wklejto.pl

Dodane przez: ~Anonim (2019-12-15 01:17) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
595.
596.
597.
598.
599.
600.
601.
602.
603.
604.
605.
606.
607.
608.
609.
610.
611.
612.
613.
614.
615.
616.
617.
618.
619.
620.
621.
622.
623.
624.
625.
626.
627.
628.
629.
630.
631.
632.
633.
634.
635.
636.
637.
638.
639.
640.
641.
642.
643.
644.
645.
646.
647.
648.
649.
650.
651.
652.
653.
654.
655.
656.
657.
658.
659.
660.
661.
662.
663.
664.
665.
666.
667.
668.
669.
670.
671.
672.
673.
674.
675.
676.
677.
678.
679.
680.
681.
682.
683.
684.
685.
686.
687.
688.
689.
690.
691.
692.
693.
694.
695.
696.
697.
698.
699.
700.
701.
702.
703.
704.
705.
706.
707.
708.
709.
710.
711.
712.
713.
714.
715.
716.
717.
718.
719.
720.
721.
722.
723.
724.
725.
726.
727.
728.
729.
730.
731.
732.
733.
734.
735.
736.
737.
738.
739.
740.
741.
742.
743.
744.
745.
746.
747.
748.
749.
750.
751.
752.
753.
754.
755.
756.
757.
758.
759.
760.
761.
762.
763.
764.
765.
766.
767.
768.
769.
770.
771.
772.
773.
774.
775.
776.
777.
778.
779.
780.
781.
782.
783.
784.
785.
786.
787.
788.
789.
790.
791.
792.
793.
794.
795.
796.
797.
798.
799.
800.
801.
802.
803.
804.
805.
806.
807.
808.
809.
810.
811.
812.
813.
814.
815.
816.
817.
818.
819.
820.
821.
822.
823.
824.
825.
826.
827.
828.
829.
830.
831.
832.
833.
834.
835.
836.
837.
838.
839.
840.
841.
842.
843.
844.
845.
846.
847.
848.
849.
850.
851.
852.
853.
854.
855.
856.
857.
858.
859.
860.
861.
862.
863.
864.
865.
866.
867.
868.
869.
870.
871.
872.
873.
874.
875.
876.
877.
878.
879.
880.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Natalia Chaber at 2019-12-15 02:00:00
Microsoft Windows 10 Home 
System drive C: has 143 GB (52%) free of 276 GB
Total RAM: 12208 MB (60% free)
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 02:00:08, on 15.12.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avpui.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
C:\Windows\WebCam\S6000\S6000Mnt.exe
C:\Users\Natalia Chaber\Autodesk\Genuine Service\GenuineService.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files\trend micro\Natalia Chaber.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\RunOnce: [Autodesk 3ds Max 2020] C:\Autodesk\Autodesk_3ds_Max_2020_EFGJKPS_Win_64bit_wi_en-US\Setup.exe /PK 128L1 /SN 901-44626722  /sid SESSION_ID /skipEULA /student /url "http://edutrial.autodesk.com/NetSWDLD/2020/3DSMAX/519D393B-EFBD-4714-B627-F8BC87BEA59A/WI/Autodesk_3ds_Max_2020_EFGJKPS_Win_64bit_wi_en-US_Setup.exe?dummy=0"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: []  (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: []  (User 'Default user')
O4 - Startup: GenuineService.lnk = C:\Users\Natalia Chaber\Autodesk\Genuine Service\GenuineService.exe
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Wyślij &do programu OneNote - res://C:\PROGRA~1\MICROS~2\Office16\ONBttnIE.dll/105
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: Autodesk Desktop Licensing Service (AdskLicensingService) - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service 20.0 (AVP20.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_406b189 - Unknown owner - C:\Windows\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem6.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\Windows\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Kaspersky Volume Shadow Copy Service Bridge 20.0 (klvssbridge64_20.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\vssbridge64.exe
O23 - Service: Kaspersky Secure Connection Service 4.0 (KSDE4.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
O23 - Service: lupdate (LenovoUpdate) - Unknown owner - C:\Windows\System32\LenovoUpdate.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VRLService - Unknown owner - C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 12174 bytes
 
