Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-03-2020
Ran by fleker (administrator) on FLEKER-PC (MSI MS-7699) (22-03-2020 22:04:38)
Running from C:\Users\fleker\Desktop
Loaded Profiles: fleker (Available Profiles: fleker & berry)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\qBittorrent\qbittorrent.exe
(Adobe Systems) [File not signed] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AMD) [File not signed] C:\Windows\System32\atieclxx.exe
(AMD) [File not signed] C:\Windows\System32\atiesrxx.exe
(COMODO) [File not signed] C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(COMODO) [File not signed] C:\Program Files\Comodo\COMODO Internet Security\cis.exe
(COMODO) [File not signed] C:\Program Files\Comodo\COMODO Internet Security\cis.exe
(COMODO) [File not signed] C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(Digital Wave Ltd) [File not signed] C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe
(Ghisler Software GmbH) [File not signed] C:\Program Files\Total Commander\TOTALCMD.EXE
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC) [File not signed] C:\Program Files\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Microsoft Corp.) [File not signed] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) [File not signed] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) [File not signed] C:\Windows\explorer.exe
(Microsoft Corporation) [File not signed] C:\Windows\servicing\TrustedInstaller.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\audiodg.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\conhost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\conhost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\csrss.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\csrss.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\dwm.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\lsass.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\lsm.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\notepad.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchFilterHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchIndexer.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchProtocolHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\services.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\smss.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\spoolsv.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\StikyNot.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\svchost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\taskeng.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\taskeng.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\taskhost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\VSSVC.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wbem\WmiPrvSE.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wininit.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\winlogon.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wlanext.exe
(PcWinTech.com) [File not signed] C:\Program Files\CleanMem\Mini_Monitor.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\10\bin\postgres.exe
(Ralink Technology, Corp.) [File not signed] C:\Program Files\Ralink\Common\RaRegistry.exe
(Safer-Networking Ltd.) [File not signed] C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [26624 2010-11-20] (Microsoft Corporation) [File not signed]
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [2972672 2016-10-01] (Microsoft Corporation) [File not signed]
HKU\S-1-5-19\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1174016 2010-11-20] (Microsoft Corporation) [File not signed]
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [93696 2009-07-14] (Microsoft Corporation) [File not signed]
HKU\S-1-5-20\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1174016 2010-11-20] (Microsoft Corporation) [File not signed]
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [93696 2009-07-14] (Microsoft Corporation) [File not signed]
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation) [File not signed]
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: E - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: {bd2eafe2-5f83-11e8-a8cf-806e6f6e6963} - D:\AUTORUN.EXE
HKU\S-1-5-21-2860077999-920603677-2990381230-1000\...\MountPoints2: {d336a45e-2953-11e9-8296-d43d7e547634} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [126464 2017-08-11] (Microsoft Corporation) [File not signed]
HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [497664 2017-08-11] (Microsoft Corporation) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-18] (Google LLC) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> "C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corp.) [File not signed]
