72E155020F7}
Error: (11/20/2022 07:51:47 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-4J06272)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.
Error: (11/19/2022 05:32:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (11/19/2022 05:32:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (11/19/2022 03:36:28 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-4J06272)
Description: Služba DCOM zjistila chybu 87 při pokusu o spuštění služby GamingServices s argumenty Není k dispozici za účelem spuštění serveru:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
Error: (11/19/2022 03:36:25 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-4J06272)
Description: Služba DCOM zjistila chybu 87 při pokusu o spuštění služby GamingServices s argumenty Není k dispozici za účelem spuštění serveru:
{3E8C9ABE-9226-4609-BF5B-60288A391DEE}
CodeIntegrity:
===============
Date: 2022-11-23 18:00:10
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. 1.10 12/13/2021
Motherboard: Micro-Star International Co., Ltd. MAG B660M MORTAR WIFI DDR4 (MS-7D42)
Processor: 12th Gen Intel(R) Core(TM) i5-12400F
Percentage of memory in use: 32%
Total physical RAM: 16243.87 MB
Available physical RAM: 11004.42 MB
Total Virtual: 19169.87 MB
Available Virtual: 12472.54 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:952.16 GB) (Free:613.16 GB) (Model: XPG GAMMIX S50 Lite) NTFS
\\?\Volume{b6d51626-4775-4ed8-8998-6792aa050691}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS
\\?\Volume{0970b452-49e5-436e-9fe6-3119aaad6db4}\ (SYSTEM) (Fixed) (Total:0.97 GB) (Free:0.94 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 7D28697A)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
preventivní kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: preventivní kontrola logu
přikládám log z rsit
Logfile of random's system information tool 1.10 (written by random/random)
Run by DGaap at 2022-11-23 18:28:33
Microsoft Windows 11 Home
System drive C: has 628 GB (64%) free of 975 GB
Total RAM: 16244 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:28:36, on 23.11.2022
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.22621.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\DGaap.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.hal3000.cz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.hal3000.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [HP DeskJet 4530 series (NET)] "C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH6954D01F0661:NW" -scfn "HP DeskJet 4530 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_4146E221EBF7D13E69F596621982BCEF] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlansp_c.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~2\Office12\GRA32A~1.DLL
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 21.3 (AVP21.3) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: CCleaner Performance Optimizer Service (CCleanerPerformanceOptimizerService) - Piriform Software Ltd - C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_4469e8e - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - Epic Games, Inc - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\107.0.5304.107\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Print Scan Doctor Service (HPPrintScanDoctorService) - HP Inc. - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
O23 - Service: @oem4.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Kaspersky Volume Shadow Copy Service Bridge 21.3 (klvssbridge64_21.3) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe
O23 - Service: Služba Kaspersky VPN Secure Connection 5.3 (KSDE5.3) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Realtek Semiconductor - C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\Sgrm\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\Sgrm\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTrap) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\steamservice.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Management Engine WMI Provider Registration (WMIRegistrationService) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12582 bytes
======Listing Processes======
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f164d6a2-dc91-4cbb-bc10-8c24505a3346 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-d6fde53b-b6ab-41eb-b6d7-c7623c3d2f96 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0f7a2065-6714-4b7b-a077-0443d4a00c1f -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0a8f8e74-9632-4956-af6f-9720d40c27c6 -LifetimeId:d58255b5-05f6-40cc-b3c3-8b76af70c5e7 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k UserProfileService -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TextInputManagementService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\System32\svchost.exe -k netprofm -p -s netprofm
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\WLANExt.exe 1722941230416
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe"
"C:\Program Files\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
"C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServices.exe"
"C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe"
dashost.exe {46b97ebf-4165-49f4-afbe945788e4df2b}
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
dashost.exe {1f6f5dc8-999f-40bc-a1f88bd5afb7dfda}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k WebThreatDefense -p -s webthreatdefsvc
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s DeviceInstall
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\svchost.exe -k osprivacy -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\system32\svchost.exe -k LocalService -s W32Time
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe" Global\GameInputSession_4
"C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s webthreatdefusersvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe" -ServerName:CortanaUI.AppXstmwaab17q5s3y22tp6apqz7a45vwv65.mca
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe" -ServerName:Microsoft.Windows.DashboardServer
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UdkSvcGroup -s UdkUserSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"ctfmon.exe"
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe" -background
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s NPSMSvc
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p -s AarSvc
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=2052,3992814611141916588,17383031186912036460,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACACwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=9575214441782566746 --mojo-platform-channel-handle=2160 /prefetch:2
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=2052,3992814611141916588,17383031186912036460,131072 --disable-features=VizDisplayCompositor --service-pipe-token=16795855848016419091 --lang=en-US --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16795855848016419091 --renderer-client-id=3 --mojo-platform-channel-handle=2824 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --disk-cache-size=52428800 --edge-webview-is-background --enable-features=msWebView2TreatAppSuspendAsDeviceSuspend,UseNativeThreadPool,UseBackgroundNativeThreadPool --lang=cs-CZ --mojo-named-platform-channel-pipe=6544.5192.14257966467326380219
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=107.0.5304.110 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=107.0.1418.52 --initial-client-data=0x11c,0x120,0x124,0xf8,0x130,0x7ffcb821b208,0x7ffcb821b218,0x7ffcb821b228
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=gpu-process --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1760 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:2
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=1976 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:3
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=utility --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2348 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:8
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --display-capture-permissions-policy-allowed --js-flags=--ms-user-locale= --first-renderer-process --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc" --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --time-ticks-at-unix-epoch=-1669014153533152 --launch-time-ticks=208641911724 --mojo-platform-channel-handle=3172 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:1
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k InvSvcGroup -p -s InventorySvc
"C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe"
"C:\Program Files\Google\Chrome\Application\chrome.exe"
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\DGaap\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=107.0.5304.107 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffcc7569e68,0x7ffcc7569e78,0x7ffcc7569e88
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1712 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:2
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --mojo-platform-channel-handle=2000 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2052 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=209121848002 --mojo-platform-channel-handle=4032 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=5116 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\WINDOWS\system32\BackgroundTaskHost.exe" -ServerName:BackgroundTaskHost.WebAccountProvider
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Microsoft Office\Root\Office16\SDXHelper.exe" -Embedding
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=209595554339 --mojo-platform-channel-handle=4888 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe" -ComServer:Background -Embedding
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=209738747005 --mojo-platform-channel-handle=7608 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=cs --service-sandbox-type=service --mojo-platform-channel-handle=7992 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe" -ServerName:App.AppXk7vvv12h4qrkhkbvf6j86ja45mzj5km9.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k swprv
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=210181065892 --mojo-platform-channel-handle=7672 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x000000000000061C
"C:\Users\DGaap\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "6d818975-7b8e-4ca8-9fc9-6993fae75fb8" --version "6.05.10110" --silent
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\BHO\ie_to_edge_bho_64.dll [2022-11-21 590792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\BHO\ie_to_edge_bho.dll [2022-11-21 457160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-03 167808]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2022-10-12 266240]
"RtkAudUService"=C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe [2022-06-09 3495880]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP DeskJet 4530 series (NET)"=C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [2021-11-17 3770528]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2022-10-20 38789456]
"MicrosoftEdgeAutoLaunch_4146E221EBF7D13E69F596621982BCEF"=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [2022-11-17 3892168]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{53966CB1-4D46-4166-BF23-C522403CD495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HidSpiCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TextInputManagementService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{53966CB1-4D46-4166-BF23-C522403CD495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave4"=wdmaud.drv
======File associations======
.inf - open -
.inf - install -
.ini - open -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open -
======List of files/folders created in the last 1 month======
2022-11-23 18:28:33 ----D---- C:\rsit
2022-11-23 18:28:33 ----D---- C:\Program Files\trend micro
2022-11-23 18:21:15 ----D---- C:\FRST
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfh009.dat
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfh005.dat
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfc009.dat
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfc005.dat
2022-11-21 00:06:01 ----D---- C:\Program Files (x86)\OpenAL
2022-11-21 00:05:21 ----D---- C:\Program Files (x86)\Microsoft XNA
2022-11-21 00:04:29 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2022-11-21 00:01:53 ----D---- C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2022-11-20 23:57:26 ----D---- C:\Users\DGaap\AppData\Roaming\Mozilla
2022-11-20 23:53:19 ----A---- C:\WINDOWS\system32\drivers\Netwtw10.sys
2022-11-20 23:53:18 ----A---- C:\WINDOWS\system32\IntelIHVRouter10.dll
2022-11-20 23:53:18 ----A---- C:\WINDOWS\system32\drivers\Netwfw10.dat
2022-11-20 23:52:51 ----A---- C:\WINDOWS\system32\drivers\asstahci64.sys
2022-11-20 23:51:16 ----D---- C:\Users\DGaap\AppData\Roaming\iTop Screen Recorder
2022-11-20 23:51:08 ----D---- C:\ProgramData\iTop
2022-11-20 23:51:06 ----D---- C:\ProgramData\iTop VPN
2022-11-20 23:51:06 ----D---- C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
2022-11-20 23:50:51 ----D---- C:\ProgramData\ProductData
2022-11-20 23:50:27 ----D---- C:\Program Files (x86)\IObit
2022-11-20 23:50:09 ----D---- C:\Users\DGaap\AppData\Roaming\IObit
2022-11-20 23:50:09 ----D---- C:\ProgramData\IObit
2022-11-20 23:38:34 ----SH---- C:\bootTel.dat
2022-11-20 23:22:24 ----D---- C:\Program Files\Malwarebytes
2022-11-19 15:36:44 ----D---- C:\Program Files (x86)\Windows Kits
2022-11-19 15:36:44 ----D---- C:\Program Files (x86)\Microsoft GameInput
2022-11-17 21:00:40 ----D---- C:\WINDOWS\LastGood.Tmp
2022-11-17 20:58:50 ----A---- C:\WINDOWS\system32\nvml.dll
2022-11-17 20:58:50 ----A---- C:\WINDOWS\system32\nvcpl.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\OpenCL.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvidia-smi.exe
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvdebugdump.exe
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvcudadebugger.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvcuda.dll
2022-11-17 20:58:42 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2022-11-17 20:58:42 ----A---- C:\WINDOWS\system32\MCU.exe
2022-11-11 08:45:34 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2022-11-09 11:44:32 ----A---- C:\WINDOWS\system32\FXSUTILITY.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\WinFax.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\WFSR.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\WFS.exe
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXST30.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSRESM.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSCOVER.exe
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSCOMPOSERES.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSCOMPOSE.dll
2022-11-09 11:44:30 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2022-11-09 11:44:30 ----A---- C:\WINDOWS\system32\FXSCOM.dll
2022-11-09 11:44:30 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2022-11-09 11:44:21 ----A---- C:\WINDOWS\system32\securekernella57.exe
2022-11-09 11:44:21 ----A---- C:\WINDOWS\system32\ntkrla57.exe
2022-11-09 11:44:03 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\HoloSHExtensions.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\mfsvr.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfps.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfplat.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfcore.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mf.dll
