Zdravím mám problém s místem na SSD, když jsem se podíval do aplikací zjistil jsem že hra Stronghold má skoro 40Gb zdá se mi to podezřelé pochybuji že by měla mít tolik, a při pokusu o odinstalaci se nepodaří kvůli chybě v příloze:
Ještě poprosím o preventivní kontrolu logu, předem děkuji za pomoc:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2020-10-17 16:18:34
Microsoft Windows 10 Pro
System drive C: has 8 GB (3%) free of 243 GB
Total RAM: 8094 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:18:40, on 17. 10. 2020
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE13DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\86.0.622.43\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [TeamsMachineInstaller] %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [NIRegistrationWizard] C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe -autoDiscover 1 -displayIfNoneFound 0 -displayRegisterOptions 1 -sleepIfNoneFound 0 -locale 1029
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\Martin\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: NI Error Reporting (64-bit).lnk = C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe
O4 - Global Startup: NI Error Reporting.lnk = C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
O4 - Global Startup: SPDriverInstall.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft SDKs\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O16 - DPF: {538793D5-659C-4639-A56C-A179AD87ED44} (Cisco AnyConnect Secure Mobility Client Web Control) - https://vpn.upce.cz/CACHE/stc/4/binaries/vpnweb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{123b23c7-d888-4524-a87a-74a59b42da65}: NameServer = 195.113.144.194,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{50fa2c22-c4bd-424b-9a3d-2ea02b524226}: NameServer = 8.8.8.8
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_8bd5e - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
--
End of file - 8044 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b924d97b-2363-42d0-98df-dc627bd30271 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3d77504f-1ab3-4d3d-ba88-4f20279eeecf -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a5432642-6f86-4987-b946-b92648ef6919 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a4f014d3-9822-48e6-8cdc-4ced5550a081 -LifetimeId:b08a4ad8-0aec-4c2f-9a42-524a9e2fa1e7 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\System32\svchost.exe -k NetworkService -s TermService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s UmRdpService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -s CertPropSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b3fd3965-29cc-4e9e-80bd-4ef19a248701 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-916402ea-032e-4f2d-b1cb-ce898f7167b4 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0fad7c40-36db-4fdd-9a2c-1494b1d39be6 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-fee3f545-f9f5-4cb2-b577-dea4ce0a3765 -LifetimeId:62abc252-a180-4b61-89d5-146b895b83b6 -DeviceGroupId:WpdFsGroup -HostArg:0
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s SessionEnv
dashost.exe {22a5523f-30b1-422c-9f380511252c6946}
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Eaphost
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s dot3svc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Astrill\ASOvpnSvc.exe" --run
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\WINDOWS\system32\btwrsupportservice.exe
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
"C:\WINDOWS\system32\CxAudMsg64.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files\Elantech\ETDService.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\ShrewSoft\VPN Client\iked.exe" -service
C:\Windows\system32\hasplms.exe -run
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe" -service
"C:\Users\Martin\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe" "C:\Users\Martin\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\checkupdate.exe"
C:\WINDOWS\SysWOW64\lkads.exe
C:\Windows\system32\MicronCacheMonitor.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe"
"C:\Program Files (x86)\National Instruments\MAX\nimxs.exe"
"C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe" -s
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe" -start
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\Windows\SysWOW64\vmnetdhcp.exe
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
C:\Windows\SysWOW64\vmnat.exe
C:\WINDOWS\SysWOW64\lktsrv.exe
C:\WINDOWS\SysWOW64\lkcitdl.exe
"C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe"
"C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe"
"C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe"
"C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 99389867-bdf5-46f2-80a1-1cc55cb02c86 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files (x86)\PC Remote Receiver\MonectServer.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe" -system
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
NIWebServiceContainer.exe {B6FC8D60-6FE8-4F88-B460-336501A3282D} 7668 1160 21
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe" -user
NIWebServiceContainer.exe {2C8F29CF-6005-454D-AA10-08C2E53A38C3} 7668 1192 21
NIWebServiceContainer.exe {B61E7266-9D23-4CD4-A4FE-825943A74174} 7668 1232 21
NIWebServiceContainer.exe {850CB2AE-97EA-475D-B0AE-E47477DC19E3} 7668 1248 21
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
NIWebServiceContainer.exe {A598E1F6-8580-402F-A978-0D29002C3540} 8072 1172 21
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
igfxEM.exe
igfxHK.exe
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
igfxTray.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20092.108.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --restore-last-session
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Martin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Martin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=86.0.4240.75 --initial-client-data=0xd4,0xd8,0xdc,0xb0,0xe0,0x7ffb88926e00,0x7ffb88926e10,0x7ffb88926e20
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1648 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --service-sandbox-type=network --mojo-platform-channel-handle=1744 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2352 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --extension-process --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3036 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3496 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --extension-process --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3636 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --extension-process --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3644 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --extension-process --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4264 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --extension-process --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4488 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --extension-process --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4584 /prefetch:1