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {036A68AE-CB63-4C16-AB5B-FB59C8658A7C} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} C:\Windows\System32\AuxiliaryDisplayServices.dll [112128 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {05DB2CE6-AEE1-4F93-9C3E-9C7F8F64CD87} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {071D41B6-8806-4EB0-B661-6CB67BE6E86E} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {c1f85ef8-bcc2-4606-bb39-70c523715eb3} C:\Windows\System32\sdiagschd.dll [45056 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {0803A9C8-C31D-4194-91B3-35FF44BB4C6F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {0A709C37-CF11-4961-97C6-78253CE81D60} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\Windows\system32\sipnotify.exe [288768 2019-07-13] (Microsoft Corporation) [File not signed]
Task: {0E757521-CEEB-4B69-9643-A879F3CE4660} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1} C:\Windows\System32\AuxiliaryDisplayServices.dll [112128 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {0FD05BBC-AC8E-417C-9CCC-85F844D73BEA} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {10234167-95FC-4199-A542-D3D83B8BB0FA} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [10776768 2019-04-16] (COMODO) [File not signed]
Task: {132A1ED1-F0A8-4CA7-B471-695DED173392} - System32\Tasks\Opera scheduled Autoupdate 1496579676 => C:\Program Files\Opera\launcher.exe [1355800 2020-03-12] (Opera Software) [File not signed]
Task: {18F57541-5329-4C80-9937-687A8207485A} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\Windows\system32\defrag.exe [176128 2009-07-14] (Microsoft Corp.) [File not signed]
Task: {1AEDE5C3-FAB6-4F0F-B73D-0F899CA6B4D8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {2277E77C-D57D-4334-BBFA-7DC8025D0117} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe
Task: {2375F586-1009-41FB-B54E-30D8AF2B781D} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [65024 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {23C9972F-417E-4C6E-87FD-F6D252727F69} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [1343400 2013-05-31] (Microsoft Corporation) [File not signed]
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} C:\Windows\System32\perftrack.dll [635904 2015-02-25] (Microsoft Corporation) [File not signed]
Task: {2ABFDFF0-4DDA-4E09-8EB3-B7D8136F9A15} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {2BD05BA6-988D-4BD3-A9CD-9A39F80AF524} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\CorruptionDetector => {190BA3F6-0205-4f46-B589-95C6822899D2} C:\Windows\System32\memdiag.dll [15872 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {2C59ECAF-3A27-4640-9F4B-519B05BDD70F} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\Windows\system32\lpremove.exe [61952 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {2F0334D3-3050-48B7-8C3C-9598BCE0352A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {3408F9A6-8429-47E3-A976-E447728AF7A8} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} C:\Windows\System32\wpcumi.dll [179200 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {36C56ABB-1F4C-4D14-AA57-9A46822230A4} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [4750016 2019-04-16] (COMODO) [File not signed]
Task: {3FBF05FA-6DB7-48B6-BCC6-C1BD1EC80428} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-11] (Google Inc.) [File not signed]
Task: {4040E761-8758-4007-B2FE-142B24BF4B16} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {c463a0fc-794f-4fdf-9201-01938ceacafa} C:\Windows\system32\rasmbmgr.dll [45056 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {40E7D411-F2D0-48FA-8711-1CE9863794F0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {4F933C31-6A0C-4608-B43B-B61C5801962B} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61} C:\Windows\System32\AuxiliaryDisplayServices.dll [112128 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {504FBEC6-E641-463D-B2F9-E5098AD25E50} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [157184 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {546D159B-1168-4584-B7DC-C902E13BD609} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {54968619-B818-4827-8B14-12942F2209B9} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {553622BC-227E-4231-9F46-FED5AC2FAAF3} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(2): C:\Windows\system32\CompatTelRunner.exe [137144  [2019-11-05]] (Microsoft Corporation) [File not signed]
Task: {5AE9C5FB-9EF5-4550-AE0E-F7FA17F32E9F} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [137144 2019-11-05] (Microsoft Corporation) [File not signed]
Task: {5B184694-64C3-4633-94C5-945B3FA561D6} - System32\Tasks\Microsoft\Windows\WindowsBackup\ConfigNotification => C:\Windows\System32\sdclt.exe [1131008 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {5BF1E065-8F5F-4514-8C25-CA823261CAA7} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {5C13625C-DBEB-435A-9A24-0FC754DD5C4B} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {5C1E8AFB-2D05-4F78-AE64-794432C1EBBE} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe [67584 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {60158C7A-6808-42CD-95EE-AFD9A57925DB} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\Windows\system32\appidpolicyconverter.exe [97792 2020-01-03] (Microsoft Corporation) [File not signed]