======Listing Processes======
 
 
 
 
 
 
 
 
 
C:\Windows\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\Windows\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\Windows\system32\svchost.exe -k RPCSS -p
C:\Windows\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\Windows\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\Windows\system32\svchost.exe -k LocalService -p -s bthserv
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\Windows\system32\svchost.exe -k LocalService -p -s EventSystem
C:\Windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\Windows\System32\svchost.exe -k netsvcs -p -s Themes
C:\Windows\system32\svchost.exe -k LocalService -p
C:\Windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\Windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k netsvcs -p -s Schedule
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\Windows\system32\svchost.exe -k LocalService -p -s FontCache
C:\Windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k netsvcs -p -s UserManager
C:\Windows\system32\svchost.exe -k LocalService -p -s nsi
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\Windows\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\Windows\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\Windows\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\Windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\Windows\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\Windows\System32\svchost.exe -k utcsvc -p
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork -p
"C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
 
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe"
"C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe"
C:\Windows\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\Windows\system32\ibtsiva
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
C:\Windows\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\Windows\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\Windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\Windows\SysWOW64\SAsrv.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\Windows\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\Windows\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\Windows\System32\svchost.exe -k LocalService -p -s netprofm
C:\Windows\system32\wbem\unsecapp.exe -Embedding
 
C:\Windows\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
System32\LenovoUpdate.exe
C:\Windows\System32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\Windows\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\Windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\svchost.exe -k netsvcs -p
 
C:\Windows\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
 
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe" -r
 
"C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe" 2>> "C:\Program Files\Common Files\ChaosGroup\log\panic.log"
 
C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\Windows\system32\svchost.exe -k appmodel -p -s camsvc
C:\Windows\Temp\AdAppMgrUpdater.exe 
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
 
C:\Windows\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\Windows\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
"ctfmon.exe"
igfxEM.exe 
igfxHK.exe 
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxTray.exe 
"C:\Program Files\Elantech\ETDCtrlHelper.exe" 
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avpui.exe" -hidden
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe" -hidden
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.55.131.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19111.85.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.55.131.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Natalia Chaber\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Natalia Chaber\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Natalia Chaber\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=78.0.3904.108 --initial-client-data=0xa8,0xac,0xb0,0xa4,0xb4,0x7ff9cd7eed58,0x7ff9cd7eed68,0x7ff9cd7eed78
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6156 --on-initialized-event-handle=64 --parent-handle=456 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --service-request-channel-token=16135012839103223045 --mojo-platform-channel-handle=1596 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --service-sandbox-type=network --service-request-channel-token=14098627468223786153 --mojo-platform-channel-handle=1784 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17184310720147537340 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3132 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1929408427575334944 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3144 /prefetch:1
"C:\Windows\System32\SecurityHealthSystray.exe" 
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\WebCam\S6000\S6000Mnt.exe" 
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe" 
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe" 
"C:\Users\Natalia Chaber\Autodesk\Genuine Service\GenuineService.exe" 
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --approot=SOFTWARE\Autodesk --appAgent=/AUTODESKDESKTOPAPP/7.0.21.15/pl-PL/0001 --lang=pl-PL --cache-path="C:\Users\Natalia Chaber\AppData\Local\Autodesk\Autodesk Desktop App\BrowserCache" --peerPid=7012 
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="8180.0.58133210\431884842" --no-sandbox --lang=pl-PL --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=7012 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,46,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x1616 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=20.19.15.4642 --lang=pl-PL --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=7012 --mojo-platform-channel-handle=1356 /prefetch:2
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=renderer --no-sandbox --primordial-pipe-token=509802B957DA83BB422FC32F4C63C4A1 --lang=en-US --lang=pl-PL --log-file="C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\debug.log" --log-severity=disable --peerpid=7012 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="8180.1.1798723069\1252708879" --mojo-platform-channel-handle=1996 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --service-sandbox-type=audio --service-request-channel-token=10785808406563129045 --mojo-platform-channel-handle=6256 /prefetch:8
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
C:\Windows\system32\browser_broker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\system32\MicrosoftEdgeSH.exe SCODEF:1160 CREDAT:9730 APH:100000000000004A JITHOST /prefetch:2
"C:\Windows\System32\MicrosoftEdgeCP.exe" -ServerName:Windows.Internal.WebRuntime.ContentProcessServer
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4947194923424596548 --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7208 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=18056370611596378247 --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5764 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8750154185065101789 --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7780 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=11100054859159952942 --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5160 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2880869256422078090 --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6496 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17168790548181109099 --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6552 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4910251226005369378 --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5920 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12691769047612137842 --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5472 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=7057528438052908557 --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4428 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17390286246787162794 --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2936 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=11840979113936089088 --renderer-client-id=126 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10696 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8720932631780576085 --renderer-client-id=127 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5136 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14788196588738694172 --renderer-client-id=133 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11036 /prefetch:1
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\Windows\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4025282994954383707 --renderer-client-id=201 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7624 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17437036919146182617 --renderer-client-id=205 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8872 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=569944656228542640 --renderer-client-id=206 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11328 /prefetch:1
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4402271377442630588 --renderer-client-id=236 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11364 /prefetch:1
C:\Windows\system32\AUDIODG.EXE 0x430
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1492,16041436802414532104,14233051580339925991,131072 --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12752366275421894375 --renderer-client-id=241 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12152 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\System32\SecurityHealthHost.exe {08728914-3F57-4D52-9E31-49DAECA5A80A} -Embedding
 