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" XGpuTrayIcon"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5864 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Users\Martin\AppData\Local\Apps\2.0\9YJ9P1TT.DNN\D5DOCZWT.5KD\lsb...tion_91a10ba61c75c82d_0001.0006_f185aae74f563194\LSB.exe"
taskhostw.exe $(Arg0)
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s upnphost
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s SmsRouter
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XblAuthManager
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6832 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6364 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4860 /prefetch:1
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1636,9543362533197231760,14849149397642973041,131072 --lang=cs --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6900 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
"E:\Stažené soubory\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.445 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_445.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.201.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.201.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.445 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_445.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
nplv2014win32.dll
nplv2015win32.dll
nplv2015win64.dll
nppdf32.dll
C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\
firmy.cz-213910.xml
mapy.cz-213910.xml
seznam-avast.xml
seznam.cz-213910.xml
videa.seznam.cz-213910.xml
zbozi.cz-213910.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\86.0.622.43\BHO\ie_to_edge_bho_64.dll [2020-10-14 519056]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-07-27 210632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\86.0.622.43\BHO\ie_to_edge_bho.dll [2020-10-14 403856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-07-27 157904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-03-13 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-13 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-19 84992]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-07 3242696]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-06-26 366720]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-08-19 17111056]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-08-19 193008]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-10-04 2462536]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-10-04 2800296]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-09-19 557768]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2014-08-28 1235336]
"NIRegistrationWizard"=C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [2013-04-19 847000]
"com.squirrel.Teams.Teams"=C:\Users\Martin\AppData\Local\Microsoft\Teams\Update.exe [2020-10-16 2452664]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-03-19 22245560]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2015-06-12 561672]
"ADSKAppManager"=C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [2014-12-05 493960]
"Cisco AnyConnect Secure Mobility Agent for Windows"=C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2015-10-23 708496]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-12-16 601424]
"TeamsMachineInstaller"=C:\Program Files\Teams Installer\Teams.exe --checkInstall --source=PROPLUS []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
NI Error Reporting (64-bit).lnk - C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe
NI Error Reporting.lnk - C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
SPDriverInstall.lnk - C:\Program Files\MediaTek\SP Driver\SPDriverInstall
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"DisableCAD"=1
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.X264"=x264vfw64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2020-10-17 15:42:22 ----D---- C:\Program Files\VS Revo Group
2020-10-16 02:23:17 ----D---- C:\WINDOWS\Panther
2020-10-16 00:35:36 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\wmp.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\fvewiz.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\fveui.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\fvecpl.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\fveapibase.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\fveapi.dll
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2020-10-16 00:35:35 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2020-10-16 00:35:34 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2020-10-16 00:35:34 ----A---- C:\WINDOWS\system32\cdp.dll
2020-10-16 00:35:34 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2020-10-16 00:35:28 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2020-10-16 00:35:27 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2020-10-16 00:35:27 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2020-10-16 00:35:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2020-10-16 00:35:27 ----A---- C:\WINDOWS\system32\HolographicRuntimes.dll
2020-10-16 00:35:27 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2020-10-16 00:35:27 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2020-10-16 00:35:27 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2020-10-16 00:35:25 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2020-10-16 00:35:24 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2020-10-16 00:35:24 ----A---- C:\WINDOWS\system32\winmde.dll
2020-10-16 00:35:24 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2020-10-16 00:35:24 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2020-10-16 00:35:23 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2020-10-16 00:35:23 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2020-10-16 00:35:23 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-10-16 00:35:23 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-10-16 00:35:23 ----A---- C:\WINDOWS\system32\mfds.dll
2020-10-16 00:35:23 ----A---- C:\WINDOWS\system32\mfcore.dll