2022-11-09 11:43:57 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2022-11-09 11:43:57 ----A---- C:\WINDOWS\system32\evr.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2022-11-09 11:43:54 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2022-11-09 11:43:54 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2022-11-09 11:43:54 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\sqlsrv32.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2022-11-09 11:43:52 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2022-11-09 11:43:52 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2022-11-09 11:43:51 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2022-11-09 11:43:51 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2022-11-09 11:43:49 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2022-11-09 11:43:48 ----A---- C:\WINDOWS\SYSWOW64\jscript9Legacy.dll
2022-11-09 11:43:43 ----A---- C:\WINDOWS\SYSWOW64\ias.dll
2022-11-09 11:43:42 ----A---- C:\WINDOWS\SYSWOW64\iasacct.dll
2022-11-09 11:43:40 ----A---- C:\WINDOWS\SYSWOW64\iasrad.dll
2022-11-09 11:43:38 ----A---- C:\WINDOWS\SYSWOW64\iaspolcy.dll
2022-11-09 11:43:37 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2022-11-09 11:43:36 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2022-11-09 11:43:36 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2022-11-09 11:43:36 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2022-11-09 11:43:31 ----A---- C:\WINDOWS\system32\wslapi.dll
2022-11-09 11:42:56 ----A---- C:\WINDOWS\system32\SmartActionPlatform.dll
2022-11-09 11:42:52 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2022-11-09 11:42:50 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2022-11-09 11:42:43 ----A---- C:\WINDOWS\system32\vbssysprep.dll
2022-11-09 11:42:42 ----A---- C:\WINDOWS\system32\SIHClient.exe
2022-11-09 11:42:41 ----A---- C:\WINDOWS\system32\FrameServerMonitor.dll
2022-11-09 11:42:41 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2022-11-09 11:42:40 ----A---- C:\WINDOWS\system32\quartz.dll
2022-11-09 11:42:40 ----A---- C:\WINDOWS\system32\qdvd.dll
2022-11-09 11:42:40 ----A---- C:\WINDOWS\system32\FrameServer.dll
2022-11-09 11:42:39 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2022-11-09 11:42:39 ----A---- C:\WINDOWS\system32\nltest.exe
2022-11-09 11:42:38 ----A---- C:\WINDOWS\system32\rdpudd.dll
2022-11-09 11:42:37 ----A---- C:\WINDOWS\system32\nshwfp.dll
2022-11-09 11:42:36 ----A---- C:\WINDOWS\system32\msimsg.dll
2022-11-09 11:42:36 ----A---- C:\WINDOWS\system32\msi.dll
2022-11-09 11:42:35 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2022-11-09 11:42:34 ----A---- C:\WINDOWS\system32\sendmail.dll
2022-11-09 11:42:34 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2022-11-09 11:42:34 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2022-11-09 11:42:33 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2022-11-09 11:42:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\ieproxy.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\Chakra.dll
2022-11-09 11:42:31 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2022-11-09 11:42:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2022-11-09 11:42:27 ----A---- C:\WINDOWS\system32\edgehtml.dll
2022-11-09 11:42:25 ----A---- C:\WINDOWS\system32\jscript9Legacy.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\iasrad.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\iaspolcy.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\iasacct.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\ias.dll
2022-11-09 11:42:13 ----A---- C:\WINDOWS\system32\gpedit.dll
2022-11-09 11:42:11 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2022-11-09 11:42:11 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2022-11-09 11:42:10 ----A---- C:\WINDOWS\system32\computecore.dll
2022-11-09 11:42:09 ----A---- C:\WINDOWS\system32\ThreatIntelligence.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\tcbloader.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\skci.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\securekernel.exe
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\hvix64.exe
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\hvax64.exe
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\upnphost.dll
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\upnpcont.exe
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\udhisapi.dll
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\hvloader.dll
2022-11-09 11:42:06 ----A---- C:\WINDOWS\system32\BioIso.exe
2022-11-09 11:42:04 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2022-11-09 11:42:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_SharedExperiences_Rome.dll
2022-11-09 11:42:02 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2022-11-09 11:41:58 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Print.Workflow.Source.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Print.PrintSupport.Source.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2022-11-09 11:41:55 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2022-11-09 11:41:55 ----A---- C:\WINDOWS\SYSWOW64\FrameServerMonitorClient.dll
2022-11-09 11:41:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2022-11-09 11:41:54 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Dialogs.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\Utilman.exe
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\EaseOfAccessDialog.exe
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\console.dll
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\devobj.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\msasn1.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\keyiso.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\cfgmgr32.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\tdhres.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\netmsg.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\rometadata.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexerCore.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\smartscreen.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\windowsudk.shellcommon.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRCommon.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRClient.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRBroker.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\fcon.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\DmApiSetExtImplDesktop.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppsvc.exe
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppcext.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppc.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\ServicingUAPI.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\LsaIso.exe
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\comdlg32.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\shell32.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\RMapi.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\prnntfy.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\OpenWith.exe
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\ntshrui.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\Print.PrintSupport.Source.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\APMonUI.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\APMon.dll
2022-11-09 11:41:36 ----A---- C:\WINDOWS\system32\Print.Workflow.Source.dll
2022-11-09 11:41:35 ----A---- C:\WINDOWS\system32\drvsetup.dll
2022-11-09 11:41:35 ----A---- C:\WINDOWS\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2022-11-09 11:41:34 ----A---- C:\WINDOWS\system32\pnputil.exe
2022-11-09 11:41:34 ----A---- C:\WINDOWS\system32\drvinst.exe
2022-11-09 11:41:33 ----A---- C:\WINDOWS\system32\setupapi.dll
2022-11-09 11:41:33 ----A---- C:\WINDOWS\system32\pnppolicy.dll
2022-11-09 11:41:33 ----A---- C:\WINDOWS\system32\newdev.dll
2022-11-09 11:41:31 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2022-11-09 11:41:30 ----A---- C:\WINDOWS\system32\FrameServerMonitorClient.dll
2022-11-09 11:41:30 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2022-11-09 11:41:29 ----A---- C:\WINDOWS\system32\SettingsHandlers_Camera.dll
2022-11-09 11:41:29 ----A---- C:\WINDOWS\system32\AudioHandlers.dll
2022-11-09 11:41:21 ----A---- C:\WINDOWS\system32\LockController.dll
2022-11-09 11:41:20 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2022-11-09 11:41:20 ----A---- C:\WINDOWS\system32\urlmon.dll
2022-11-09 11:41:20 ----A---- C:\WINDOWS\system32\hlink.dll
2022-11-09 11:41:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2022-11-09 11:41:19 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2022-11-09 11:41:18 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2022-11-09 11:41:18 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\omadmclient.exe
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2022-11-09 11:41:16 ----A---- C:\WINDOWS\system32\declaredconfiguration.dll
2022-11-09 11:41:16 ----A---- C:\WINDOWS\system32\dcsvc.dll
2022-11-09 11:41:16 ----A---- C:\WINDOWS\system32\configmanager2.dll
2022-11-09 11:41:14 ----A---- C:\WINDOWS\system32\wincredui.dll
2022-11-09 11:41:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2022-11-09 11:41:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\imm32.dll
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\d3d9.dll
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2022-11-09 11:41:02 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2022-11-09 11:41:02 ----A---- C:\WINDOWS\system32\netlogon.dll
2022-11-09 11:41:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2022-11-09 11:41:01 ----A---- C:\WINDOWS\system32\dwmcore.dll
2022-11-09 11:41:01 ----A---- C:\WINDOWS\system32\console.dll
2022-11-09 11:41:00 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2022-11-09 11:40:59 ----A---- C:\WINDOWS\system32\winresume.exe
2022-11-09 11:40:59 ----A---- C:\WINDOWS\system32\browserbroker.dll
2022-11-09 11:40:58 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2022-11-09 11:40:58 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2022-11-09 11:40:57 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2022-11-09 11:40:56 ----A---- C:\WINDOWS\system32\VoiceAccess.exe
2022-11-09 11:40:56 ----A---- C:\WINDOWS\system32\Utilman.exe
2022-11-09 11:40:55 ----A---- C:\WINDOWS\system32\EaseOfAccessDialog.exe
2022-11-09 11:40:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2022-11-09 11:40:54 ----A---- C:\WINDOWS\system32\wermgr.exe
2022-11-09 11:40:54 ----A---- C:\WINDOWS\system32\weretw.dll
2022-11-09 11:40:54 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2022-11-09 11:40:53 ----A---- C:\WINDOWS\system32\wer.dll
2022-11-09 11:40:53 ----A---- C:\WINDOWS\system32\DbgModel.dll
2022-11-09 11:40:53 ----A---- C:\WINDOWS\system32\dbgeng.dll
2022-11-09 11:40:52 ----A---- C:\WINDOWS\system32\utcutil.dll
2022-11-09 11:40:52 ----A---- C:\WINDOWS\system32\diagtrack.dll
2022-11-09 11:40:52 ----A---- C:\WINDOWS\system32\AggregatorHost.exe
2022-11-09 11:40:51 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2022-11-09 11:40:51 ----A---- C:\WINDOWS\system32\devobj.dll
2022-11-09 11:40:51 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2022-11-09 11:40:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2022-11-09 11:40:50 ----A---- C:\WINDOWS\system32\lsaadt.dll
2022-11-09 11:40:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2022-11-09 11:40:49 ----A---- C:\WINDOWS\system32\schannel.dll
2022-11-09 11:40:49 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2022-11-09 11:40:49 ----A---- C:\WINDOWS\system32\keyiso.dll
2022-11-09 11:40:48 ----A---- C:\WINDOWS\system32\msasn1.dll
2022-11-09 11:40:48 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2022-11-09 11:40:47 ----A---- C:\WINDOWS\system32\WinTypes.dll
2022-11-09 11:40:47 ----A---- C:\WINDOWS\system32\rpcss.dll
2022-11-09 11:40:45 ----A---- C:\WINDOWS\system32\wincorlib.dll
2022-11-09 11:40:45 ----A---- C:\WINDOWS\system32\combase.dll
2022-11-09 11:40:42 ----A---- C:\WINDOWS\system32\netmsg.dll
2022-11-09 11:40:41 ----A---- C:\WINDOWS\system32\usermgr.dll
2022-11-09 11:40:40 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2022-11-09 11:40:40 ----A---- C:\WINDOWS\system32\KernelBase.dll
2022-11-09 11:40:39 ----A---- C:\WINDOWS\system32\ntdll.dll
2022-11-09 11:40:39 ----A---- C:\WINDOWS\system32\hal.dll
2022-11-09 11:40:39 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2022-11-09 11:40:38 ----A---- C:\WINDOWS\system32\winload.exe
2022-11-09 11:40:38 ----A---- C:\WINDOWS\system32\tzres.dll
2022-11-09 11:40:38 ----A---- C:\WINDOWS\system32\ci.dll
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\winlogon.exe
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\drivers\http.sys
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\conhost.exe
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe
2022-11-09 11:40:36 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2022-11-09 11:40:34 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2022-11-09 11:40:33 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2022-11-09 11:40:33 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2022-11-09 11:40:31 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2022-11-09 11:40:31 ----A---- C:\WINDOWS\system32\kernel32.dll
2022-11-09 11:40:31 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2022-11-09 11:40:30 ----A---- C:\WINDOWS\system32\ShellAppRuntime.exe
2022-11-09 11:40:30 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2022-11-09 11:40:28 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2022-11-09 11:40:17 ----A---- C:\WINDOWS\system32\Taskbar.dll
2022-11-09 11:40:16 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.XamlInputViewHost.dll
2022-11-09 11:40:16 ----A---- C:\WINDOWS\system32\SharedPCCSP.dll
2022-11-09 11:40:16 ----A---- C:\WINDOWS\system32\PeopleBand.dll
2022-11-09 11:40:15 ----A---- C:\WINDOWS\system32\Windows.Internal.HardwareConfirmator.dll
2022-11-09 11:40:15 ----A---- C:\WINDOWS\system32\SettingsHandlers_DesktopTaskbar.dll
2022-11-09 11:40:15 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2022-11-09 11:40:14 ----A---- C:\WINDOWS\system32\wuauserv.dll
2022-11-09 11:40:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2022-11-09 11:40:14 ----A---- C:\WINDOWS\system32\wuapi.dll
2022-11-09 11:40:13 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2022-11-09 11:40:12 ----A---- C:\WINDOWS\system32\usodocked.dll
2022-11-09 11:40:11 ----A---- C:\WINDOWS\system32\usosvcimpl.dll
2022-11-09 11:40:11 ----A---- C:\WINDOWS\system32\usosvc.dll
2022-11-09 11:40:08 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2022-11-09 11:40:08 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2022-11-09 11:40:08 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2022-11-09 11:40:07 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2022-11-09 11:40:07 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2022-11-09 11:40:06 ----A---- C:\WINDOWS\system32\tdhres.dll
2022-11-09 11:40:06 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2022-11-09 11:40:06 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorService.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\winbio.dll
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\win32kfull.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\win32k.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\container.dll
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\bindfltapi.dll
2022-11-09 11:40:02 ----A---- C:\WINDOWS\system32\win32u.dll
2022-11-09 11:40:01 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2022-11-09 11:40:01 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2022-11-09 11:40:01 ----A---- C:\WINDOWS\system32\BingMaps.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\InputService.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\tquery.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchIndexerCore.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssvp.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssrch.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssprxy.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssph.dll