C:\Windows\system32\svchost.exe -k netsvcs -p -s gpsvc
"C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe" SignatureUpdate -ScheduleJob -RestrictPrivileges -Reinvoke
"C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe" SignaturesUpdateService -ScheduleJob -UnmanagedUpdate
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\Windows\system32\wbem\wmiprvse.exe
 
"C:\Users\Natalia Chaber\Downloads\RSITx64.exe" 
 
======Registry dump======
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2016-07-12 236232]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~1\MICROS~2\Office16\GROOVEEX.DLL [2016-07-13 2177328]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31 161448]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~2\MICROS~2\Office16\GROOVEEX.DLL [2016-07-13 1522480]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Windows\system32\SecurityHealthSystray.exe [2019-03-19 84992]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-07 3242696]
"S6000Mnt"=C:\Windows\WebCam\S6000\S6000Mnt.exe [2016-02-24 516608]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-20 919768]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-10 509936]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2019-10-08 2872400]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe []
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2017-02-03 2007576]
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Autodesk 3ds Max 2020"=C:\Autodesk\Autodesk_3ds_Max_2020_EFGJKPS_Win_64bit_wi_en-US\Setup.exe [2019-02-12 1000744]
 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Desktop App"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2019-11-13 665384]
 
C:\Users\Natalia Chaber\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
GenuineService.lnk - C:\Users\Natalia Chaber\Autodesk\Genuine Service\GenuineService.exe
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
 