2020-10-16 00:35:23 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-10-16 00:35:22 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2020-10-16 00:35:22 ----A---- C:\WINDOWS\system32\mf.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\scrptadm.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\mavinject.exe
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\gpscript.exe
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\gpscript.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\AppVTerminator.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\AppVSentinel.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\AppVClientPS.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\appmgmts.dll
2020-10-16 00:35:21 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\scrptadm.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\pwcreator.exe
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\mavinject.exe
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\gpscript.exe
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\gpscript.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\drivers\csc.sys
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\CscMig.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVTerminator.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVSentinel.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVNice.exe
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\appvetwstreamingux.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\appvetwclientres.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AppVClientPS.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\appmgmts.dll
2020-10-16 00:35:20 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2020-10-16 00:35:19 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2020-10-16 00:35:19 ----A---- C:\WINDOWS\system32\ScriptRunner.exe
2020-10-16 00:35:19 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2020-10-16 00:35:19 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2020-10-16 00:35:19 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-10-16 00:35:17 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2020-10-16 00:35:17 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2020-10-16 00:35:17 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2020-10-16 00:35:17 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2020-10-16 00:35:17 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2020-10-16 00:35:17 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2020-10-16 00:35:17 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2020-10-16 00:35:15 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2020-10-16 00:35:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2020-10-16 00:35:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2020-10-16 00:35:15 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2020-10-16 00:35:15 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2020-10-16 00:35:15 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2020-10-16 00:35:15 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\typeperf.exe
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\relog.exe
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\logman.exe
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2020-10-16 00:35:14 ----A---- C:\WINDOWS\SYSWOW64\diskperf.exe
2020-10-16 00:35:13 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2020-10-16 00:35:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2020-10-16 00:35:12 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\gpupdate.exe
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\fdWSD.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\fdSSDP.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2020-10-16 00:35:11 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2020-10-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-10-16 00:35:09 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2020-10-16 00:35:09 ----A---- C:\WINDOWS\system32\tsgqec.dll
2020-10-16 00:35:09 ----A---- C:\WINDOWS\system32\Spectrum.exe
2020-10-16 00:35:09 ----A---- C:\WINDOWS\system32\provmigrate.dll
2020-10-16 00:35:09 ----A---- C:\WINDOWS\system32\mstsc.exe
2020-10-16 00:35:09 ----A---- C:\WINDOWS\system32\CPFilters.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\wsp_health.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\typeperf.exe
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\tracerpt.exe
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\systemreset.exe
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\reseteng.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\relog.exe
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\nshwfp.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\nltest.exe
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\nettrace.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\mstscax.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\msimsg.dll
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\logman.exe
2020-10-16 00:35:08 ----A---- C:\WINDOWS\system32\diskperf.exe
2020-10-16 00:35:07 ----A---- C:\WINDOWS\system32\msi.dll
2020-10-16 00:35:07 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-10-16 00:35:07 ----A---- C:\WINDOWS\system32\ieproxy.dll
2020-10-16 00:35:07 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2020-10-16 00:35:07 ----A---- C:\WINDOWS\system32\ieframe.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\WinHvEmulation.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\werui.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\werconcpl.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\mshtml.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\jscript.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\gpupdate.exe
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\gpedit.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\fdWSD.dll
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\autofmt.exe
2020-10-16 00:35:05 ----A---- C:\WINDOWS\system32\autoconv.exe
2020-10-16 00:35:03 ----A---- C:\WINDOWS\system32\sdshext.dll
2020-10-16 00:35:03 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2020-10-16 00:35:03 ----A---- C:\WINDOWS\system32\sdengin2.dll
2020-10-16 00:35:03 ----A---- C:\WINDOWS\system32\sdclt.exe
2020-10-16 00:35:03 ----A---- C:\WINDOWS\system32\resutils.dll
2020-10-16 00:35:03 ----A---- C:\WINDOWS\system32\clusapi.dll
2020-10-16 00:35:02 ----A---- C:\WINDOWS\system32\tcbloader.dll
2020-10-16 00:35:02 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2020-10-16 00:35:02 ----A---- C:\WINDOWS\system32\skci.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\SYSWOW64\msvbvm60.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\SYSWOW64\cmdial32.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\vertdll.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\securekernel.exe