2022-11-09 11:39:58 ----A---- C:\WINDOWS\system32\win32kbase.sys
2022-11-09 11:39:58 ----A---- C:\WINDOWS\system32\mssitlb.dll
2022-11-09 11:39:58 ----A---- C:\WINDOWS\system32\msscntrs.dll
2022-11-09 11:39:54 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2022-11-09 11:39:54 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2022-11-09 11:39:54 ----A---- C:\WINDOWS\system32\doclient.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\smartscreen.exe
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\smartscreen.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\GameInput.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\cloudAP.dll
2022-11-09 11:39:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2022-11-09 11:39:52 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2022-11-09 11:39:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\rometadata.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\cdp.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\cdd.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\wfapigp.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\icfupgd.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\fwbase.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\windows.storage.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\InstallService.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\esent.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\AppxSip.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2022-11-09 11:39:46 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2022-11-09 11:39:46 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2022-11-09 11:39:45 ----A---- C:\WINDOWS\system32\BcastDVRCommon.dll
2022-11-09 11:39:45 ----A---- C:\WINDOWS\system32\BcastDVRClient.dll
2022-11-09 11:39:44 ----A---- C:\WINDOWS\system32\BcastDVRBroker.dll
2022-11-09 11:39:43 ----A---- C:\WINDOWS\system32\windowsudkservices.shellcommon.dll
2022-11-09 11:39:43 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2022-11-09 11:39:42 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2022-11-09 11:39:42 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2022-11-09 11:39:41 ----A---- C:\WINDOWS\system32\twinui.dll
2022-11-09 11:39:38 ----A---- C:\WINDOWS\system32\msctf.dll
2022-11-09 11:39:37 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2022-11-09 11:39:27 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2022-11-09 11:39:23 ----A---- C:\WINDOWS\system32\localui.dll
2022-11-09 11:39:22 ----A---- C:\WINDOWS\system32\usbmon.dll
2022-11-09 11:39:20 ----A---- C:\WINDOWS\system32\stobject.dll
2022-11-09 11:39:20 ----A---- C:\WINDOWS\explorer.exe
2022-11-09 11:39:18 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2022-11-09 11:39:15 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\PrinterCleanupTask.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\localspl.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\cmifw.dll
2022-11-09 11:39:12 ----A---- C:\WINDOWS\system32\spoolsv.exe
2022-11-09 11:39:12 ----A---- C:\WINDOWS\splwow64.exe
2022-11-09 11:39:11 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2022-11-09 11:39:10 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2022-11-09 11:39:10 ----A---- C:\WINDOWS\system32\WpcTok.exe
2022-11-09 11:39:09 ----A---- C:\WINDOWS\system32\hspfw.dll
2022-11-09 11:39:09 ----A---- C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2022-11-09 11:38:32 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2022-11-09 11:38:30 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2022-11-09 11:38:28 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2022-11-09 11:37:57 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2022-11-09 11:37:56 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2022-11-09 11:37:56 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2022-11-09 11:37:56 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2022-11-09 11:37:29 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2022-11-09 11:37:28 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2022-11-09 11:37:28 ----A---- C:\WINDOWS\system32\audiodg.exe
2022-11-09 11:37:26 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2022-11-09 11:37:24 ----A---- C:\WINDOWS\system32\audiosrv.dll
2022-11-09 11:37:23 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2022-11-09 11:37:23 ----A---- C:\WINDOWS\system32\AudioEng.dll
2022-11-09 11:37:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2022-11-09 11:37:22 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2022-11-09 11:37:21 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2022-11-09 11:37:21 ----A---- C:\WINDOWS\system32\fcon.dll
2022-11-09 11:37:20 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2022-11-09 11:37:19 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2022-11-09 11:37:19 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2022-11-09 11:37:17 ----A---- C:\WINDOWS\system32\lpasvc.dll
2022-11-09 11:27:37 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2022-11-09 11:27:37 ----A---- C:\WINDOWS\system32\poqexec.exe
2022-11-09 11:26:56 ----HD---- C:\$WinREAgent
2022-10-29 17:12:18 ----D---- C:\Users\DGaap\AppData\Roaming\EasyAntiCheat
2022-10-29 17:10:46 ----D---- C:\Program Files (x86)\EasyAntiCheat
2022-10-26 08:34:43 ----A---- C:\WINDOWS\system32\xgamehelper.exe
2022-10-26 08:34:43 ----A---- C:\WINDOWS\system32\xgamecontrol.exe
2022-10-25 17:29:11 ----D---- C:\WINDOWS\PCHEALTH
2022-10-25 09:54:44 ----D---- C:\Battlestate Games
======List of files/folders modified in the last 1 month======
2022-11-23 18:28:33 ----RD---- C:\Program Files
2022-11-23 18:23:01 ----D---- C:\Program Files (x86)\Google
2022-11-23 18:22:05 ----SHD---- C:\System Volume Information
2022-11-23 18:17:56 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2022-11-23 18:07:38 ----D---- C:\WINDOWS\Temp
2022-11-23 18:06:27 ----D---- C:\WINDOWS\system32\Tasks
2022-11-23 18:06:27 ----D---- C:\Program Files\CCleaner
2022-11-23 18:06:26 ----D---- C:\WINDOWS\Tasks
2022-11-23 18:06:02 ----D---- C:\WINDOWS\SysWOW64
2022-11-23 18:06:02 ----D---- C:\WINDOWS\System32
2022-11-23 18:03:49 ----D---- C:\WINDOWS\AppReadiness
2022-11-23 18:03:35 ----D---- C:\ProgramData\NVIDIA
2022-11-23 18:01:16 ----D---- C:\WINDOWS\system32\sru
2022-11-23 17:57:51 ----HD---- C:\Program Files\WindowsApps
2022-11-22 14:24:16 ----RD---- C:\WINDOWS\Microsoft.NET
2022-11-21 19:54:45 ----D---- C:\WINDOWS\system32\SleepStudy
2022-11-21 19:49:43 ----D---- C:\WINDOWS\SystemTemp
2022-11-21 14:33:09 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2022-11-21 08:16:34 ----D---- C:\WINDOWS\system32\DriverStore
2022-11-21 08:16:34 ----D---- C:\WINDOWS\system32\catroot2
2022-11-21 08:16:34 ----D---- C:\WINDOWS\INF
2022-11-21 08:03:04 ----D---- C:\Program Files\TeamViewer
2022-11-21 08:02:56 ----D---- C:\WINDOWS\ServiceState
2022-11-21 08:02:53 ----ASH---- C:\DumpStack.log.tmp
2022-11-21 00:12:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-21 00:07:40 ----D---- C:\WINDOWS\system32\CatRoot
2022-11-21 00:06:38 ----SHD---- C:\WINDOWS\Installer
2022-11-21 00:06:11 ----D---- C:\ProgramData\Package Cache
2022-11-21 00:06:01 ----RD---- C:\Program Files (x86)
2022-11-21 00:05:22 ----RD---- C:\WINDOWS\assembly
2022-11-21 00:05:21 ----D---- C:\WINDOWS\Logs
2022-11-21 00:04:43 ----D---- C:\WINDOWS\system32\drivers
2022-11-21 00:01:53 ----HD---- C:\ProgramData
2022-11-21 00:01:53 ----D---- C:\Program Files (x86)\Common Files
2022-11-20 23:44:50 ----HD---- C:\WINDOWS\ELAMBKUP
2022-11-20 23:22:13 ----D---- C:\WINDOWS\SYSWOW64\drivers
2022-11-20 23:09:34 ----D---- C:\Windows
2022-11-20 22:53:50 ----D---- C:\WINDOWS\Prefetch
2022-11-20 19:20:29 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2022-11-20 19:20:29 ----D---- C:\Program Files (x86)\Thrustmaster
2022-11-20 19:20:28 ----SD---- C:\Users\DGaap\AppData\Roaming\Microsoft
2022-11-20 18:56:36 ----D---- C:\ProgramData\Microsoft Help
2022-11-19 17:38:58 ----D---- C:\WINDOWS\apppatch
2022-11-19 15:36:17 ----A---- C:\WINDOWS\system32\xgameruntime.dll
2022-11-19 15:36:17 ----A---- C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gamingservicesproxy.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gameplatformservices.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gamelaunchhelper.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gameconfighelper.dll
2022-11-17 15:48:22 ----D---- C:\Users\DGaap\AppData\Roaming\com.adobe.dunamis
2022-11-15 06:45:40 ----A---- C:\WINDOWS\system32\nvapi64.dll
2022-11-12 17:36:33 ----D---- C:\Users\DGaap\AppData\Roaming\TeamViewer
2022-11-12 17:32:12 ----RSD---- C:\WINDOWS\Fonts
2022-11-12 10:19:20 ----D---- C:\WINDOWS\system32\config
2022-11-11 12:31:41 ----D---- C:\WINDOWS\WinSxS
2022-11-11 08:50:41 ----D---- C:\Program Files\Microsoft Office
2022-11-11 08:45:57 ----D---- C:\ProgramData\NVIDIA Corporation
2022-11-11 08:45:48 ----D---- C:\Program Files\NVIDIA Corporation
2022-11-11 08:45:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2022-11-11 04:21:10 ----A---- C:\WINDOWS\system32\GameInputRedist.dll
2022-11-11 02:35:18 ----A---- C:\WINDOWS\SYSWOW64\GameInputRedist.dll
2022-11-10 20:39:50 ----D---- C:\Users\DGaap\AppData\Roaming\WeMod
2022-11-09 17:11:42 ----D---- C:\WINDOWS\SoftwareDistribution
2022-11-09 14:47:52 ----D---- C:\Users\DGaap\AppData\Roaming\MPC-HC
2022-11-09 14:47:25 ----DC---- C:\WINDOWS\Panther
2022-11-09 14:47:24 ----D---- C:\WINDOWS\debug
2022-11-09 11:55:56 ----D---- C:\WINDOWS\UUS
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\migration
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2022-11-09 11:55:55 ----SD---- C:\WINDOWS\system32\en-US
2022-11-09 11:55:55 ----SD---- C:\WINDOWS\system32\cs-CZ
2022-11-09 11:55:55 ----D---- C:\WINDOWS\SystemResources
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\zh-CN
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\WinMetadata
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\wbem
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\uk-UA
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\Sgrm
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\setup
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\ru-RU
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\ro-RO
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\nl-NL
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\migration
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\ko-KR
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\he-IL
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\fr-FR
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\fi-FI
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\drivers\UMDF
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\drivers\en-US
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\Boot
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\appraiser
2022-11-09 11:55:54 ----D---- C:\WINDOWS\ShellExperiences
2022-11-09 11:55:54 ----D---- C:\WINDOWS\ShellComponents
2022-11-09 11:55:54 ----D---- C:\WINDOWS\bcastdvr
2022-11-09 11:55:52 ----D---- C:\WINDOWS\system32\CodeIntegrity
2022-11-09 11:47:27 ----D---- C:\WINDOWS\CbsTemp
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2022-11-09 10:59:34 ----D---- C:\WINDOWS\system32\MRT
2022-11-09 10:55:58 ----AC---- C:\WINDOWS\system32\MRT.exe
2022-11-07 08:33:42 ----D---- C:\Program Files\HPPrintScanDoctor
2022-11-01 11:50:10 ----D---- C:\Games
2022-10-25 09:54:54 ----D---- C:\Users\DGaap\AppData\Roaming\Battlestate Games
2022-10-24 09:43:16 ----D---- C:\Users\DGaap\AppData\Roaming\vlc
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 asstahci64;asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [2022-11-20 98696]
R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\WINDOWS\system32\DRIVERS\cm_km.sys [2022-02-17 237288]
R0 IntelPMT;@intelpmt.inf,%IntelPMT.SVCDESC%;Intel(R) Platform Monitoring Technology Service; C:\WINDOWS\System32\drivers\IntelPMT.sys [2022-05-07 87552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2022-05-07 87392]
R0 klupd_klif_arkmon;klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [2022-09-29 382304]
R0 klupd_klif_klbg;klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [2022-09-29 189520]
R0 PRM;@prm.inf,%PRM.SvcDesc%;Microsoft PRM Driver; C:\WINDOWS\System32\DriverStore\FileRepository\prm.inf_amd64_de435dc5c75d64a5\PRM.sys [2022-05-07 66896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2022-05-07 81920]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2022-05-07 116056]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2022-05-07 173424]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2022-05-07 90112]
R1 klbackupdisk;Kaspersky Lab klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [2022-02-17 105280]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\WINDOWS\system32\DRIVERS\klbackupflt.sys [2022-02-17 206600]
R1 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2022-02-17 119568]
R1 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2022-02-17 522504]
R1 klgse;Kaspersky Lab Security Extender Driver; C:\WINDOWS\system32\DRIVERS\klgse.sys [2022-10-01 727696]
R1 klhk;Kaspersky Lab service driver; C:\WINDOWS\system32\DRIVERS\klhk.sys [2022-10-01 1717424]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2022-02-17 1049864]
R1 klim6;@oem39.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2022-02-17 90896]
R1 klpd;Kaspersky Lab format recognizer driver; C:\WINDOWS\system32\DRIVERS\klpd.sys [2022-02-17 78088]
R1 klpnpflt;Kaspersky Lab klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [2022-02-17 88328]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2022-02-17 150280]
R1 klwtp;KLwtp - WFP callout traffic inspector; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2022-02-17 325400]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2022-02-17 294680]
R2 bfs;@%systemroot%\system32\drivers\bfs.sys,-100; C:\WINDOWS\system32\drivers\bfs.sys [2022-10-12 91480]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2022-11-09 173400]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2022-10-12 569344]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2022-10-12 90112]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2022-11-09 2048000]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2022-11-09 139264]
R3 gameflt;@oem49.inf,%ServiceName%;gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_6284700d01a44dd9\gameflt.sys [2022-10-26 150976]
R3 iaLPSS2_GPIO2_ADL;@oem51.inf,%iaLPSS2_GPIO2_ADL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [2022-06-23 140960]
R3 ibtusb;@oem61.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\System32\DriverStore\FileRepository\ibtusb.inf_amd64_43b149f68e4e76c9\ibtusb.sys [2022-11-21 7418440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2021-12-08 6569528]
R3 IntelGNA;@oem54.inf,%IntelGNA.SVCDESC%;Intel(R) GNA Scoring Accelerator service; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [2022-08-10 88784]
R3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [2022-11-17 244832]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2022-02-17 104728]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2022-02-17 107328]
R3 kltap;@oem29.inf,%devicedescription%;Kaspersky Security Data Escort Adapter; C:\WINDOWS\System32\drivers\kltap.sys [2021-02-19 55592]
R3 klupd_klif_klark;klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [2022-09-29 360000]
R3 klupd_klif_mark;klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [2022-10-03 270672]
R3 MEIx64;@oem58.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_6467379f0b0f181f\x64\TeeDriverW10x64.sys [2022-11-20 319064]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-200; C:\WINDOWS\system32\drivers\msquic.sys [2022-05-07 404336]