======File associations======
 
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install - 
.scr - config - 
 
======List of files/folders created in the last 1 month======
 
2019-12-15 02:00:00 ----D---- C:\rsit
2019-12-15 02:00:00 ----D---- C:\Program Files\trend micro
2019-12-11 20:06:33 ----A---- C:\Windows\system32\HologramCompositor.dll
2019-12-11 20:06:33 ----A---- C:\Windows\system32\DolbyDecMFT.dll
2019-12-11 20:06:31 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2019-12-11 20:06:31 ----A---- C:\Windows\system32\mfcore.dll
2019-12-11 20:06:31 ----A---- C:\Windows\system32\Hydrogen.dll
2019-12-11 20:06:30 ----A---- C:\Windows\SYSWOW64\Windows.Mirage.Internal.dll
2019-12-11 20:06:30 ----A---- C:\Windows\SYSWOW64\Chakrathunk.dll
2019-12-11 20:06:30 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2019-12-11 20:06:30 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2019-12-11 20:06:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-12-11 20:06:28 ----A---- C:\Windows\system32\rdpudd.dll
2019-12-11 20:06:28 ----A---- C:\Windows\system32\rdpcorets.dll
2019-12-11 20:06:28 ----A---- C:\Windows\system32\fhcfg.dll
2019-12-11 20:06:28 ----A---- C:\Windows\system32\drivers\udfs.sys
2019-12-11 20:06:28 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2019-12-11 20:06:28 ----A---- C:\Windows\system32\Chakrathunk.dll
2019-12-11 20:06:28 ----A---- C:\Windows\system32\Chakradiag.dll
2019-12-11 20:06:27 ----A---- C:\Windows\system32\drivers\cdfs.sys
2019-12-11 20:06:27 ----A---- C:\Windows\system32\Chakra.dll
2019-12-11 20:06:26 ----A---- C:\Windows\system32\tcbloader.dll
2019-12-11 20:06:26 ----A---- C:\Windows\system32\securekernel.exe
2019-12-11 20:06:25 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-12-11 20:06:25 ----A---- C:\Windows\SYSWOW64\shell32.dll
2019-12-11 20:06:25 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2019-12-11 20:06:25 ----A---- C:\Windows\system32\hvix64.exe
2019-12-11 20:06:25 ----A---- C:\Windows\system32\hvax64.exe
2019-12-11 20:06:24 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2019-12-11 20:06:24 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2019-12-11 20:06:24 ----A---- C:\Windows\SYSWOW64\gdi32full.dll
2019-12-11 20:06:24 ----A---- C:\Windows\SYSWOW64\DMAlertListener.ProxyStub.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Enumeration.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\win32u.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\win32kfull.sys
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\win32k.sys
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\user32.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\lpk.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2019-12-11 20:06:21 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2019-12-11 20:06:20 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2019-12-11 20:06:20 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2019-12-11 20:06:20 ----A---- C:\Windows\SYSWOW64\msctf.dll
2019-12-11 20:06:20 ----A---- C:\Windows\SYSWOW64\CloudExperienceHostCommon.dll
2019-12-11 20:06:20 ----A---- C:\Windows\system32\vbscript.dll
2019-12-11 20:06:20 ----A---- C:\Windows\system32\pnidui.dll
2019-12-11 20:06:19 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\wow64win.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\t2embed.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\lpk.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\GdiPlus.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\gdi32full.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\fontsub.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\fontdrvhost.exe
2019-12-11 20:06:19 ----A---- C:\Windows\system32\fdProxy.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\DMAlertListener.ProxyStub.dll
2019-12-11 20:06:19 ----A---- C:\Windows\system32\dciman32.dll
2019-12-11 20:06:17 ----A---- C:\Windows\system32\services.exe
2019-12-11 20:06:17 ----A---- C:\Windows\system32\KernelBase.dll
2019-12-11 20:06:16 ----A---- C:\Windows\system32\oleaut32.dll
2019-12-11 20:06:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-12-11 20:06:16 ----A---- C:\Windows\system32\msctf.dll
2019-12-11 20:06:16 ----A---- C:\Windows\system32\drivers\ntfs.sys
2019-12-11 20:06:15 ----A---- C:\Windows\system32\winresume.exe
2019-12-11 20:06:15 ----A---- C:\Windows\system32\sppobjs.dll
2019-12-11 20:06:15 ----A---- C:\Windows\system32\SppExtComObj.Exe
2019-12-11 20:06:15 ----A---- C:\Windows\system32\shell32.dll
2019-12-11 20:06:15 ----A---- C:\Windows\system32\drivers\cldflt.sys