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\ResourceMapper.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\hvloader.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\hvix64.exe
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\hvax64.exe
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\fdSSDP.dll
2020-10-16 00:35:01 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\cryptext.dll
2020-10-16 00:35:00 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\es.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2020-10-16 00:34:59 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2020-10-16 00:34:58 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2020-10-16 00:34:58 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2020-10-16 00:34:58 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2020-10-16 00:34:58 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2020-10-16 00:34:58 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2020-10-16 00:34:58 ----A---- C:\WINDOWS\SYSWOW64\appidtel.exe
2020-10-16 00:34:58 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2020-10-16 00:34:57 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2020-10-16 00:34:57 ----A---- C:\WINDOWS\SYSWOW64\ulib.dll
2020-10-16 00:34:57 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2020-10-16 00:34:57 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2020-10-16 00:34:57 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\ttdwriter.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\kernel.appcore.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\directml.dll
2020-10-16 00:34:56 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\ttdrecordcpu.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\GraphicsCapture.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2020-10-16 00:34:55 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\sxstrace.exe
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\sxs.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\sppcomapi.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\spopk.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeHelper.dll
2020-10-16 00:34:54 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2020-10-16 00:34:53 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\system32\vbscript.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\system32\uxlib.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\system32\unattend.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\system32\setupcln.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\system32\migisol.dll
2020-10-16 00:34:53 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2020-10-16 00:34:53 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\sppnp.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\rasmans.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\rascustom.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\PnPUnattend.exe
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\npmproxy.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\netprofm.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\netiougc.exe
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\netbtugc.exe
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\djoin.exe
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2020-10-16 00:34:52 ----A---- C:\WINDOWS\system32\cmdial32.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\msxml3r.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\msxml3.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\msIso.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\iertutil.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\edgeIso.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\DismApi.dll
2020-10-16 00:34:50 ----A---- C:\WINDOWS\system32\Dism.exe
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\tdh.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\policymanager.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\gpsvc.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\gpapi.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\gdi32full.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\EsdSip.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\dnscacheugc.exe
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\deploymentcsphelper.exe
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\d3d9.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\cryptui.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\cryptext.dll
2020-10-16 00:34:49 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\winlogon.exe
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\usermgr.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\MuiUnattend.exe
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\lpk.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\KernelBase.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\fontsub.dll
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2020-10-16 00:34:48 ----A---- C:\WINDOWS\system32\dciman32.dll
2020-10-16 00:34:47 ----A---- C:\WINDOWS\system32\wersvc.dll
2020-10-16 00:34:47 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2020-10-16 00:34:47 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2020-10-16 00:34:47 ----A---- C:\WINDOWS\system32\ntdll.dll
2020-10-16 00:34:47 ----A---- C:\WINDOWS\system32\Faultrep.dll
2020-10-16 00:34:47 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2020-10-16 00:34:47 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\WinTypes.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\wincorlib.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\wermgr.exe
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\WerFault.exe
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\weretw.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\wer.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\userenv.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\tzres.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\profsvc.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\oleaut32.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\diagtrack.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\dcntel.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\combase.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\ci.dll
2020-10-16 00:34:46 ----A---- C:\WINDOWS\system32\aepic.dll
2020-10-16 00:34:45 ----A---- C:\WINDOWS\system32\twinui.dll