R3 Netwtw10;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 10 64 Bit; C:\WINDOWS\System32\drivers\Netwtw10.sys [2022-11-20 5067328]
R3 NVHDA;@oem13.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2022-10-13 129000]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\nvlddmkm.sys [2022-11-15 57872888]
R3 NvModuleTracker;@oem16.inf,%ServiceName%;NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [2022-07-14 45656]
R3 nvvad_WaveExtensible;@oem19.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2022-07-15 59368]
R3 nvvhci;@oem48.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2022-07-14 60112]
S0 AppleSSD;@AppleSSD.inf,%DevDesc1%;Apple Solid State Drive Device; C:\WINDOWS\System32\drivers\AppleSSD.sys [2022-05-07 113496]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2022-05-07 79184]
S0 ebdrv0;@netevbd0a.inf,%vbd_srv_desc%;QLogic Legacy Ethernet Adapter VBD; C:\WINDOWS\System32\drivers\evbd0a.sys [2022-05-07 3424104]
S0 GenPass;@genpass.inf,%GenPass.SVCDESC%;Microsoft GenPass Driver; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [2022-05-07 62800]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2022-05-07 320880]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2022-05-07 885584]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2022-05-07 187224]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2021-02-19 41656]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2022-05-07 125280]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2022-05-07 138600]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2022-05-07 81752]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2022-05-07 101224]
S0 mpi3drvi;mpi3drvi; C:\WINDOWS\System32\drivers\mpi3drvi.sys [2022-05-07 90472]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2022-05-07 206160]
S0 nvmedisk;@nvmedisk.inf,%nvmedisk.SvcDesc%;Microsoft NVMe disk driver; C:\WINDOWS\System32\drivers\nvmedisk.sys [2022-05-07 91496]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2022-05-07 59752]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2022-05-07 69464]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2022-10-12 181600]
S0 pvscsi;@pvscsii.inf,%pvscsi.DiskName%;pvscsi Storage Controller Driver; C:\WINDOWS\System32\drivers\pvscsii.sys [2022-05-07 45408]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2022-05-07 75104]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2022-10-12 57344]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2022-10-12 733184]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2022-05-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2022-05-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2022-10-12 49152]
S3 atvi-randgrid_sr;atvi-randgrid_sr; \??\C:\Games\Steam\steamapps\common\Call of Duty HQ\randgrid.sys [2022-11-20 2513192]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2022-09-28 532480]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2022-11-09 143360]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2022-10-12 143360]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2022-11-09 86016]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2022-05-07 90112]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2022-05-07 99672]
S3 cpuz154;cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [2022-11-21 40976]
S3 ExecutionContext;@%SystemRoot%\System32\Drivers\ExecutionContext.sys,-101; C:\WINDOWS\System32\Drivers\ExecutionContext.sys [2022-10-12 75088]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_cea150c98a1ca844\genericusbfn.sys [2022-05-07 61440]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2022-05-07 91472]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2022-10-12 139264]
S3 HidSpiCx;HidSpi KMDF Class Extension; C:\WINDOWS\system32\drivers\HidSpiCx.sys [2022-10-12 126976]
S3 Hsp;@hsp.inf,%Hsp.SVCDESC%;Microsoft Pluton Service; C:\WINDOWS\System32\drivers\Hsp.sys [2022-05-07 124264]
S3 hvservice;@hvservice.inf,%hvservice.SvcDesc%;Microsoft Hypervisor Service Driver; C:\WINDOWS\System32\drivers\hvservice.sys [2022-10-12 91472]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2022-05-07 61440]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2022-05-07 1854832]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2022-05-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2022-05-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2022-05-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2022-05-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2022-05-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2022-05-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2022-05-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2022-05-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2022-05-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2022-05-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2022-05-07 559976]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2022-10-12 77824]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2022-05-07 65536]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2022-05-07 99688]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2022-05-07 566632]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2022-05-07 99664]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2022-10-12 454656]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2022-05-07 98304]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2022-05-07 1132392]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2022-05-07 147304]
S3 NDKPerf;NDKPerf Driver; C:\WINDOWS\system32\drivers\NDKPerf.sys [2022-05-07 83288]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2022-05-07 107872]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2022-10-12 394592]
S3 P9Rdr;@%SystemRoot%\System32\drivers\p9rdr.sys,-100; C:\WINDOWS\System32\drivers\p9rdr.sys [2022-05-07 148816]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2022-10-12 177504]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2022-05-07 53248]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2022-05-07 61440]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2022-10-12 1000800]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2022-05-07 75112]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2022-09-26 173040]
R2 AVP21.3;Služba Kaspersky Anti-Virus 21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe [2022-02-17 184768]
R2 cbdhsvc_4469e8e;Uživatelská služba schránky_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 CDPUserSvc_4469e8e;Uživatelská služba platformy připojených zařízení_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2022-11-11 12515768]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R2 GameInput Service;GameInput Service; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [2022-11-11 91600]
R2 GamingServices;Gaming Services; C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServices.exe [2022-11-19 75256]
R2 GamingServicesNet;Gaming Services; C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [2022-11-19 75256]
R2 HPPrintScanDoctorService;HP Print Scan Doctor Service; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [2022-11-06 228848]
R2 ibtsiva;@oem4.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe [2021-07-22 628616]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2022-08-30 1003128]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe [2022-11-15 1015296]
R2 OneSyncSvc_4469e8e;Hostitel synchronizace_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 AarSvc_4469e8e;Agent Activation Runtime_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 CCleanerPerformanceOptimizerService;CCleaner Performance Optimizer Service; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [2022-10-20 1185616]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R3 InventorySvc;@%SystemRoot%\system32\inventorysvc.dll,-501; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R3 NPSMSvc_4469e8e;NPSMSvc_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 PimIndexMaintenanceSvc_4469e8e;Data kontaktů_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S2 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S2 edgeupdate;Microsoft Edge Update Service (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-05-21 214936]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2022-06-24 168632]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BcastDVRUserService_4469e8e;Uživatelská služba pro GameDVR a vysílání her_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2022-10-04 9811832]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BluetoothUserService_4469e8e;Služba pro podporu uživatelů Bluetooth_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 CaptureService_4469e8e;CaptureService_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 ConsentUxUserSvc_4469e8e;Uživatelská služba ConsentUX_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2022-05-07 406336]
S3 CredentialEnrollmentManagerUserSvc_4469e8e;CredentialEnrollmentManagerUserSvc_4469e8e; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2022-05-07 406336]
S3 dcsvc;@%systemroot%\system32\dcsvc,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DeviceAssociationBrokerSvc_4469e8e;DeviceAssociationBroker_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicePickerUserSvc_4469e8e;DevicePicker_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicesFlowUserSvc_4469e8e;Tok zařízení_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2022-05-07 114688]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2022-10-29 811496]
S3 edgeupdatem;Microsoft Edge Update Service (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-05-21 214936]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2022-09-28 45992]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 FrameServerMonitor;@%systemroot%\system32\FrameServerMonitor.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 FvSvc;NVIDIA FrameView SDK service; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [2022-09-07 401960]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files\Google\Chrome\Application\107.0.5304.107\elevation_service.exe [2022-11-08 1730328]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2022-06-24 168632]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 klvssbridge64_21.3;Kaspersky Volume Shadow Copy Service Bridge 21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe [2021-02-19 479280]
S3 KSDE5.3;Služba Kaspersky VPN Secure Connection 5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [2022-02-17 447104]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 McpManagementService;@%SystemRoot%\system32\McpManagementService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 MessagingService_4469e8e;Služba zasílání zpráv_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\elevation_service.exe [2022-11-21 1755080]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2022-06-08 231360]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 NPSMSvc;@%SystemRoot%\system32\npsm.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 P9RdrService;@%systemroot%\system32\p9rdrservice.dll,-102; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 P9RdrService_4469e8e;P9RdrService_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PenService;@%SystemRoot%\system32\PenService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PenService_4469e8e;PenService_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2022-05-07 241664]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PrintWorkflowUserSvc_4469e8e;PrintWorkflow_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S4 CDPSvc;Služba platformy připojených zařízení; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S4 DiagTrack;Propojená uživatelská prostředí a telemetrie; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by DGaap at 2022-11-23 18:28:33
Microsoft Windows 11 Home
System drive C: has 628 GB (64%) free of 975 GB
Total RAM: 16244 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:28:36, on 23.11.2022
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.22621.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\DGaap.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.hal3000.cz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.hal3000.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [HP DeskJet 4530 series (NET)] "C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH6954D01F0661:NW" -scfn "HP DeskJet 4530 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_4146E221EBF7D13E69F596621982BCEF] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlansp_c.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~2\Office12\GRA32A~1.DLL
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 21.3 (AVP21.3) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: CCleaner Performance Optimizer Service (CCleanerPerformanceOptimizerService) - Piriform Software Ltd - C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_4469e8e - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - Epic Games, Inc - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\107.0.5304.107\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Print Scan Doctor Service (HPPrintScanDoctorService) - HP Inc. - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
O23 - Service: @oem4.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Kaspersky Volume Shadow Copy Service Bridge 21.3 (klvssbridge64_21.3) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe
O23 - Service: Služba Kaspersky VPN Secure Connection 5.3 (KSDE5.3) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Realtek Semiconductor - C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\Sgrm\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\Sgrm\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTrap) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\steamservice.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Management Engine WMI Provider Registration (WMIRegistrationService) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12582 bytes
======Listing Processes======
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f164d6a2-dc91-4cbb-bc10-8c24505a3346 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-d6fde53b-b6ab-41eb-b6d7-c7623c3d2f96 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0f7a2065-6714-4b7b-a077-0443d4a00c1f -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0a8f8e74-9632-4956-af6f-9720d40c27c6 -LifetimeId:d58255b5-05f6-40cc-b3c3-8b76af70c5e7 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k UserProfileService -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TextInputManagementService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\System32\svchost.exe -k netprofm -p -s netprofm
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\WLANExt.exe 1722941230416
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k NetworkService -p
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\ibtsiva
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe"
"C:\Program Files\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
"C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServices.exe"
"C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe"
dashost.exe {46b97ebf-4165-49f4-afbe945788e4df2b}
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
dashost.exe {1f6f5dc8-999f-40bc-a1f88bd5afb7dfda}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k WebThreatDefense -p -s webthreatdefsvc
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s DeviceInstall
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\svchost.exe -k osprivacy -p -s camsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
C:\WINDOWS\system32\svchost.exe -k LocalService -s W32Time