2019-12-11 20:06:14 ----A---- C:\Windows\system32\winload.exe
2019-12-11 20:06:14 ----A---- C:\Windows\system32\usosvc.dll
2019-12-11 20:06:14 ----A---- C:\Windows\system32\usocoreworker.exe
2019-12-11 20:06:14 ----A---- C:\Windows\system32\MusUpdateHandlers.dll
2019-12-11 20:06:14 ----A---- C:\Windows\system32\MusNotificationUx.exe
2019-12-11 20:06:14 ----A---- C:\Windows\system32\MusNotification.exe
2019-12-11 20:06:14 ----A---- C:\Windows\system32\drivers\refsv1.sys
2019-12-11 20:06:13 ----A---- C:\Windows\system32\windows.storage.dll
2019-12-11 20:06:13 ----A---- C:\Windows\system32\Windows.Devices.Enumeration.dll
2019-12-11 20:06:13 ----A---- C:\Windows\system32\win32u.dll
2019-12-11 20:06:13 ----A---- C:\Windows\system32\win32kfull.sys
2019-12-11 20:06:13 ----A---- C:\Windows\system32\win32kbase.sys
2019-12-11 20:06:13 ----A---- C:\Windows\system32\win32k.sys
2019-12-11 20:06:13 ----A---- C:\Windows\system32\user32.dll
2019-12-11 20:06:13 ----A---- C:\Windows\system32\CloudExperienceHostCommon.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\Windows.Management.Service.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2019-12-11 20:06:12 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\drivers\fastfat.sys
2019-12-11 20:06:12 ----A---- C:\Windows\system32\drivers\exfat.sys
2019-12-11 20:06:12 ----A---- C:\Windows\system32\DevQueryBroker.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\CustomInstallExec.exe
2019-12-11 20:06:12 ----A---- C:\Windows\system32\autopilotdiag.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\autopilot.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\AppXApplicabilityBlob.dll
2019-12-11 20:06:12 ----A---- C:\Windows\system32\ApplyTrustOffline.exe
2019-12-01 00:03:12 ----A---- C:\Windows\system32\drivers\klupd_klif_klark.sys
2019-12-01 00:00:48 ----D---- C:\Program Files\Common Files\AV
2019-12-01 00:00:42 ----A---- C:\Windows\system32\drivers\klupd_klif_mark.sys
2019-12-01 00:00:42 ----A---- C:\Windows\system32\drivers\klupd_klif_klbg.sys
2019-12-01 00:00:42 ----A---- C:\Windows\system32\drivers\klupd_klif_kimul.sys
2019-12-01 00:00:14 ----A---- C:\Windows\system32\klfphc.dll
2019-12-01 00:00:02 ----D---- C:\ProgramData\Kaspersky Lab
2019-12-01 00:00:02 ----D---- C:\Program Files (x86)\Kaspersky Lab
2019-12-01 00:00:02 ----A---- C:\Windows\system32\drivers\klupd_klif_arkmon.sys
2019-11-30 23:59:54 ----A---- C:\Windows\system32\drivers\klif.sys
2019-11-30 23:59:54 ----A---- C:\Windows\system32\drivers\klflt.sys
2019-11-30 23:58:25 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2019-11-30 23:31:35 ----D---- C:\Users\Natalia Chaber\AppData\Roaming\1337
2019-11-30 21:59:53 ----D---- C:\ProgramData\boost_interprocess
2019-11-30 21:53:20 ----D---- C:\MATS
2019-11-30 21:00:51 ----D---- C:\ProgramData\Applications
2019-11-30 19:36:11 ----D---- C:\Program Files\Common Files\Macrovision Shared
2019-11-30 19:27:30 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2019-11-30 19:27:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2019-11-30 19:27:30 ----A---- C:\Windows\system32\XAudio2_7.dll
2019-11-30 19:27:30 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2019-11-30 19:27:29 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2019-11-30 19:27:29 ----A---- C:\Windows\system32\xactengine3_7.dll
2019-11-30 19:27:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2019-11-30 19:27:28 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2019-11-30 19:27:27 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2019-11-30 19:27:27 ----A---- C:\Windows\system32\d3dcsx_43.dll
2019-11-30 19:27:26 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2019-11-30 19:27:26 ----A---- C:\Windows\system32\d3dx11_43.dll
2019-11-30 19:27:25 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2019-11-30 19:27:25 ----A---- C:\Windows\system32\d3dx10_43.dll
2019-11-30 19:27:24 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2019-11-30 19:27:24 ----A---- C:\Windows\system32\D3DX9_43.dll
2019-11-30 19:27:20 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2019-11-30 19:27:20 ----A---- C:\Windows\system32\xinput1_1.dll
2019-11-30 19:27:19 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2019-11-30 19:27:19 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2019-11-30 19:27:19 ----A---- C:\Windows\system32\xactengine2_1.dll
2019-11-30 19:27:19 ----A---- C:\Windows\system32\x3daudio1_0.dll
2019-11-30 19:27:18 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2019-11-30 19:27:18 ----A---- C:\Windows\system32\d3dx9_30.dll
 