2020-10-16 00:34:45 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2020-10-16 00:34:45 ----A---- C:\WINDOWS\system32\lsm.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\TabSvc.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\sxstrace.exe
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\sxs.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\sppwinob.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\sppsvc.exe
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\sppobjs.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\sppcext.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\spopk.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\spbcd.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\slui.exe
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\msctf.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-10-16 00:34:43 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2020-10-16 00:34:42 ----A---- C:\WINDOWS\system32\shell32.dll
2020-10-16 00:34:42 ----A---- C:\WINDOWS\system32\dcomp.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\winsku.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\winresume.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\winload.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\winbrand.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\wimserv.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\wimgapi.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\uDWM.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\srpapi.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\shimeng.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\setupugc.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\sdbinst.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\es.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\dwmcore.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\drivers\applockerfltr.sys
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\autochk.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\appidtel.exe
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\appidsvc.dll
2020-10-16 00:34:41 ----A---- C:\WINDOWS\system32\appidapi.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\SRH.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\pcasvc.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\pcalua.exe
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\pcaevts.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\pcadm.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\invagent.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\devinv.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\appraiser.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\apphelp.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\aitstatic.exe
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\aeinv.dll
2020-10-16 00:34:40 ----A---- C:\WINDOWS\system32\acmigration.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\untfs.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\ulib.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\NotificationController.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-10-16 00:34:39 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\wpncore.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\wintrust.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\win32u.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\win32kfull.sys
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\win32k.sys
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\user32.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\kernel.appcore.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\kerberos.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\ifsutil.dll
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2020-10-16 00:34:38 ----A---- C:\WINDOWS\system32\BFE.DLL
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\WaaSAssessment.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\ttdwriter.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\ttdrecordcpu.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\storewuauth.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\ISM.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\InstallService.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\GraphicsCapture.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2020-10-16 00:34:37 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-10-16 00:34:30 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2020-10-16 00:34:30 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2020-10-16 00:34:30 ----A---- C:\WINDOWS\system32\msxml6r.dll
2020-10-16 00:34:30 ----A---- C:\WINDOWS\system32\msxml6.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\win32kbase.sys
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\tbauth.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\directml.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\cdd.dll
2020-10-16 00:34:29 ----A---- C:\WINDOWS\system32\aadtb.dll
2020-10-16 00:34:28 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-10-16 00:34:28 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-10-16 00:34:28 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-10-16 00:34:28 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-10-16 00:34:28 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-10-16 00:34:28 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2020-10-16 00:34:28 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-10-16 00:34:27 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-10-16 00:34:27 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2020-10-16 00:34:27 ----A---- C:\WINDOWS\system32\ReAgent.dll
2020-10-16 00:34:27 ----A---- C:\WINDOWS\system32\kernel32.dll
2020-10-16 00:34:27 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-10-16 00:34:27 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-10-16 00:34:27 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\win32spl.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\netman.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\localspl.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\bcdboot.exe
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\audiosrv.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\AudioEng.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-10-16 00:34:26 ----A---- C:\WINDOWS\system32\audiodg.exe
2020-10-16 00:34:26 ----A---- C:\WINDOWS\bfsvc.exe
2020-10-16 00:34:25 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2020-10-16 00:34:25 ----A---- C:\WINDOWS\system32\BTAGService.dll
2020-10-16 00:34:24 ----A---- C:\WINDOWS\system32\tellib.dll