Task: {6162D2BA-4F49-4794-A39C-EB7E23B88FB4} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {6375CC1C-D975-48D2-9CD5-63DB19B10D4A} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900be39d-6be8-461a-bc4d-b0fa71f5ecb1} C:\Windows\System32\wdi.dll [76800 2015-02-25] (Microsoft Corporation) [File not signed]
Task: {651D2B1C-4B03-43AE-AA0D-AFEA1F60EB0C} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\Windows\system32\DFDWiz.exe [68608 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {68BFB171-2B60-43BD-80A8-E1D94FD8E6B2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {6B7AC694-8D6D-481B-9DD8-2A3A741ADA6D} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => C:\Windows\System32\powercfg.exe [59392 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {6E3566AD-EB01-4D23-819D-3F084321103D} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} C:\Windows\System32\AuxiliaryDisplayServices.dll [112128 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {7199AE55-D7DD-483F-8AF1-3F8AB7CA3EB9} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe [67584 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {731E9C62-95B5-4C8C-AB64-4CC591C9FF5B} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [101888 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {73259F86-29D6-42FF-B1E7-634F6E40D4F8} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\Windows\system32\dimsjob.dll [33792 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {7350F6A7-6B7B-43DC-B3CB-C3A58144AEBF} - System32\Tasks\{9130D078-CEA7-4423-90C9-82C47E4F54FA} => C:\Windows\system32\pcalua.exe -a C:\Users\fleker\AppData\Roaming\mystartsearch\UninstallManager.exe -c  -ptid=ima
Task: {74093200-CC67-4FEE-B7DE-6AC05D058A5B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Systems) [File not signed]
Task: {77760042-60CE-4F21-964A-2C2A261FCA0D} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [4750016 2019-04-16] (COMODO) [File not signed]
Task: {77C2B836-F6C7-4363-9BA0-E3C2B618B31B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E} C:\Windows\System32\HotStartUserAgent.dll [22528 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {7B773B4A-4DF7-4698-A758-0BE2B479525E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {7D3C7871-A917-4EF0-82E8-5F0A96423051} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\system32\BthUdTask.exe [35328 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {8557DA3E-BF4E-49D2-B740-E5CCACE295B6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [1913648 2019-06-04] (AVAST Software) [File not signed]
Task: {85C2B977-3D47-46DE-9AC6-97A22F85D91C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2860077999-920603677-2990381230-1000UA => C:\Users\fleker\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-10] (Google Inc.) [File not signed]
Task: {873FAB0C-878A-4EBB-A7C8-A319AA457D36} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {873FAB0C-878A-4EBB-A7C8-A319AA457D36} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {873FAB0C-878A-4EBB-A7C8-A319AA457D36} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [  []]
Task: {8905ECD8-016F-4DC2-90E6-A5F1FA6A841A} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\Windows\system32\msdrm.dll [390144 2013-12-04] (Microsoft Corporation) [File not signed]
Task: {8B1C59C4-069C-43AA-AC71-20882290A45D} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline => C:\Windows\system32\schtasks.exe [179712 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {9B75C702-EA13-406A-BADB-6C588EE4375B} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\Windows\system32\dimsjob.dll [33792 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {9EFACBE6-A797-4905-A0C6-014CD3000DBB} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask => {e7ed314f-2816-4c26-aeb5-54a34d02404c} C:\Windows\System32\kernelceip.dll [15872 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {9F54B95F-5096-4803-AE61-E9B3AC5B616D} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector => {190BA3F6-0205-4f46-B589-95C6822899D2} C:\Windows\System32\memdiag.dll [15872 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {9F7E6CF0-98BE-4740-ABA9-D1491E0D32AB} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare\Monitor.exe
Task: {A1CFA52F-06F2-418D-ADDB-CD6456D66F43} - System32\Tasks\Microsoft\Windows\RAC\RacTask => {42060D27-CA53-41f5-96E4-B1E8169308A6} C:\Windows\system32\RacEngn.dll [1115136 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {A249F4DC-A6FB-427E-B558-AAA9192B4255} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe [1174016 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {A26DA315-3A6C-4132-AD17-82FCC113A2E3} - System32\Tasks\Clean System Memory => C:\Windows\system32\CleanMem.exe [61440 2014-08-20] (PcWinTech.com) [File not signed]
