Prosím o kontrolu LOGu
Napsal: 01 pro 2019 10:23
Ahoj,
včera mi Windows Defender hlásil toto... Pak jsem stáhnul Spy&Bot a Eset scener a dopadlo to OK, respektive eset hlásil jednu hrozbu, ale předpokládám, že jí smazal, nějak jsem nepostřehl co s tím udělal. Tu složku kde se hlásí hrozba viz screen jsem smazal celou. Tak ještě prosím o kontrolu logu. Děkuji.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:17:54, on 1. 12. 2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19102.525.0_x86__8wekyb3d8bbwe\YourPhone.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\SecurityHealthSystray.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxService.exe
C:\Program Files\3Dconnexion\3DxWare\3DxNLServer\bin\3DxNLServer.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxPieMenus.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxVirtualLCD.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxProfileServer.exe
C:\Users\Marek\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\AMDS32\AppleMobileDeviceProcess.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x86__8wekyb3d8bbwe\WinStore.App.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x86__8wekyb3d8bbwe\HxOutlook.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x86__8wekyb3d8bbwe\HxTsr.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x86__8wekyb3d8bbwe\Calculator.exe
C:\Windows\ImmersiveControlPanel\SystemSettings.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Users\Marek\AppData\Local\Microsoft\OneDrive\19.192.0926.0012\FileCoAuth.exe
C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\smartscreen.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\iTunes.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\AMDS32\AppleMobileDeviceHelper.exe
C:\WINDOWS\system32\conhost.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\distnoted.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\system32\DllHost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Marek\Downloads\hijackthis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SecurityHealth] %windir%\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Run: [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
O4 - HKLM\..\Run: [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
O4 - HKLM\..\Run: [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [3DxWinCore Service] "C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxService.exe" -quiet
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Marek\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Chromium] "c:\users\marek\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #0] C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe /RestartByRestartManager:8511C2F8-D326-4ef4-934F-CD7111C92B3A (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #1] C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe /RestartByRestartManager:806D9E02-360B-466d-8701-F7FE2307C296 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Application Restart #0] C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe /RestartByRestartManager:8511C2F8-D326-4ef4-934F-CD7111C92B3A (User 'Default user')
O4 - Global Startup: GPUTweakII.lnk = C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{1741d017-9d3a-438f-bda5-635bda15053e}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{6cd498ba-e671-4e2d-bba3-821562411bcc}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{1741d017-9d3a-438f-bda5-635bda15053e}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe
O23 - Service: ASGT - Unknown owner - C:\Windows\System32\ASGT.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: 3Dconnexion Broker Service (Mgl3DCtlrRPCService) - 3Dconnexion - C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\Mgl3DCtlrRPCService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files\Tenda\Common\RaRegistry.exe
--
End of file - 9161 bytes
včera mi Windows Defender hlásil toto... Pak jsem stáhnul Spy&Bot a Eset scener a dopadlo to OK, respektive eset hlásil jednu hrozbu, ale předpokládám, že jí smazal, nějak jsem nepostřehl co s tím udělal. Tu složku kde se hlásí hrozba viz screen jsem smazal celou. Tak ještě prosím o kontrolu logu. Děkuji.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:17:54, on 1. 12. 2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19102.525.0_x86__8wekyb3d8bbwe\YourPhone.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\SecurityHealthSystray.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxService.exe
C:\Program Files\3Dconnexion\3DxWare\3DxNLServer\bin\3DxNLServer.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxPieMenus.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxVirtualLCD.exe
C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxProfileServer.exe
C:\Users\Marek\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\AMDS32\AppleMobileDeviceProcess.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x86__8wekyb3d8bbwe\WinStore.App.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x86__8wekyb3d8bbwe\HxOutlook.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x86__8wekyb3d8bbwe\HxTsr.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x86__8wekyb3d8bbwe\Calculator.exe
C:\Windows\ImmersiveControlPanel\SystemSettings.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Users\Marek\AppData\Local\Microsoft\OneDrive\19.192.0926.0012\FileCoAuth.exe
C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\smartscreen.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\iTunes.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\AMDS32\AppleMobileDeviceHelper.exe
C:\WINDOWS\system32\conhost.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12102.3.43028.0_x86__nzyj5cx40ttqa\distnoted.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\system32\DllHost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Marek\Downloads\hijackthis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SecurityHealth] %windir%\system32\SecurityHealthSystray.exe
O4 - HKLM\..\Run: [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
O4 - HKLM\..\Run: [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
O4 - HKLM\..\Run: [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [3DxWinCore Service] "C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\3DxService.exe" -quiet
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Marek\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Chromium] "c:\users\marek\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #0] C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe /RestartByRestartManager:8511C2F8-D326-4ef4-934F-CD7111C92B3A (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #1] C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe /RestartByRestartManager:806D9E02-360B-466d-8701-F7FE2307C296 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Application Restart #0] C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe /RestartByRestartManager:8511C2F8-D326-4ef4-934F-CD7111C92B3A (User 'Default user')
O4 - Global Startup: GPUTweakII.lnk = C:\Program Files\ASUS\GPU TweakII\GPUTweakII.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{1741d017-9d3a-438f-bda5-635bda15053e}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{6cd498ba-e671-4e2d-bba3-821562411bcc}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{1741d017-9d3a-438f-bda5-635bda15053e}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe
O23 - Service: ASGT - Unknown owner - C:\Windows\System32\ASGT.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: 3Dconnexion Broker Service (Mgl3DCtlrRPCService) - 3Dconnexion - C:\Program Files\3Dconnexion\3DxWare\3DxWinCore32\Mgl3DCtlrRPCService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files\Tenda\Common\RaRegistry.exe
--
End of file - 9161 bytes