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe" Global\GameInputSession_4
"C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s webthreatdefusersvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe" -ServerName:CortanaUI.AppXstmwaab17q5s3y22tp6apqz7a45vwv65.mca
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
"C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.765.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe" -ServerName:Microsoft.Windows.DashboardServer
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UdkSvcGroup -s UdkUserSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"ctfmon.exe"
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe" -background
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s NPSMSvc
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p -s AarSvc
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --field-trial-handle=2052,3992814611141916588,17383031186912036460,131072 --disable-features=VizDisplayCompositor --no-sandbox --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACACwAAAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --service-request-channel-token=9575214441782566746 --mojo-platform-channel-handle=2160 /prefetch:2
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --autoplay-policy=no-user-gesture-required --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --field-trial-handle=2052,3992814611141916588,17383031186912036460,131072 --disable-features=VizDisplayCompositor --service-pipe-token=16795855848016419091 --lang=en-US --log-file="C:\Users\DGaap\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16795855848016419091 --renderer-client-id=3 --mojo-platform-channel-handle=2824 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --disk-cache-size=52428800 --edge-webview-is-background --enable-features=msWebView2TreatAppSuspendAsDeviceSuspend,UseNativeThreadPool,UseBackgroundNativeThreadPool --lang=cs-CZ --mojo-named-platform-channel-pipe=6544.5192.14257966467326380219
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=107.0.5304.110 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=107.0.1418.52 --initial-client-data=0x11c,0x120,0x124,0xf8,0x130,0x7ffcb821b208,0x7ffcb821b218,0x7ffcb821b228
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=gpu-process --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1760 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:2
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=1976 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:3
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=utility --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --mojo-platform-channel-handle=2348 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:8
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.52\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\DGaap\AppData\Local\Packages\MicrosoftWindows.Client.WebExperience_cw5n1h2txyewy\LocalState\EBWebView" --webview-exe-name=Widgets.exe --webview-exe-version=421.20070.825.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --display-capture-permissions-policy-allowed --js-flags=--ms-user-locale= --first-renderer-process --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc" --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --time-ticks-at-unix-epoch=-1669014153533152 --launch-time-ticks=208641911724 --mojo-platform-channel-handle=3172 --field-trial-handle=1816,i,12204240680642337464,18301202658589655866,131072 --enable-features=UseBackgroundNativeThreadPool,UseNativeThreadPool,msWebView2TreatAppSuspendAsDeviceSuspend /prefetch:1
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k InvSvcGroup -p -s InventorySvc
"C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe"
"C:\Program Files\Google\Chrome\Application\chrome.exe"
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\DGaap\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\DGaap\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=107.0.5304.107 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffcc7569e68,0x7ffcc7569e78,0x7ffcc7569e88
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1712 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:2
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --mojo-platform-channel-handle=2000 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2052 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=209121848002 --mojo-platform-channel-handle=4032 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=5116 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\WINDOWS\system32\BackgroundTaskHost.exe" -ServerName:BackgroundTaskHost.WebAccountProvider
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Microsoft Office\Root\Office16\SDXHelper.exe" -Embedding
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=209595554339 --mojo-platform-channel-handle=4888 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe" -ComServer:Background -Embedding
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=209738747005 --mojo-platform-channel-handle=7608 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=cs --service-sandbox-type=service --mojo-platform-channel-handle=7992 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:8
"C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe" -ServerName:App.AppXk7vvv12h4qrkhkbvf6j86ja45mzj5km9.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k swprv
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --time-ticks-at-unix-epoch=-1669014153532471 --launch-time-ticks=210181065892 --mojo-platform-channel-handle=7672 --field-trial-handle=1788,i,13019289091044156336,1688969059489306651,131072 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x000000000000061C
"C:\Users\DGaap\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "6d818975-7b8e-4ca8-9fc9-6993fae75fb8" --version "6.05.10110" --silent
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\BHO\ie_to_edge_bho_64.dll [2022-11-21 590792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\BHO\ie_to_edge_bho.dll [2022-11-21 457160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-03 167808]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2022-10-12 266240]
"RtkAudUService"=C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_03ae49260a64ff68\RtkAudUService64.exe [2022-06-09 3495880]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP DeskJet 4530 series (NET)"=C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [2021-11-17 3770528]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2022-10-20 38789456]
"MicrosoftEdgeAutoLaunch_4146E221EBF7D13E69F596621982BCEF"=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [2022-11-17 3892168]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{53966CB1-4D46-4166-BF23-C522403CD495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HidSpiCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TextInputManagementService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{53966CB1-4D46-4166-BF23-C522403CD495}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave4"=wdmaud.drv
======File associations======
.inf - open -
.inf - install -
.ini - open -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open -
======List of files/folders created in the last 1 month======
2022-11-23 18:28:33 ----D---- C:\rsit
2022-11-23 18:28:33 ----D---- C:\Program Files\trend micro
2022-11-23 18:21:15 ----D---- C:\FRST
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfh009.dat
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfh005.dat
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfc009.dat
2022-11-21 00:12:41 ----A---- C:\WINDOWS\system32\perfc005.dat
2022-11-21 00:06:01 ----D---- C:\Program Files (x86)\OpenAL
2022-11-21 00:05:21 ----D---- C:\Program Files (x86)\Microsoft XNA
2022-11-21 00:04:29 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2022-11-21 00:01:53 ----D---- C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2022-11-20 23:57:26 ----D---- C:\Users\DGaap\AppData\Roaming\Mozilla
2022-11-20 23:53:19 ----A---- C:\WINDOWS\system32\drivers\Netwtw10.sys
2022-11-20 23:53:18 ----A---- C:\WINDOWS\system32\IntelIHVRouter10.dll
2022-11-20 23:53:18 ----A---- C:\WINDOWS\system32\drivers\Netwfw10.dat
2022-11-20 23:52:51 ----A---- C:\WINDOWS\system32\drivers\asstahci64.sys
2022-11-20 23:51:16 ----D---- C:\Users\DGaap\AppData\Roaming\iTop Screen Recorder
2022-11-20 23:51:08 ----D---- C:\ProgramData\iTop
2022-11-20 23:51:06 ----D---- C:\ProgramData\iTop VPN
2022-11-20 23:51:06 ----D---- C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
2022-11-20 23:50:51 ----D---- C:\ProgramData\ProductData
2022-11-20 23:50:27 ----D---- C:\Program Files (x86)\IObit
2022-11-20 23:50:09 ----D---- C:\Users\DGaap\AppData\Roaming\IObit
2022-11-20 23:50:09 ----D---- C:\ProgramData\IObit
2022-11-20 23:38:34 ----SH---- C:\bootTel.dat
2022-11-20 23:22:24 ----D---- C:\Program Files\Malwarebytes
2022-11-19 15:36:44 ----D---- C:\Program Files (x86)\Windows Kits
2022-11-19 15:36:44 ----D---- C:\Program Files (x86)\Microsoft GameInput
2022-11-17 21:00:40 ----D---- C:\WINDOWS\LastGood.Tmp
2022-11-17 20:58:50 ----A---- C:\WINDOWS\system32\nvml.dll
2022-11-17 20:58:50 ----A---- C:\WINDOWS\system32\nvcpl.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1-999-0-0-0.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\SYSWOW64\nvofapi.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\OpenCL.dll
2022-11-17 20:58:48 ----A---- C:\WINDOWS\system32\nvofapi64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvidia-smi.exe
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvdebugdump.exe
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvcudadebugger.dll
2022-11-17 20:58:47 ----A---- C:\WINDOWS\system32\nvcuda.dll
2022-11-17 20:58:42 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2022-11-17 20:58:42 ----A---- C:\WINDOWS\system32\MCU.exe
2022-11-11 08:45:34 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2022-11-09 11:44:32 ----A---- C:\WINDOWS\system32\FXSUTILITY.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\WinFax.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\WFSR.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\WFS.exe
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXST30.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSRESM.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSCOVER.exe
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSCOMPOSERES.dll
2022-11-09 11:44:31 ----A---- C:\WINDOWS\system32\FXSCOMPOSE.dll
2022-11-09 11:44:30 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2022-11-09 11:44:30 ----A---- C:\WINDOWS\system32\FXSCOM.dll
2022-11-09 11:44:30 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2022-11-09 11:44:21 ----A---- C:\WINDOWS\system32\securekernella57.exe
2022-11-09 11:44:21 ----A---- C:\WINDOWS\system32\ntkrla57.exe
2022-11-09 11:44:03 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2022-11-09 11:44:02 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2022-11-09 11:44:01 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\HoloSHExtensions.dll
2022-11-09 11:44:00 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\mfsvr.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2022-11-09 11:43:59 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfps.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfplat.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfcore.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2022-11-09 11:43:58 ----A---- C:\WINDOWS\system32\mf.dll
2022-11-09 11:43:57 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2022-11-09 11:43:57 ----A---- C:\WINDOWS\system32\evr.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2022-11-09 11:43:56 ----A---- C:\WINDOWS\SYSWOW64\FrameServerClient.dll
2022-11-09 11:43:54 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2022-11-09 11:43:54 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2022-11-09 11:43:54 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\sqlsrv32.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2022-11-09 11:43:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2022-11-09 11:43:52 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2022-11-09 11:43:52 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2022-11-09 11:43:51 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2022-11-09 11:43:51 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2022-11-09 11:43:49 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2022-11-09 11:43:48 ----A---- C:\WINDOWS\SYSWOW64\jscript9Legacy.dll
2022-11-09 11:43:43 ----A---- C:\WINDOWS\SYSWOW64\ias.dll
2022-11-09 11:43:42 ----A---- C:\WINDOWS\SYSWOW64\iasacct.dll
2022-11-09 11:43:40 ----A---- C:\WINDOWS\SYSWOW64\iasrad.dll
2022-11-09 11:43:38 ----A---- C:\WINDOWS\SYSWOW64\iaspolcy.dll
2022-11-09 11:43:37 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2022-11-09 11:43:36 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2022-11-09 11:43:36 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2022-11-09 11:43:36 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2022-11-09 11:43:31 ----A---- C:\WINDOWS\system32\wslapi.dll
2022-11-09 11:42:56 ----A---- C:\WINDOWS\system32\SmartActionPlatform.dll
2022-11-09 11:42:52 ----A---- C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2022-11-09 11:42:50 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2022-11-09 11:42:43 ----A---- C:\WINDOWS\system32\vbssysprep.dll
2022-11-09 11:42:42 ----A---- C:\WINDOWS\system32\SIHClient.exe
2022-11-09 11:42:41 ----A---- C:\WINDOWS\system32\FrameServerMonitor.dll
2022-11-09 11:42:41 ----A---- C:\WINDOWS\system32\FrameServerClient.dll
2022-11-09 11:42:40 ----A---- C:\WINDOWS\system32\quartz.dll
2022-11-09 11:42:40 ----A---- C:\WINDOWS\system32\qdvd.dll
2022-11-09 11:42:40 ----A---- C:\WINDOWS\system32\FrameServer.dll
2022-11-09 11:42:39 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2022-11-09 11:42:39 ----A---- C:\WINDOWS\system32\nltest.exe
2022-11-09 11:42:38 ----A---- C:\WINDOWS\system32\rdpudd.dll
2022-11-09 11:42:37 ----A---- C:\WINDOWS\system32\nshwfp.dll
2022-11-09 11:42:36 ----A---- C:\WINDOWS\system32\msimsg.dll
2022-11-09 11:42:36 ----A---- C:\WINDOWS\system32\msi.dll
2022-11-09 11:42:35 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2022-11-09 11:42:34 ----A---- C:\WINDOWS\system32\sendmail.dll
2022-11-09 11:42:34 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2022-11-09 11:42:34 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2022-11-09 11:42:33 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2022-11-09 11:42:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\ieproxy.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2022-11-09 11:42:32 ----A---- C:\WINDOWS\system32\Chakra.dll
2022-11-09 11:42:31 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2022-11-09 11:42:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2022-11-09 11:42:27 ----A---- C:\WINDOWS\system32\edgehtml.dll
2022-11-09 11:42:25 ----A---- C:\WINDOWS\system32\jscript9Legacy.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\iasrad.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\iaspolcy.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\iasacct.dll
2022-11-09 11:42:14 ----A---- C:\WINDOWS\system32\ias.dll
2022-11-09 11:42:13 ----A---- C:\WINDOWS\system32\gpedit.dll
2022-11-09 11:42:11 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2022-11-09 11:42:11 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2022-11-09 11:42:10 ----A---- C:\WINDOWS\system32\computecore.dll
2022-11-09 11:42:09 ----A---- C:\WINDOWS\system32\ThreatIntelligence.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\tcbloader.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\skci.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\securekernel.exe
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\hvix64.exe