======List of files/folders modified in the last 1 month======
 
2019-12-15 02:00:07 ----D---- C:\Windows\Prefetch
2019-12-15 02:00:06 ----D---- C:\Windows\Temp
2019-12-15 02:00:00 ----RD---- C:\Program Files
2019-12-15 01:58:38 ----SHD---- C:\System Volume Information
2019-12-15 01:51:00 ----D---- C:\Windows\system32\sru
2019-12-15 00:53:07 ----SHD---- C:\Windows\Installer
2019-12-15 00:50:19 ----D---- C:\Windows\AppReadiness
2019-12-15 00:47:46 ----D---- C:\ProgramData\Autodesk
2019-12-15 00:47:12 ----D---- C:\Windows\System32
2019-12-15 00:47:12 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-12-13 23:52:09 ----HD---- C:\Program Files\WindowsApps
2019-12-13 23:42:10 ----D---- C:\Windows\system32\drivers\etc
2019-12-13 23:20:51 ----D---- C:\Windows\system32\SleepStudy
2019-12-13 21:35:57 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-12-13 12:27:06 ----RD---- C:\Windows\Microsoft.NET
2019-12-13 09:56:30 ----D---- C:\Windows\system32\config
2019-12-12 10:34:28 ----D---- C:\Windows\INF
2019-12-12 10:34:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-12-12 10:30:20 ----D---- C:\Windows\WinSxS
2019-12-12 10:30:17 ----D---- C:\Windows\SysWOW64
2019-12-12 10:30:07 ----D---- C:\ProgramData\NVIDIA
2019-12-12 10:30:03 ----A---- C:\Windows\system32\LenovoUpdate.exe
2019-12-12 10:30:03 ----A---- C:\Windows\system32\LenovoCheck.exe
2019-12-12 10:29:43 ----A---- C:\Windows\system32\wpbbin.exe
2019-12-12 01:04:29 ----D---- C:\Windows\system32\catroot2
2019-12-12 01:04:10 ----D---- C:\Windows\SYSWOW64\pl-PL
2019-12-12 01:04:09 ----D---- C:\Windows\SystemResources
2019-12-12 01:04:09 ----D---- C:\Windows\system32\uk-UA
2019-12-12 01:04:09 ----D---- C:\Windows\system32\pl-PL
2019-12-12 01:04:09 ----D---- C:\Windows\system32\migration
2019-12-12 01:04:09 ----D---- C:\Windows\system32\en-US
2019-12-12 01:04:09 ----D---- C:\Windows\system32\drivers
2019-12-12 01:04:09 ----D---- C:\Windows\system32\Boot
2019-12-12 01:04:09 ----D---- C:\Windows\ShellExperiences
2019-12-12 01:04:09 ----D---- C:\Windows\bcastdvr
2019-12-12 01:04:08 ----D---- C:\Windows\system32\DriverStore
2019-12-11 20:11:31 ----D---- C:\Windows\system32\MRT
2019-12-11 20:08:44 ----AC---- C:\Windows\system32\MRT.exe
2019-12-11 20:08:40 ----D---- C:\Windows\CbsTemp
2019-12-11 19:58:12 ----D---- C:\Windows\Logs
2019-12-10 12:00:00 ----D---- C:\Windows\system32\LogFiles
2019-12-02 19:32:36 ----D---- C:\Users\Natalia Chaber\AppData\Roaming\uTorrent
2019-12-01 00:18:34 ----D---- C:\Windows\debug
2019-12-01 00:17:09 ----D---- C:\Windows\system32\CatRoot
2019-12-01 00:00:48 ----D---- C:\Program Files\Common Files
2019-12-01 00:00:02 ----RD---- C:\Program Files (x86)
2019-12-01 00:00:02 ----HD---- C:\Windows\ELAMBKUP
2019-12-01 00:00:02 ----HD---- C:\ProgramData
2019-12-01 00:00:02 ----D---- C:\Program Files (x86)\Common Files
2019-11-30 23:54:21 ----D---- C:\Autodesk
2019-11-30 22:08:26 ----D---- C:\Program Files\Autodesk
2019-11-30 21:57:35 ----D---- C:\Program Files\Common Files\Autodesk Shared
2019-11-30 21:57:00 ----RSD---- C:\Windows\Fonts
2019-11-30 21:57:00 ----RD---- C:\Windows\assembly
2019-11-30 21:17:48 ----D---- C:\Program Files (x86)\Autodesk
2019-11-30 21:14:04 ----D---- C:\Windows
2019-11-30 21:13:26 ----D---- C:\Users\Natalia Chaber\AppData\Roaming\Autodesk
2019-11-27 14:28:40 ----D---- C:\Windows\apppatch
2019-11-25 22:37:29 ----SD---- C:\Users\Natalia Chaber\AppData\Roaming\Microsoft
2019-11-25 22:35:11 ----D---- C:\Windows\system32\Tasks
 