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\pciide.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\intelide.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\hidspi.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\ataport.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2020-10-16 00:34:23 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2020-10-16 00:24:06 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2020-10-16 00:24:06 ----A---- C:\WINDOWS\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2020-10-17 16:18:37 ----D---- C:\WINDOWS\Temp
2020-10-17 16:18:37 ----D---- C:\Program Files\trend micro
2020-10-17 16:18:35 ----D---- C:\WINDOWS\Prefetch
2020-10-17 16:13:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-10-17 16:13:44 ----D---- C:\WINDOWS\system32\SleepStudy
2020-10-17 16:03:54 ----AD---- C:\WINDOWS\System32
2020-10-17 16:03:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-17 16:03:53 ----D---- C:\WINDOWS\INF
2020-10-17 16:00:21 ----D---- C:\ProgramData\NVIDIA
2020-10-17 16:00:21 ----AD---- C:\ProgramData\VMware
2020-10-17 15:59:53 ----D---- C:\WINDOWS\system32\sru
2020-10-17 15:55:56 ----D---- C:\WINDOWS\AppReadiness
2020-10-17 15:52:41 ----D---- C:\Windows
2020-10-17 15:52:08 ----D---- C:\Program Files (x86)\Steam
2020-10-17 15:45:01 ----D---- C:\WINDOWS\system32\catroot2
2020-10-17 15:45:00 ----SHD---- C:\System Volume Information
2020-10-17 15:42:22 ----RD---- C:\Program Files
2020-10-17 15:29:39 ----D---- C:\WINDOWS\debug
2020-10-17 15:16:27 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2020-10-17 11:10:54 ----D---- C:\Users\Martin\AppData\Roaming\PrusaSlicer
2020-10-16 21:22:17 ----RD---- C:\WINDOWS\Microsoft.NET
2020-10-16 21:10:23 ----RSD---- C:\WINDOWS\assembly
2020-10-16 16:47:40 ----D---- C:\WINDOWS\system32\config
2020-10-16 02:23:45 ----D---- C:\WINDOWS\apppatch
2020-10-16 02:23:44 ----D---- C:\WINDOWS\WinSxS
2020-10-16 02:23:44 ----AD---- C:\WINDOWS\SysWOW64
2020-10-16 02:23:28 ----D---- C:\WINDOWS\system32\DriverStore
2020-10-16 02:23:08 ----D---- C:\WINDOWS\system32\drivers
2020-10-16 02:22:59 ----D---- C:\WINDOWS\system32\LogFiles
2020-10-16 02:22:12 ----D---- C:\WINDOWS\SYSWOW64\oobe
2020-10-16 02:22:12 ----D---- C:\WINDOWS\SYSWOW64\migration
2020-10-16 02:22:12 ----D---- C:\WINDOWS\SYSWOW64\en-US
2020-10-16 02:22:12 ----D---- C:\WINDOWS\SYSWOW64\Dism
2020-10-16 02:22:12 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2020-10-16 02:22:11 ----D---- C:\WINDOWS\SystemResources
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\WinMetadata
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\wbem
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\Sysprep
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\ru-RU
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\ro-RO
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\pt-PT
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\pl-PL
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\oobe
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\nl-NL
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\migration
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\es-MX
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\en-US
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\el-GR
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\Dism
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\de-DE
2020-10-16 02:22:11 ----D---- C:\WINDOWS\system32\cs-CZ
2020-10-16 02:22:10 ----SD---- C:\WINDOWS\system32\AppV
2020-10-16 02:22:10 ----RD---- C:\WINDOWS\PrintDialog
2020-10-16 02:22:10 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2020-10-16 02:22:10 ----D---- C:\WINDOWS\system32\Boot
2020-10-16 02:22:10 ----D---- C:\WINDOWS\system32\ar-SA
2020-10-16 02:22:10 ----D---- C:\WINDOWS\system32\appraiser
2020-10-16 02:22:10 ----D---- C:\WINDOWS\ShellExperiences
2020-10-16 02:22:10 ----D---- C:\WINDOWS\Provisioning
2020-10-16 02:22:10 ----D---- C:\WINDOWS\PolicyDefinitions
2020-10-16 02:22:10 ----D---- C:\WINDOWS\bcastdvr
2020-10-16 02:22:09 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-16 00:41:00 ----D---- C:\WINDOWS\CbsTemp
2020-10-16 00:19:06 ----HD---- C:\Program Files\WindowsApps
2020-10-16 00:13:30 ----D---- C:\WINDOWS\Logs
2020-10-15 11:01:57 ----SHD---- C:\WINDOWS\Installer
2020-10-15 11:01:57 ----SHD---- C:\Config.Msi
2020-10-15 10:59:43 ----D---- C:\WINDOWS\system32\Tasks
2020-10-14 16:16:10 ----D---- C:\WINDOWS\system32\Macromed
2020-10-14 16:16:07 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2020-10-07 19:55:00 ----D---- C:\WINDOWS\system32\drivers\wd
2020-10-06 17:41:15 ----HD---- C:\ProgramData
2020-10-06 02:13:28 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2020-10-01 23:41:15 ----D---- C:\WINDOWS\system32\Logs
2020-10-01 23:41:15 ----D---- C:\Program Files\Microsoft Update Health Tools
2020-09-21 15:51:31 ----AD---- C:\Program Files (x86)\Microsoft Office
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2014-08-19 39008]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2020-08-13 275256]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2017-01-17 48696]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-08-13 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 cnnctfy3;@oem55.inf,%cnnctfy3_Desc%;Connectify LightWeight Filter; C:\WINDOWS\system32\DRIVERS\cnnctfy3.sys [2015-12-14 35352]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\rsdrvx64.sys [2009-02-12 26024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R1 mtihint;mtihint; \??\C:\Windows\system32\Drivers\mtihint.sys [2015-07-14 18504]
R2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2014-07-17 91784]
R2 aksfridge;aksfridge; \??\C:\Windows\system32\drivers\aksfridge.sys [2014-07-17 162136]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2020-05-13 457216]
R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2014-07-17 331608]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2015-08-11 57536]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 ACPIVPC;@oem48.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-08-19 35600]
R3 asvpndrv;@oem50.inf,%DeviceDescription%;Astrill SSL VPN Adapter; C:\WINDOWS\System32\drivers\asvpndrv.sys [2014-05-17 31744]
R3 bcbtums;@oem142.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\System32\drivers\bcbtums.sys [2016-02-17 186152]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2019-03-19 7585280]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-02-19 117264]
R3 BTATH_BUS;@oem110.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-08-12 34384]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2020-03-13 114688]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2019-03-19 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2020-03-13 99328]