2022-11-09 11:42:08 ----A---- C:\WINDOWS\system32\hvax64.exe
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\upnphost.dll
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\upnpcont.exe
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\udhisapi.dll
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-11-09 11:42:07 ----A---- C:\WINDOWS\system32\hvloader.dll
2022-11-09 11:42:06 ----A---- C:\WINDOWS\system32\BioIso.exe
2022-11-09 11:42:04 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2022-11-09 11:42:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_SharedExperiences_Rome.dll
2022-11-09 11:42:02 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2022-11-09 11:41:58 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Print.Workflow.Source.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\Print.PrintSupport.Source.dll
2022-11-09 11:41:56 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2022-11-09 11:41:55 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2022-11-09 11:41:55 ----A---- C:\WINDOWS\SYSWOW64\FrameServerMonitorClient.dll
2022-11-09 11:41:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2022-11-09 11:41:54 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Dialogs.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2022-11-09 11:41:53 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2022-11-09 11:41:52 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\Utilman.exe
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\EaseOfAccessDialog.exe
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\console.dll
2022-11-09 11:41:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\devobj.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2022-11-09 11:41:50 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\msasn1.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\keyiso.dll
2022-11-09 11:41:49 ----A---- C:\WINDOWS\SYSWOW64\cfgmgr32.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\tdhres.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\netmsg.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2022-11-09 11:41:48 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\rometadata.dll
2022-11-09 11:41:47 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2022-11-09 11:41:46 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexerCore.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2022-11-09 11:41:45 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\smartscreen.dll
2022-11-09 11:41:44 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\windowsudk.shellcommon.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRCommon.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRClient.dll
2022-11-09 11:41:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRBroker.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2022-11-09 11:41:42 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.FileExplorer.Common.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2022-11-09 11:41:41 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\fcon.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\DmApiSetExtImplDesktop.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppsvc.exe
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppcext.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\sppc.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\ServicingUAPI.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\LsaIso.exe
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2022-11-09 11:41:39 ----A---- C:\WINDOWS\system32\comdlg32.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\shell32.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\RMapi.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\prnntfy.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\OpenWith.exe
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\ntshrui.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2022-11-09 11:41:38 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\Print.PrintSupport.Source.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\APMonUI.dll
2022-11-09 11:41:37 ----A---- C:\WINDOWS\system32\APMon.dll
2022-11-09 11:41:36 ----A---- C:\WINDOWS\system32\Print.Workflow.Source.dll
2022-11-09 11:41:35 ----A---- C:\WINDOWS\system32\drvsetup.dll
2022-11-09 11:41:35 ----A---- C:\WINDOWS\system32\6bea57fb-8dfb-4177-9ae8-42e8b3529933_RuntimeDeviceInstall.dll
2022-11-09 11:41:34 ----A---- C:\WINDOWS\system32\pnputil.exe
2022-11-09 11:41:34 ----A---- C:\WINDOWS\system32\drvinst.exe
2022-11-09 11:41:33 ----A---- C:\WINDOWS\system32\setupapi.dll
2022-11-09 11:41:33 ----A---- C:\WINDOWS\system32\pnppolicy.dll
2022-11-09 11:41:33 ----A---- C:\WINDOWS\system32\newdev.dll
2022-11-09 11:41:31 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2022-11-09 11:41:30 ----A---- C:\WINDOWS\system32\FrameServerMonitorClient.dll
2022-11-09 11:41:30 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2022-11-09 11:41:29 ----A---- C:\WINDOWS\system32\SettingsHandlers_Camera.dll
2022-11-09 11:41:29 ----A---- C:\WINDOWS\system32\AudioHandlers.dll
2022-11-09 11:41:21 ----A---- C:\WINDOWS\system32\LockController.dll
2022-11-09 11:41:20 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2022-11-09 11:41:20 ----A---- C:\WINDOWS\system32\urlmon.dll
2022-11-09 11:41:20 ----A---- C:\WINDOWS\system32\hlink.dll
2022-11-09 11:41:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2022-11-09 11:41:19 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2022-11-09 11:41:18 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2022-11-09 11:41:18 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\omadmclient.exe
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2022-11-09 11:41:17 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2022-11-09 11:41:16 ----A---- C:\WINDOWS\system32\declaredconfiguration.dll
2022-11-09 11:41:16 ----A---- C:\WINDOWS\system32\dcsvc.dll
2022-11-09 11:41:16 ----A---- C:\WINDOWS\system32\configmanager2.dll
2022-11-09 11:41:14 ----A---- C:\WINDOWS\system32\wincredui.dll
2022-11-09 11:41:04 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2022-11-09 11:41:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\imm32.dll
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\d3d9.dll
2022-11-09 11:41:03 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2022-11-09 11:41:02 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2022-11-09 11:41:02 ----A---- C:\WINDOWS\system32\netlogon.dll
2022-11-09 11:41:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2022-11-09 11:41:01 ----A---- C:\WINDOWS\system32\dwmcore.dll
2022-11-09 11:41:01 ----A---- C:\WINDOWS\system32\console.dll
2022-11-09 11:41:00 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2022-11-09 11:40:59 ----A---- C:\WINDOWS\system32\winresume.exe
2022-11-09 11:40:59 ----A---- C:\WINDOWS\system32\browserbroker.dll
2022-11-09 11:40:58 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2022-11-09 11:40:58 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2022-11-09 11:40:57 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2022-11-09 11:40:56 ----A---- C:\WINDOWS\system32\VoiceAccess.exe
2022-11-09 11:40:56 ----A---- C:\WINDOWS\system32\Utilman.exe
2022-11-09 11:40:55 ----A---- C:\WINDOWS\system32\EaseOfAccessDialog.exe
2022-11-09 11:40:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2022-11-09 11:40:54 ----A---- C:\WINDOWS\system32\wermgr.exe
2022-11-09 11:40:54 ----A---- C:\WINDOWS\system32\weretw.dll
2022-11-09 11:40:54 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2022-11-09 11:40:53 ----A---- C:\WINDOWS\system32\wer.dll
2022-11-09 11:40:53 ----A---- C:\WINDOWS\system32\DbgModel.dll
2022-11-09 11:40:53 ----A---- C:\WINDOWS\system32\dbgeng.dll
2022-11-09 11:40:52 ----A---- C:\WINDOWS\system32\utcutil.dll
2022-11-09 11:40:52 ----A---- C:\WINDOWS\system32\diagtrack.dll
2022-11-09 11:40:52 ----A---- C:\WINDOWS\system32\AggregatorHost.exe
2022-11-09 11:40:51 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2022-11-09 11:40:51 ----A---- C:\WINDOWS\system32\devobj.dll
2022-11-09 11:40:51 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2022-11-09 11:40:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2022-11-09 11:40:50 ----A---- C:\WINDOWS\system32\lsaadt.dll
2022-11-09 11:40:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2022-11-09 11:40:49 ----A---- C:\WINDOWS\system32\schannel.dll
2022-11-09 11:40:49 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2022-11-09 11:40:49 ----A---- C:\WINDOWS\system32\keyiso.dll
2022-11-09 11:40:48 ----A---- C:\WINDOWS\system32\msasn1.dll
2022-11-09 11:40:48 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2022-11-09 11:40:47 ----A---- C:\WINDOWS\system32\WinTypes.dll
2022-11-09 11:40:47 ----A---- C:\WINDOWS\system32\rpcss.dll
2022-11-09 11:40:45 ----A---- C:\WINDOWS\system32\wincorlib.dll
2022-11-09 11:40:45 ----A---- C:\WINDOWS\system32\combase.dll
2022-11-09 11:40:42 ----A---- C:\WINDOWS\system32\netmsg.dll
2022-11-09 11:40:41 ----A---- C:\WINDOWS\system32\usermgr.dll
2022-11-09 11:40:40 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2022-11-09 11:40:40 ----A---- C:\WINDOWS\system32\KernelBase.dll
2022-11-09 11:40:39 ----A---- C:\WINDOWS\system32\ntdll.dll
2022-11-09 11:40:39 ----A---- C:\WINDOWS\system32\hal.dll
2022-11-09 11:40:39 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2022-11-09 11:40:38 ----A---- C:\WINDOWS\system32\winload.exe
2022-11-09 11:40:38 ----A---- C:\WINDOWS\system32\tzres.dll
2022-11-09 11:40:38 ----A---- C:\WINDOWS\system32\ci.dll
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\winlogon.exe
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\drivers\http.sys
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\conhost.exe
2022-11-09 11:40:37 ----A---- C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe
2022-11-09 11:40:36 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2022-11-09 11:40:35 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2022-11-09 11:40:34 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2022-11-09 11:40:33 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2022-11-09 11:40:33 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2022-11-09 11:40:31 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2022-11-09 11:40:31 ----A---- C:\WINDOWS\system32\kernel32.dll
2022-11-09 11:40:31 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2022-11-09 11:40:30 ----A---- C:\WINDOWS\system32\ShellAppRuntime.exe
2022-11-09 11:40:30 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2022-11-09 11:40:28 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2022-11-09 11:40:17 ----A---- C:\WINDOWS\system32\Taskbar.dll
2022-11-09 11:40:16 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.XamlInputViewHost.dll
2022-11-09 11:40:16 ----A---- C:\WINDOWS\system32\SharedPCCSP.dll
2022-11-09 11:40:16 ----A---- C:\WINDOWS\system32\PeopleBand.dll
2022-11-09 11:40:15 ----A---- C:\WINDOWS\system32\Windows.Internal.HardwareConfirmator.dll
2022-11-09 11:40:15 ----A---- C:\WINDOWS\system32\SettingsHandlers_DesktopTaskbar.dll
2022-11-09 11:40:15 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2022-11-09 11:40:14 ----A---- C:\WINDOWS\system32\wuauserv.dll
2022-11-09 11:40:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2022-11-09 11:40:14 ----A---- C:\WINDOWS\system32\wuapi.dll
2022-11-09 11:40:13 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2022-11-09 11:40:12 ----A---- C:\WINDOWS\system32\usodocked.dll
2022-11-09 11:40:11 ----A---- C:\WINDOWS\system32\usosvcimpl.dll
2022-11-09 11:40:11 ----A---- C:\WINDOWS\system32\usosvc.dll
2022-11-09 11:40:08 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2022-11-09 11:40:08 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2022-11-09 11:40:08 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2022-11-09 11:40:07 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2022-11-09 11:40:07 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2022-11-09 11:40:06 ----A---- C:\WINDOWS\system32\tdhres.dll
2022-11-09 11:40:06 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2022-11-09 11:40:06 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\SensorService.dll
2022-11-09 11:40:05 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\winbio.dll
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2022-11-09 11:40:04 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\win32kfull.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\win32k.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\container.dll
2022-11-09 11:40:03 ----A---- C:\WINDOWS\system32\bindfltapi.dll
2022-11-09 11:40:02 ----A---- C:\WINDOWS\system32\win32u.dll
2022-11-09 11:40:01 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2022-11-09 11:40:01 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2022-11-09 11:40:01 ----A---- C:\WINDOWS\system32\BingMaps.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\InputService.dll
2022-11-09 11:40:00 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\tquery.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchIndexerCore.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssvp.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssrch.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssprxy.dll
2022-11-09 11:39:59 ----A---- C:\WINDOWS\system32\mssph.dll
2022-11-09 11:39:58 ----A---- C:\WINDOWS\system32\win32kbase.sys
2022-11-09 11:39:58 ----A---- C:\WINDOWS\system32\mssitlb.dll
2022-11-09 11:39:58 ----A---- C:\WINDOWS\system32\msscntrs.dll
2022-11-09 11:39:54 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2022-11-09 11:39:54 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2022-11-09 11:39:54 ----A---- C:\WINDOWS\system32\doclient.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\smartscreen.exe
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\smartscreen.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\GameInput.dll
2022-11-09 11:39:53 ----A---- C:\WINDOWS\system32\cloudAP.dll
2022-11-09 11:39:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2022-11-09 11:39:52 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2022-11-09 11:39:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\rometadata.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\cdp.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\cdd.dll
2022-11-09 11:39:51 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\wfapigp.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\icfupgd.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\fwbase.dll
2022-11-09 11:39:50 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\windows.storage.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\InstallService.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\esent.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\AppxSip.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2022-11-09 11:39:49 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2022-11-09 11:39:46 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2022-11-09 11:39:46 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2022-11-09 11:39:45 ----A---- C:\WINDOWS\system32\BcastDVRCommon.dll
2022-11-09 11:39:45 ----A---- C:\WINDOWS\system32\BcastDVRClient.dll
2022-11-09 11:39:44 ----A---- C:\WINDOWS\system32\BcastDVRBroker.dll
2022-11-09 11:39:43 ----A---- C:\WINDOWS\system32\windowsudkservices.shellcommon.dll
2022-11-09 11:39:43 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2022-11-09 11:39:42 ----A---- C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2022-11-09 11:39:42 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2022-11-09 11:39:41 ----A---- C:\WINDOWS\system32\twinui.dll
2022-11-09 11:39:38 ----A---- C:\WINDOWS\system32\msctf.dll