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\Windows\system32\DRIVERS\cm_km.sys [2019-02-16 246912]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\Windows\system32\drivers\iorate.sys [2019-03-19 56632]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2019-03-19 76624]
R0 klupd_klif_arkmon;klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [2019-11-30 251256]
R0 klupd_klif_klbg;klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [2019-12-01 119744]
R1 afunix;afunix; C:\Windows\system32\drivers\afunix.sys [2019-03-19 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\Windows\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2019-10-28 129152]
R1 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2019-03-12 93312]
R1 klgse;Kaspersky Lab Security Extender Driver; C:\Windows\system32\DRIVERS\klgse.sys [2019-09-17 516216]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2019-10-17 1123664]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2019-10-28 998016]
R1 klim6;@oem22.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2019-03-19 58192]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2019-03-13 51328]
R1 klwfp;klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [2019-03-05 105600]
R1 klwtp;KLwtp - WFP callout traffic inspector; C:\Windows\system32\DRIVERS\klwtp.sys [2019-03-13 210280]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2019-03-19 232272]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\Windows\system32\drivers\cldflt.sys [2019-12-11 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 ACPIVPC;@oem15.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\Windows\System32\drivers\AcpiVpc.sys [2018-10-21 45056]
R3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\Windows\system32\drivers\bindflt.sys [2019-10-10 117048]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Usługa wyliczania Bluetooth; C:\Windows\System32\drivers\BthEnum.sys [2019-11-13 114688]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2019-03-19 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Sterownik USB odbiornika radiowego Bluetooth; C:\Windows\System32\drivers\BTHUSB.sys [2019-11-13 98304]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\Windows\System32\drivers\CAD.sys [2019-03-19 64312]
R3 CnxtHdAudService;@oem13.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2016-07-13 1561640]
R3 ETD;@oem2.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2015-10-07 525512]
R3 ibtusb;@oem6.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\Windows\system32\DRIVERS\ibtusb.sys [2019-04-23 239392]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2017-05-26 7970232]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2019-10-28 251512]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2019-03-18 79184]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2019-03-18 59512]
R3 kltap;@oem23.inf,%DeviceDescription%;Kaspersky Security Data Escort Adapter; C:\Windows\System32\drivers\kltap.sys [2018-03-16 48592]
R3 klupd_klif_kimul;klupd_klif_kimul; C:\Windows\System32\Drivers\klupd_klif_kimul.sys [2019-12-01 99152]
R3 klupd_klif_klark;klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [2019-12-01 306248]
R3 klupd_klif_mark;klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [2019-12-01 204520]
R3 MEIx64;@oem19.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverW8x64.sys [2018-05-06 228992]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\Windows\System32\drivers\Netwbw02.sys [2019-03-19 3485696]
R3 nvlddmkm;nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvltwu.inf_amd64_dc8ffafad3ea7ddd\nvlddmkm.sys [2017-01-17 14190520]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2019-03-19 211456]
R3 rt640x64;@oem16.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\Windows\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RTSUER;@oem7.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\Windows\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 S6000KNT;@oem11.inf,%USBVideo.SvcDesc%;Alcor WebCam Driver; C:\Windows\System32\Drivers\S6000KNT.sys [2016-02-24 732672]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\Windows\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\Windows\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\Windows\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 klelam;klelam; C:\Windows\system32\DRIVERS\klelam.sys [2019-01-24 37816]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\Windows\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\Windows\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2019-03-19 151352]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\Windows\system32\drivers\Acx01000.sys [2019-03-19 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\Windows\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\Windows\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 AppleLowerFilter;@oem20.inf,%AppleLowerFilterDisplayName%;Apple Lower Filter Driver; C:\Windows\System32\drivers\AppleLowerFilter.sys [2018-05-10 35560]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2019-11-13 18432]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\Windows\System32\drivers\BthA2dp.sys [2019-09-11 231936]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\Windows\System32\drivers\BTHMINI.sys [2019-11-13 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Sterownik portu Bluetooth; C:\Windows\System32\drivers\BTHport.sys [2019-11-13 1428992]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 dg_ssudbus;@oem17.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2019-07-09 135520]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-11 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\Windows\System32\drivers\hidspi.sys [2019-10-03 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2019-11-13 84488]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\Windows\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Audio dla wyświetlaczy Intel(R); C:\Windows\System32\drivers\IntcDAud.sys [2016-05-12 481768]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\Windows\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\Windows\System32\drivers\ipt.sys [2019-03-19 54584]
S3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [2019-12-15 201280]
S3 klpnpflt;Kaspersky Lab klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [2019-03-10 45904]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\Windows\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\Windows\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\Windows\system32\drivers\MbbCx.sys [2019-11-13 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\Windows\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\Windows\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\Windows\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\Windows\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\Windows\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\Windows\System32\drivers\portcfg.sys [2019-03-19 25600]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2019-12-11 986936]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\Windows\System32\drivers\rhproxy.sys [2019-03-19 113152]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\Windows\System32\drivers\SDFRd.sys [2019-03-19 33592]
S4 hvcrash;hvcrash; C:\Windows\System32\drivers\hvcrash.sys [2019-03-19 32568]
 