R3 btwampfl;@oem142.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\System32\drivers\btwampfl.sys [2016-02-17 213312]
R3 btwaudio;@oem91.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2015-12-09 212760]
R3 btwavdt;@oem28.inf,%btwavdt.SVCDESC%;Bluetooth AVDT Service; C:\WINDOWS\system32\DRIVERS\btwavdt.sys [2015-12-09 262440]
R3 btwl2cap;@oem76.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2015-12-16 49952]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2015-11-04 47392]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
R3 CnxtHdAudService;@oem150.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-08-05 1317096]
R3 ETD;@oem64.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-10-07 525512]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-04 3811288]
R3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem65.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 L1C;@oem125.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2013-07-18 130248]
R3 MEIx64;@oem73.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-08-08 99288]
R3 monectdevices;@oem152.inf,%MonectHidMini%;Monect Hid Device; C:\WINDOWS\System32\drivers\monectdevices.sys [2013-12-03 15768]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys [2017-01-17 14190520]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-10-04 19272]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 acsock;acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [2015-10-23 129520]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-13 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 androidusb;@oem19.inf,%androidusb.SvcDesc%;ADB Interface Driver; C:\WINDOWS\System32\Drivers\androidusb.sys [2010-04-29 32768]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-16 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2020-02-19 138040]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2020-02-19 174392]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2020-02-19 153912]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-11 231936]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2020-03-13 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2020-03-13 1428992]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-11 20992]
S3 ggflt;SOMC USB Flash Driver Filter; C:\WINDOWS\System32\drivers\ggflt.sys [2016-07-27 16088]
S3 ggsomc;SOMC USB Flash Driver; C:\WINDOWS\System32\drivers\ggsomc.sys [2016-07-27 30424]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2020-10-16 64512]
S3 HPEWSFXBULK;HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [2016-04-13 29248]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2020-10-16 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 CH341SER_A64;CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [2015-02-06 59904]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intaud_WaveExtensible;@oem35.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 kvpndev;Kerio VPN adapter; C:\WINDOWS\system32\DRIVERS\kvpndrv.sys [2008-01-16 73216]
S3 libusb0;libusb-win32 - Kernel Driver 01/18/2012 1.2.6.0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [2018-03-21 56576]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-13 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-09-04 38048]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CDPUserSvc_8bd5e;Uživatelská služba platformy připojených zařízení_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 OneSyncSvc_8bd5e;Hostitel synchronizace_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_8bd5e;Uživatelská služba schránky_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_8bd5e;Data kontaktů_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R4 AdAppMgrSvc;Autodesk Application Manager Service; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [2014-12-05 599944]
R4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-09-06 169544]
R4 ASOVPNHelper;Astrill OpenVPN Service; C:\Program Files (x86)\Astrill\ASOvpnSvc.exe [2016-10-26 595704]
R4 BcmBtRSupport;Bluetooth Radio Management Support; C:\WINDOWS\system32\btwrsupportservice.exe [2015-03-27 2251992]
R4 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R4 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R4 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2016-02-17 980736]
R4 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R4 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-09-06 11118976]
R4 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R4 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R4 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R4 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R4 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R4 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-07 144072]
R4 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-08-24 43704]
R4 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-10-04 1148744]
R4 hasplms;Sentinel LDK License Manager; C:\Windows\system32\hasplms.exe [2014-07-17 4683144]
R4 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-04 337888]
R4 iked;ShrewSoft IKE Daemon; C:\Program Files\ShrewSoft\VPN Client\iked.exe [2013-07-01 1127736]
R4 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R4 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R4 ipsecd;ShrewSoft IPSEC Daemon; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [2013-07-01 810808]
R4 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-08-08 169432]
R4 KingoSoftService;KingoSoftService; C:\Users\Martin\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe [2018-03-08 17384]
R4 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R4 LkCitadelServer;NI Citadel 4 Service; C:\WINDOWS\SysWOW64\lkcitdl.exe [2014-08-07 695136]
R4 lkClassAds;NI PSP Service Locator; C:\WINDOWS\SysWOW64\lkads.exe [2015-09-05 53544]
R4 lkTimeSync;NI Time Synchronization; C:\WINDOWS\SysWOW64\lktsrv.exe [2015-09-05 63792]
R4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-08-08 390616]
R4 MicronCacheMonitor;Micron SSD Cache Monitor; C:\Windows\system32\MicronCacheMonitor.exe [2015-07-14 322560]
R4 MonectServerService;MonectServerService; C:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe [2019-09-02 536576]
R4 mxssvr;NI Configuration Manager; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [2015-08-17 84792]
R4 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2016-01-28 792944]
R4 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R4 NIApplicationWebServer;NI Application Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2016-01-13 57184]