2022-11-09 11:39:37 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2022-11-09 11:39:27 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2022-11-09 11:39:23 ----A---- C:\WINDOWS\system32\localui.dll
2022-11-09 11:39:22 ----A---- C:\WINDOWS\system32\usbmon.dll
2022-11-09 11:39:20 ----A---- C:\WINDOWS\system32\stobject.dll
2022-11-09 11:39:20 ----A---- C:\WINDOWS\explorer.exe
2022-11-09 11:39:18 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2022-11-09 11:39:15 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\PrinterCleanupTask.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\localspl.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2022-11-09 11:39:14 ----A---- C:\WINDOWS\system32\cmifw.dll
2022-11-09 11:39:12 ----A---- C:\WINDOWS\system32\spoolsv.exe
2022-11-09 11:39:12 ----A---- C:\WINDOWS\splwow64.exe
2022-11-09 11:39:11 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2022-11-09 11:39:10 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2022-11-09 11:39:10 ----A---- C:\WINDOWS\system32\WpcTok.exe
2022-11-09 11:39:09 ----A---- C:\WINDOWS\system32\hspfw.dll
2022-11-09 11:39:09 ----A---- C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2022-11-09 11:38:32 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2022-11-09 11:38:30 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2022-11-09 11:38:28 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2022-11-09 11:37:57 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2022-11-09 11:37:56 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2022-11-09 11:37:56 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2022-11-09 11:37:56 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2022-11-09 11:37:29 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2022-11-09 11:37:28 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2022-11-09 11:37:28 ----A---- C:\WINDOWS\system32\audiodg.exe
2022-11-09 11:37:26 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2022-11-09 11:37:24 ----A---- C:\WINDOWS\system32\audiosrv.dll
2022-11-09 11:37:23 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2022-11-09 11:37:23 ----A---- C:\WINDOWS\system32\AudioEng.dll
2022-11-09 11:37:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2022-11-09 11:37:22 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2022-11-09 11:37:21 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2022-11-09 11:37:21 ----A---- C:\WINDOWS\system32\fcon.dll
2022-11-09 11:37:20 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2022-11-09 11:37:19 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2022-11-09 11:37:19 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2022-11-09 11:37:17 ----A---- C:\WINDOWS\system32\lpasvc.dll
2022-11-09 11:27:37 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2022-11-09 11:27:37 ----A---- C:\WINDOWS\system32\poqexec.exe
2022-11-09 11:26:56 ----HD---- C:\$WinREAgent
2022-10-29 17:12:18 ----D---- C:\Users\DGaap\AppData\Roaming\EasyAntiCheat
2022-10-29 17:10:46 ----D---- C:\Program Files (x86)\EasyAntiCheat
2022-10-26 08:34:43 ----A---- C:\WINDOWS\system32\xgamehelper.exe
2022-10-26 08:34:43 ----A---- C:\WINDOWS\system32\xgamecontrol.exe
2022-10-25 17:29:11 ----D---- C:\WINDOWS\PCHEALTH
2022-10-25 09:54:44 ----D---- C:\Battlestate Games
======List of files/folders modified in the last 1 month======
2022-11-23 18:28:33 ----RD---- C:\Program Files
2022-11-23 18:23:01 ----D---- C:\Program Files (x86)\Google
2022-11-23 18:22:05 ----SHD---- C:\System Volume Information
2022-11-23 18:17:56 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2022-11-23 18:07:38 ----D---- C:\WINDOWS\Temp
2022-11-23 18:06:27 ----D---- C:\WINDOWS\system32\Tasks
2022-11-23 18:06:27 ----D---- C:\Program Files\CCleaner
2022-11-23 18:06:26 ----D---- C:\WINDOWS\Tasks
2022-11-23 18:06:02 ----D---- C:\WINDOWS\SysWOW64
2022-11-23 18:06:02 ----D---- C:\WINDOWS\System32
2022-11-23 18:03:49 ----D---- C:\WINDOWS\AppReadiness
2022-11-23 18:03:35 ----D---- C:\ProgramData\NVIDIA
2022-11-23 18:01:16 ----D---- C:\WINDOWS\system32\sru
2022-11-23 17:57:51 ----HD---- C:\Program Files\WindowsApps
2022-11-22 14:24:16 ----RD---- C:\WINDOWS\Microsoft.NET
2022-11-21 19:54:45 ----D---- C:\WINDOWS\system32\SleepStudy
2022-11-21 19:49:43 ----D---- C:\WINDOWS\SystemTemp
2022-11-21 14:33:09 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2022-11-21 08:16:34 ----D---- C:\WINDOWS\system32\DriverStore
2022-11-21 08:16:34 ----D---- C:\WINDOWS\system32\catroot2
2022-11-21 08:16:34 ----D---- C:\WINDOWS\INF
2022-11-21 08:03:04 ----D---- C:\Program Files\TeamViewer
2022-11-21 08:02:56 ----D---- C:\WINDOWS\ServiceState
2022-11-21 08:02:53 ----ASH---- C:\DumpStack.log.tmp
2022-11-21 00:12:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-21 00:07:40 ----D---- C:\WINDOWS\system32\CatRoot
2022-11-21 00:06:38 ----SHD---- C:\WINDOWS\Installer
2022-11-21 00:06:11 ----D---- C:\ProgramData\Package Cache
2022-11-21 00:06:01 ----RD---- C:\Program Files (x86)
2022-11-21 00:05:22 ----RD---- C:\WINDOWS\assembly
2022-11-21 00:05:21 ----D---- C:\WINDOWS\Logs
2022-11-21 00:04:43 ----D---- C:\WINDOWS\system32\drivers
2022-11-21 00:01:53 ----HD---- C:\ProgramData
2022-11-21 00:01:53 ----D---- C:\Program Files (x86)\Common Files
2022-11-20 23:44:50 ----HD---- C:\WINDOWS\ELAMBKUP
2022-11-20 23:22:13 ----D---- C:\WINDOWS\SYSWOW64\drivers
2022-11-20 23:09:34 ----D---- C:\Windows
2022-11-20 22:53:50 ----D---- C:\WINDOWS\Prefetch
2022-11-20 19:20:29 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2022-11-20 19:20:29 ----D---- C:\Program Files (x86)\Thrustmaster
2022-11-20 19:20:28 ----SD---- C:\Users\DGaap\AppData\Roaming\Microsoft
2022-11-20 18:56:36 ----D---- C:\ProgramData\Microsoft Help
2022-11-19 17:38:58 ----D---- C:\WINDOWS\apppatch
2022-11-19 15:36:17 ----A---- C:\WINDOWS\system32\xgameruntime.dll
2022-11-19 15:36:17 ----A---- C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gamingservicesproxy.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gameplatformservices.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gamelaunchhelper.dll
2022-11-19 15:36:15 ----A---- C:\WINDOWS\system32\gameconfighelper.dll
2022-11-17 15:48:22 ----D---- C:\Users\DGaap\AppData\Roaming\com.adobe.dunamis
2022-11-15 06:45:40 ----A---- C:\WINDOWS\system32\nvapi64.dll
2022-11-12 17:36:33 ----D---- C:\Users\DGaap\AppData\Roaming\TeamViewer
2022-11-12 17:32:12 ----RSD---- C:\WINDOWS\Fonts
2022-11-12 10:19:20 ----D---- C:\WINDOWS\system32\config
2022-11-11 12:31:41 ----D---- C:\WINDOWS\WinSxS
2022-11-11 08:50:41 ----D---- C:\Program Files\Microsoft Office
2022-11-11 08:45:57 ----D---- C:\ProgramData\NVIDIA Corporation
2022-11-11 08:45:48 ----D---- C:\Program Files\NVIDIA Corporation
2022-11-11 08:45:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2022-11-11 04:21:10 ----A---- C:\WINDOWS\system32\GameInputRedist.dll
2022-11-11 02:35:18 ----A---- C:\WINDOWS\SYSWOW64\GameInputRedist.dll
2022-11-10 20:39:50 ----D---- C:\Users\DGaap\AppData\Roaming\WeMod
2022-11-09 17:11:42 ----D---- C:\WINDOWS\SoftwareDistribution
2022-11-09 14:47:52 ----D---- C:\Users\DGaap\AppData\Roaming\MPC-HC
2022-11-09 14:47:25 ----DC---- C:\WINDOWS\Panther
2022-11-09 14:47:24 ----D---- C:\WINDOWS\debug
2022-11-09 11:55:56 ----D---- C:\WINDOWS\UUS
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\migration
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2022-11-09 11:55:56 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2022-11-09 11:55:55 ----SD---- C:\WINDOWS\system32\en-US
2022-11-09 11:55:55 ----SD---- C:\WINDOWS\system32\cs-CZ
2022-11-09 11:55:55 ----D---- C:\WINDOWS\SystemResources
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\zh-CN
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\WinMetadata
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\wbem
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\uk-UA
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\Sgrm
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\setup
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\ru-RU
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\ro-RO
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\nl-NL
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\migration
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\ko-KR
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\he-IL
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\fr-FR
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\fi-FI
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\drivers\UMDF
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\drivers\en-US
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\Boot
2022-11-09 11:55:55 ----D---- C:\WINDOWS\system32\appraiser
2022-11-09 11:55:54 ----D---- C:\WINDOWS\ShellExperiences
2022-11-09 11:55:54 ----D---- C:\WINDOWS\ShellComponents
2022-11-09 11:55:54 ----D---- C:\WINDOWS\bcastdvr
2022-11-09 11:55:52 ----D---- C:\WINDOWS\system32\CodeIntegrity
2022-11-09 11:47:27 ----D---- C:\WINDOWS\CbsTemp
2022-11-09 11:41:40 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2022-11-09 10:59:34 ----D---- C:\WINDOWS\system32\MRT
2022-11-09 10:55:58 ----AC---- C:\WINDOWS\system32\MRT.exe
2022-11-07 08:33:42 ----D---- C:\Program Files\HPPrintScanDoctor
2022-11-01 11:50:10 ----D---- C:\Games
2022-10-25 09:54:54 ----D---- C:\Users\DGaap\AppData\Roaming\Battlestate Games
2022-10-24 09:43:16 ----D---- C:\Users\DGaap\AppData\Roaming\vlc
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 asstahci64;asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [2022-11-20 98696]
R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\WINDOWS\system32\DRIVERS\cm_km.sys [2022-02-17 237288]
R0 IntelPMT;@intelpmt.inf,%IntelPMT.SVCDESC%;Intel(R) Platform Monitoring Technology Service; C:\WINDOWS\System32\drivers\IntelPMT.sys [2022-05-07 87552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2022-05-07 87392]
R0 klupd_klif_arkmon;klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [2022-09-29 382304]
R0 klupd_klif_klbg;klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [2022-09-29 189520]
R0 PRM;@prm.inf,%PRM.SvcDesc%;Microsoft PRM Driver; C:\WINDOWS\System32\DriverStore\FileRepository\prm.inf_amd64_de435dc5c75d64a5\PRM.sys [2022-05-07 66896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2022-05-07 81920]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2022-05-07 116056]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2022-05-07 173424]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2022-05-07 90112]
R1 klbackupdisk;Kaspersky Lab klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [2022-02-17 105280]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\WINDOWS\system32\DRIVERS\klbackupflt.sys [2022-02-17 206600]
R1 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2022-02-17 119568]
R1 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2022-02-17 522504]
R1 klgse;Kaspersky Lab Security Extender Driver; C:\WINDOWS\system32\DRIVERS\klgse.sys [2022-10-01 727696]
R1 klhk;Kaspersky Lab service driver; C:\WINDOWS\system32\DRIVERS\klhk.sys [2022-10-01 1717424]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2022-02-17 1049864]
R1 klim6;@oem39.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2022-02-17 90896]
R1 klpd;Kaspersky Lab format recognizer driver; C:\WINDOWS\system32\DRIVERS\klpd.sys [2022-02-17 78088]
R1 klpnpflt;Kaspersky Lab klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [2022-02-17 88328]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2022-02-17 150280]
R1 klwtp;KLwtp - WFP callout traffic inspector; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2022-02-17 325400]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2022-02-17 294680]
R2 bfs;@%systemroot%\system32\drivers\bfs.sys,-100; C:\WINDOWS\system32\drivers\bfs.sys [2022-10-12 91480]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2022-11-09 173400]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2022-10-12 569344]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2022-10-12 90112]
R3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2022-11-09 2048000]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2022-11-09 139264]
R3 gameflt;@oem49.inf,%ServiceName%;gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_6284700d01a44dd9\gameflt.sys [2022-10-26 150976]
R3 iaLPSS2_GPIO2_ADL;@oem51.inf,%iaLPSS2_GPIO2_ADL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [2022-06-23 140960]
R3 ibtusb;@oem61.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\System32\DriverStore\FileRepository\ibtusb.inf_amd64_43b149f68e4e76c9\ibtusb.sys [2022-11-21 7418440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2021-12-08 6569528]
R3 IntelGNA;@oem54.inf,%IntelGNA.SVCDESC%;Intel(R) GNA Scoring Accelerator service; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [2022-08-10 88784]
R3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [2022-11-17 244832]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2022-02-17 104728]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2022-02-17 107328]
R3 kltap;@oem29.inf,%devicedescription%;Kaspersky Security Data Escort Adapter; C:\WINDOWS\System32\drivers\kltap.sys [2021-02-19 55592]
R3 klupd_klif_klark;klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [2022-09-29 360000]
R3 klupd_klif_mark;klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [2022-10-03 270672]
R3 MEIx64;@oem58.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_6467379f0b0f181f\x64\TeeDriverW10x64.sys [2022-11-20 319064]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-200; C:\WINDOWS\system32\drivers\msquic.sys [2022-05-07 404336]
R3 Netwtw10;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 10 64 Bit; C:\WINDOWS\System32\drivers\Netwtw10.sys [2022-11-20 5067328]
R3 NVHDA;@oem13.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2022-10-13 129000]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\nvlddmkm.sys [2022-11-15 57872888]
R3 NvModuleTracker;@oem16.inf,%ServiceName%;NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [2022-07-14 45656]
R3 nvvad_WaveExtensible;@oem19.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2022-07-15 59368]
R3 nvvhci;@oem48.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2022-07-14 60112]
S0 AppleSSD;@AppleSSD.inf,%DevDesc1%;Apple Solid State Drive Device; C:\WINDOWS\System32\drivers\AppleSSD.sys [2022-05-07 113496]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2022-05-07 79184]
S0 ebdrv0;@netevbd0a.inf,%vbd_srv_desc%;QLogic Legacy Ethernet Adapter VBD; C:\WINDOWS\System32\drivers\evbd0a.sys [2022-05-07 3424104]
S0 GenPass;@genpass.inf,%GenPass.SVCDESC%;Microsoft GenPass Driver; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [2022-05-07 62800]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2022-05-07 320880]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2022-05-07 885584]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2022-05-07 187224]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2021-02-19 41656]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2022-05-07 125280]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2022-05-07 138600]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2022-05-07 81752]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2022-05-07 101224]
S0 mpi3drvi;mpi3drvi; C:\WINDOWS\System32\drivers\mpi3drvi.sys [2022-05-07 90472]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2022-05-07 206160]
S0 nvmedisk;@nvmedisk.inf,%nvmedisk.SvcDesc%;Microsoft NVMe disk driver; C:\WINDOWS\System32\drivers\nvmedisk.sys [2022-05-07 91496]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2022-05-07 59752]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2022-05-07 69464]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2022-10-12 181600]