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R2 AdAppMgrSvc;Autodesk Desktop App Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2019-11-13 1047416]
R2 AdskLicensingService;Autodesk Desktop Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [2019-01-09 16939312]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2019-10-08 3147344]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2019-10-08 2914896]
R2 AVP20.0;Kaspersky Anti-Virus Service 20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\avp.exe [2019-03-21 357416]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_406b189;Usługa użytkownika platformy podłączonych urządzeń_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2014-10-20 207576]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-07 144072]
R2 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2019-11-30 3460072]
R2 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2019-08-09 2657616]
R2 ibtsiva;@oem6.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\Windows\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2017-05-26 373680]
R2 KSDE4.0;Kaspersky Secure Connection Service 4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [2019-03-21 619752]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-12-29 458176]
R2 OneSyncSvc_406b189;Synchronizuj hosta_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_406b189;Usługa użytkownika Schowek_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\Windows\system32\svchost.exe [2019-03-19 53744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R3 LenovoUpdate;lupdate; C:\Windows\System32\LenovoUpdate.exe [2019-12-12 26608]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2019-03-19 53744]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\Windows\system32\SecurityHealthService.exe [2019-09-11 913168]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Usługa Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-08-09 154920]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_406b189;Agent Activation Runtime_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_406b189;Usługa użytkownika DVR z gry i transmisja_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_406b189;Usługa obsługi użytkownika protokołu Bluetooth_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_406b189;CaptureService_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_406b189;ConsentUX_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2017-05-26 301488]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\Windows\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 CredentialEnrollmentManagerUserSvc_406b189;CredentialEnrollmentManagerUserSvc_406b189; C:\Windows\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_406b189;DeviceAssociationBroker_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_406b189;DevicePicker_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_406b189;Przepływ urządzeń_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-09-11 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe [2019-11-16 1110512]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Usługa Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-08-09 154920]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 klvssbridge64_20.0;Kaspersky Volume Shadow Copy Service Bridge 20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\vssbridge64.exe [2019-03-21 438928]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_406b189;Usługa wiadomości_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 242864]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc_406b189;Dane kontaktowe_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_406b189;Przepływ pracy drukowania_406b189; C:\Windows\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2019-03-19 53744]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2019-03-19 1264128]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2019-03-19 53744]
 
-----------------EOF-----------------
 
Wygenerowano w 0.015s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!