R4 niauth;NI Authentication Service; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [2016-01-13 571464]
R4 NIDomainService;NI Domain Service; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [2015-09-05 399152]
R4 nimDNSResponder;NI mDNS Responder Service; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2014-06-06 320368]
R4 NINetworkDiscovery;NI Network Discovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [2015-06-12 177024]
R4 NiSvcLoc;NI Service Locator; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [2015-06-02 89928]
R4 NISystemWebServer;NI System Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [2016-01-13 57168]
R4 NITaggerService;NI Variable Engine; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [2015-06-11 703304]
R4 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-12-29 458176]
R4 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-04 1795912]
R4 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-10-04 19439944]
R4 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_8bd5e;Agent Activation Runtime_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_8bd5e;Uživatelská služba pro GameDVR a vysílání her_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_8bd5e;Služba pro podporu uživatelů Bluetooth_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_8bd5e;CaptureService_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_8bd5e;ConsentUX_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-10-16 381656]
S3 CredentialEnrollmentManagerUserSvc_8bd5e;CredentialEnrollmentManagerUserSvc_8bd5e; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2020-10-16 381656]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_8bd5e;DeviceAssociationBroker_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_8bd5e;DevicePicker_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_8bd5e;Tok zařízení_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_8bd5e;Služba zasílání zpráv_8bd5e; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-10-14 335416]
S4 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2020-02-19 828216]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-19 54912]
S4 ASProxy;ASProxy; C:\Program Files (x86)\Astrill\ASProxy.exe [2016-06-01 2618104]
S4 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2014-02-07 31192]
S4 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 Connectify;Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [2014-02-28 487936]
S4 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-04 299488]
S4 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2020-09-09 97792]
S4 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-21 224160]
S4 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-08-21 224160]
S4 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2015-05-04 1357104]
S4 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 FreeLAN Service;FreeLAN Service; C:\Program Files\FreeLAN\bin\freelan.exe [2014-01-13 3610624]
S4 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-07-25 139776]
S4 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\elevation_service.exe [2020-10-05 1406448]
S4 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-22 107848]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-22 107848]
S4 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S4 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S4 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-08-24 273232]
S4 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\86.0.622.43\elevation_service.exe [2020-10-14 1535376]
S4 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-05-18 173512]
S4 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit); C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2016-01-13 80736]
S4 NILM License Manager;NI License Server; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2010-08-02 1427688]
S4 OpcEnum;OpcEnum; C:\WINDOWS\SysWOW64\Opcenum.exe [2015-05-26 172832]
S4 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 214832]
S4 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S4 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Podezřele velká aplikace, nejde odinstalovat
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Podezřele velká aplikace, nejde odinstalovat
- Přílohy
-
- Bez názvu.jpg (17.52 KiB) Zobrazeno 727 x
-
Rudy
- Site Admin
- Příspěvky: 119318
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podezřele velká aplikace, nejde odinstalovat
Zdravím!
Protože jsme bezpečnostní fórum a s hrami mnoho zkušeností nemáme, dávám odkaz, kde najdete pokyny k odinstalování: https://translate.google.com/translate? ... ch&pto=aue . Problémy s hrami příště řešte na některém herním fóru.
Protože jsme bezpečnostní fórum a s hrami mnoho zkušeností nemáme, dávám odkaz, kde najdete pokyny k odinstalování: https://translate.google.com/translate? ... ch&pto=aue . Problémy s hrami příště řešte na některém herním fóru.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Podezřele velká aplikace, nejde odinstalovat
Ale o hru mi vůbec nejde, tu jsem víc jak 4 rok nehrál. Jde mi o to že má složka velkou velikost ta hra je strašně stará velikost by měla mít do 400Mb a ještě nejde odinstalovat, tudíž mám podezření jestli její složku nevyužívá nějaký vir či tak něco, proto jsem se obrátil na toto forum. Předem děkuji
-
Rudy
- Site Admin
- Příspěvky: 119318
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podezřele velká aplikace, nejde odinstalovat
To se většinou neděje. Hry využívá virus málokdy. Můžeme to ale prověřit. Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT není s desítkami plně kompatibilní.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Podezřele velká aplikace, nejde odinstalovat
Dobře, v příloze posílám logy.
- Přílohy
-
- Log.zip
- (55.42 KiB) Staženo 57 x
-
Rudy
- Site Admin
- Příspěvky: 119318
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podezřele velká aplikace, nejde odinstalovat
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Podezřele velká aplikace, nejde odinstalovat
Paráda, po proběhnutí procesu a restartu se nejde přihlásit. Počítač je v režimu letadlo a při kliknutí na obnovení hesla se vrátí zpět na úvodní stránku, stejně tak při nastavení pinu. Po několikatém zkoušení vyběhla výstraha o přetečení.
- Přílohy
-
- IMG_20201018_160722_1.jpg (67.17 KiB) Zobrazeno 703 x
-
Rudy
- Site Admin
- Příspěvky: 119318
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Podezřele velká aplikace, nejde odinstalovat
OK. To ale nezpůsobil ADW. Běžně go tu používáme a poprvé vidím tento problém. Lze nastartovat alespoň do nouz. režimu?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?