S0 pvscsi;@pvscsii.inf,%pvscsi.DiskName%;pvscsi Storage Controller Driver; C:\WINDOWS\System32\drivers\pvscsii.sys [2022-05-07 45408]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2022-05-07 75104]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2022-10-12 57344]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2022-10-12 733184]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2022-05-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2022-05-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2022-10-12 49152]
S3 atvi-randgrid_sr;atvi-randgrid_sr; \??\C:\Games\Steam\steamapps\common\Call of Duty HQ\randgrid.sys [2022-11-20 2513192]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2022-09-28 532480]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2022-11-09 143360]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2022-10-12 143360]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2022-11-09 86016]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2022-05-07 90112]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2022-05-07 99672]
S3 cpuz154;cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [2022-11-21 40976]
S3 ExecutionContext;@%SystemRoot%\System32\Drivers\ExecutionContext.sys,-101; C:\WINDOWS\System32\Drivers\ExecutionContext.sys [2022-10-12 75088]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_cea150c98a1ca844\genericusbfn.sys [2022-05-07 61440]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2022-05-07 91472]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2022-10-12 139264]
S3 HidSpiCx;HidSpi KMDF Class Extension; C:\WINDOWS\system32\drivers\HidSpiCx.sys [2022-10-12 126976]
S3 Hsp;@hsp.inf,%Hsp.SVCDESC%;Microsoft Pluton Service; C:\WINDOWS\System32\drivers\Hsp.sys [2022-05-07 124264]
S3 hvservice;@hvservice.inf,%hvservice.SvcDesc%;Microsoft Hypervisor Service Driver; C:\WINDOWS\System32\drivers\hvservice.sys [2022-10-12 91472]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2022-05-07 61440]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2022-05-07 1854832]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2022-05-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2022-05-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2022-05-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2022-05-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2022-05-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2022-05-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2022-05-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2022-05-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2022-05-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2022-05-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2022-05-07 559976]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2022-10-12 77824]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2022-05-07 65536]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2022-05-07 99688]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2022-05-07 566632]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2022-05-07 99664]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2022-10-12 454656]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2022-05-07 98304]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2022-05-07 1132392]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2022-05-07 147304]
S3 NDKPerf;NDKPerf Driver; C:\WINDOWS\system32\drivers\NDKPerf.sys [2022-05-07 83288]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2022-05-07 107872]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2022-10-12 394592]
S3 P9Rdr;@%SystemRoot%\System32\drivers\p9rdr.sys,-100; C:\WINDOWS\System32\drivers\p9rdr.sys [2022-05-07 148816]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2022-10-12 177504]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2022-05-07 53248]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2022-05-07 61440]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2022-10-12 1000800]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2022-05-07 75112]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2022-09-26 173040]
R2 AVP21.3;Služba Kaspersky Anti-Virus 21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe [2022-02-17 184768]
R2 cbdhsvc_4469e8e;Uživatelská služba schránky_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 CDPUserSvc_4469e8e;Uživatelská služba platformy připojených zařízení_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2022-11-11 12515768]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R2 GameInput Service;GameInput Service; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [2022-11-11 91600]
R2 GamingServices;Gaming Services; C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServices.exe [2022-11-19 75256]
R2 GamingServicesNet;Gaming Services; C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [2022-11-19 75256]
R2 HPPrintScanDoctorService;HP Print Scan Doctor Service; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [2022-11-06 228848]
R2 ibtsiva;@oem4.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe [2021-07-22 628616]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2022-08-30 1003128]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdsi.inf_amd64_5bcaff6c9e313cf1\Display.NvContainer\NVDisplay.Container.exe [2022-11-15 1015296]
R2 OneSyncSvc_4469e8e;Hostitel synchronizace_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 AarSvc_4469e8e;Agent Activation Runtime_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 CCleanerPerformanceOptimizerService;CCleaner Performance Optimizer Service; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [2022-10-20 1185616]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R3 InventorySvc;@%SystemRoot%\system32\inventorysvc.dll,-501; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
R3 NPSMSvc_4469e8e;NPSMSvc_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
R3 PimIndexMaintenanceSvc_4469e8e;Data kontaktů_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S2 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S2 edgeupdate;Microsoft Edge Update Service (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-05-21 214936]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2022-06-24 168632]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BcastDVRUserService_4469e8e;Uživatelská služba pro GameDVR a vysílání her_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2022-10-04 9811832]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BluetoothUserService_4469e8e;Služba pro podporu uživatelů Bluetooth_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 CaptureService_4469e8e;CaptureService_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 ConsentUxUserSvc_4469e8e;Uživatelská služba ConsentUX_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2022-05-07 406336]
S3 CredentialEnrollmentManagerUserSvc_4469e8e;CredentialEnrollmentManagerUserSvc_4469e8e; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2022-05-07 406336]
S3 dcsvc;@%systemroot%\system32\dcsvc,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DeviceAssociationBrokerSvc_4469e8e;DeviceAssociationBroker_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicePickerUserSvc_4469e8e;DevicePicker_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevicesFlowUserSvc_4469e8e;Tok zařízení_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2022-05-07 114688]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2022-10-29 811496]
S3 edgeupdatem;Microsoft Edge Update Service (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-05-21 214936]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2022-09-28 45992]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 FrameServerMonitor;@%systemroot%\system32\FrameServerMonitor.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 FvSvc;NVIDIA FrameView SDK service; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [2022-09-07 401960]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files\Google\Chrome\Application\107.0.5304.107\elevation_service.exe [2022-11-08 1730328]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2022-06-24 168632]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 klvssbridge64_21.3;Kaspersky Volume Shadow Copy Service Bridge 21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe [2021-02-19 479280]
S3 KSDE5.3;Služba Kaspersky VPN Secure Connection 5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [2022-02-17 447104]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 McpManagementService;@%SystemRoot%\system32\McpManagementService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 MessagingService_4469e8e;Služba zasílání zpráv_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\elevation_service.exe [2022-11-21 1755080]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2022-06-08 231360]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 NPSMSvc;@%SystemRoot%\system32\npsm.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 P9RdrService;@%systemroot%\system32\p9rdrservice.dll,-102; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 P9RdrService_4469e8e;P9RdrService_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PenService;@%SystemRoot%\system32\PenService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PenService_4469e8e;PenService_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2022-05-07 241664]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PrintWorkflowUserSvc_4469e8e;PrintWorkflow_4469e8e; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
S4 CDPSvc;Služba platformy připojených zařízení; C:\WINDOWS\system32\svchost.exe [2022-05-07 79920]
S4 DiagTrack;Propojená uživatelská prostředí a telemetrie; C:\WINDOWS\System32\svchost.exe [2022-05-07 79920]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivní kontrola logu
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Pozn: Log RSIT ve Win10 - 11 dávat nemusíte. RSIT není plně kompatibilní s 64b systémy.
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {13B84B47-BEE4-4DF2-B03E-63283C6E9C4A} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.53\Installer\setup.exe --handle-crash="$(ProcessPath)" (No File)
Task: {21D4F86F-928F-4908-98D0-D989D9641E93} - System32\Tasks\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {7C2190D2-2BE1-43D7-8ADD-1626630651FD} - System32\Tasks\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {7FD81627-C62F-45FE-B37C-F13FDD61A837} - System32\Tasks\iTop BLACK FRIDAY Task (One-Time) => C:\Program Files\iTop Screen Recorder\Pub\isrbfr.exe /isr (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
EmptyTemp:
End
Pozn: Log RSIT ve Win10 - 11 dávat nemusíte. RSIT není plně kompatibilní s 64b systémy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: preventivní kontrola logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 26-11-2022
Ran by DGaap (29-11-2022 09:27:46) Run:1
Running from C:\Users\DGaap\Desktop
Loaded Profiles: DGaap
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {13B84B47-BEE4-4DF2-B03E-63283C6E9C4A} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.53\Installer\setup.exe --handle-crash="$(ProcessPath)" (No File)
Task: {21D4F86F-928F-4908-98D0-D989D9641E93} - System32\Tasks\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {7C2190D2-2BE1-43D7-8ADD-1626630651FD} - System32\Tasks\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {7FD81627-C62F-45FE-B37C-F13FDD61A837} - System32\Tasks\iTop BLACK FRIDAY Task (One-Time) => C:\Program Files\iTop Screen Recorder\Pub\isrbfr.exe /isr (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13B84B47-BEE4-4DF2-B03E-63283C6E9C4A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13B84B47-BEE4-4DF2-B03E-63283C6E9C4A}" => removed successfully
C:\WINDOWS\System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MicrosoftEdgeShadowStackRollbackTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{21D4F86F-928F-4908-98D0-D989D9641E93}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21D4F86F-928F-4908-98D0-D989D9641E93}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C2190D2-2BE1-43D7-8ADD-1626630651FD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C2190D2-2BE1-43D7-8ADD-1626630651FD}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7FD81627-C62F-45FE-B37C-F13FDD61A837}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FD81627-C62F-45FE-B37C-F13FDD61A837}" => removed successfully
C:\WINDOWS\System32\Tasks\iTop BLACK FRIDAY Task (One-Time) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iTop BLACK FRIDAY Task (One-Time)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} => moved successfully
C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15} => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 28594737 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 523105109 B
Windows/system/drivers => 6311810 B
Edge => 0 B
Chrome => 230873562 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 33736 B
NetworkService => 33736 B
DGaap => 45699372 B
RecycleBin => 50529749 B
EmptyTemp: => 844.2 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:28:49 ====
Ran by DGaap (29-11-2022 09:27:46) Run:1
Running from C:\Users\DGaap\Desktop
Loaded Profiles: DGaap
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {13B84B47-BEE4-4DF2-B03E-63283C6E9C4A} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\105.0.1343.53\Installer\setup.exe --handle-crash="$(ProcessPath)" (No File)
Task: {21D4F86F-928F-4908-98D0-D989D9641E93} - System32\Tasks\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {7C2190D2-2BE1-43D7-8ADD-1626630651FD} - System32\Tasks\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-24] (Google LLC -> Google LLC)
Task: {7FD81627-C62F-45FE-B37C-F13FDD61A837} - System32\Tasks\iTop BLACK FRIDAY Task (One-Time) => C:\Program Files\iTop Screen Recorder\Pub\isrbfr.exe /isr (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13B84B47-BEE4-4DF2-B03E-63283C6E9C4A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13B84B47-BEE4-4DF2-B03E-63283C6E9C4A}" => removed successfully
C:\WINDOWS\System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MicrosoftEdgeShadowStackRollbackTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{21D4F86F-928F-4908-98D0-D989D9641E93}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21D4F86F-928F-4908-98D0-D989D9641E93}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{77BF7517-1C9A-41DA-8119-8932F1CCC7E8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C2190D2-2BE1-43D7-8ADD-1626630651FD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C2190D2-2BE1-43D7-8ADD-1626630651FD}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{5A360175-499F-4505-B113-6857DE6CDFCB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7FD81627-C62F-45FE-B37C-F13FDD61A837}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FD81627-C62F-45FE-B37C-F13FDD61A837}" => removed successfully
C:\WINDOWS\System32\Tasks\iTop BLACK FRIDAY Task (One-Time) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iTop BLACK FRIDAY Task (One-Time)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} => moved successfully
C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15} => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 28594737 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 523105109 B
Windows/system/drivers => 6311810 B
Edge => 0 B
Chrome => 230873562 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 33736 B
NetworkService => 33736 B
DGaap => 45699372 B
RecycleBin => 50529749 B
EmptyTemp: => 844.2 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:28:49 ====
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivní kontrola logu
Smazáno, log již vypadá OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: preventivní kontrola logu
Děkuju, pomohlo moc 
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivní kontrola logu
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?