Task: {A2CFB6F3-B3AE-4971-8E29-C415BE22D2E5} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\Windows\system32\WinSATAPI.dll [335872 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {A316E645-1C56-45A6-BD6A-7DCA79778090} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {c27f6b1d-fe0b-45e4-9257-38799fa69bc8} C:\Windows\System32\usbceip.dll [23552 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {A39D1F1B-CC11-4C81-933F-4E75C332108B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2860077999-920603677-2990381230-1000Core1d0ebe895468e43 => C:\Users\fleker\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-10] (Google Inc.) [File not signed]
Task: {A6394592-54CE-4E93-8D64-1A068F462632} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\Windows\System32\wsqmcons.exe [254976 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {A7A4DBF9-6313-4006-86BC-1670240ABCA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-11] (Google Inc.) [File not signed]
Task: {A91D7557-FB26-4615-AC28-6ED741F928FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
Task: {A91D7557-FB26-4615-AC28-6ED741F928FC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [  []]
Task: {AB771A9F-FB0F-4FA1-8B5F-48186615901E} - System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader => {B210D694-C8DF-490d-9576-9E20CDBC20BD} C:\Windows\System32\mscms.dll [479232 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {AEEE7D79-DDF4-4746-82B4-8D9BFD06EFF4} - System32\Tasks\RealDownloader Update Check => C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
Task: {B03F776B-4AAE-4C40-A089-2E8BAF58C814} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} C:\Program Files\Windows Live\SOXE\wlsoxe.dll [192704 2014-03-31] (Microsoft Corporation) [File not signed]
Task: {B0428434-E566-4760-9EB5-FA1E2FAA3AA7} - System32\Tasks\Windows Codec Update Service => C:\Program Files\Essentials Codec Pack\WECPUpdate.exe [258048 2012-02-03] (MediaCodec.Org) [File not signed]
Task: {B639ECF4-D3BC-42BB-A98B-AAF7EB9426F2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [4460472 2014-06-24] (Safer-Networking Ltd.) [File not signed]
Task: {BBA67AD0-4BA0-4B44-827B-FF419B70C057} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\Windows\System32\PlaySndSrv.dll [77312 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {BF72D333-6F8E-4A37-9FC5-645E00D1E90D} - System32\Tasks\{FAF90B7C-CE12-49C8-BDB8-6818BBD28A1C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\TheFreeHD-Sport TV V10\Uninstall.exe" -c /fcp=1
Task: {C05F947C-C496-4D06-811C-755867A42969} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {C0E3F126-ACEE-4002-922E-9DBB30995DDD} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {C3E05EC9-211B-4556-BC41-715B2D964224} - System32\Tasks\{E1DA0ED7-B838-4573-98DB-CB268DD2AF35} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\SUPERAntiSpyware\Uninstall.exe"
Task: {C90440A0-6D8F-423F-8F42-83EEF05CE708} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\Windows\system32\appidcertstorecheck.exe [16896 2020-01-03] (Microsoft Corporation) [File not signed]
Task: {CD4F5A84-71C2-417D-8425-58F7FC3329E0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {CE9C417E-DA17-4845-8946-5E3C3FD82C66} - System32\Tasks\Opera scheduled assistant Autoupdate 1582748210 => C:\Program Files\Opera\launcher.exe [1355800 2020-03-12] (Opera Software) [File not signed]
Task: {CF86A4A8-C894-4AAA-99C5-DF73311B2159} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe [186368 2018-01-01] (Microsoft Corporation) [File not signed]
Task: {D0B58EAD-28C8-4F06-9173-3E8DCEDB51BB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [4818848 2014-06-24] (Safer-Networking Ltd.) [File not signed]
Task: {D21F6024-191F-4454-BBBC-09A650DA2549} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => C:\Windows\system32\aitagent.exe [119808 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {D3B4E7A4-41A1-4D0F-9F8E-AFE34D94F376} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358b920-0ac7-461f-98f4-58e32cd89148} C:\Windows\system32\wininet.dll [4387840 2019-12-17] (Microsoft Corporation) [File not signed]
Task: {D696F0FD-6220-45DC-94B8-74881FD38BA3} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\Windows\system32\sipnotify.exe [288768 2019-07-13] (Microsoft Corporation) [File not signed]
Task: {D8BB5B7F-D0CA-4F67-A3D7-73E1D05F63DA} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {ca767aa8-9157-4604-b64b-40747123d5f2} C:\Windows\System32\regidle.dll [13312 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {D90FF7EF-7D00-4EBF-A688-FCA2F8D3507D} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [10776768 2019-04-16] (COMODO) [File not signed]
Task: {D9CDDD1F-3870-46E9-86C5-3DCF84C3CA25} - System32\Tasks\CleanMem Mini Monitor => C:\Program Files\CleanMem\mini_monitor.exe [1421312 2014-08-20] (PcWinTech.com) [File not signed]
Task: {DB400909-3563-4ACE-A254-413DF49A108D} - System32\Tasks\Driver Booster SkipUAC (SYSTEM) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe
Task: {DE8699D2-8A05-42F7-8A85-5162AF47D26A} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [54272 2019-09-10] (Microsoft Corporation) [File not signed] <==== ATTENTION
Task: {DE8BAE53-2809-4F75-85EF-427D364B9B2C} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\Windows\system32\dimsjob.dll [33792 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {E15157D7-FDA9-414E-B3AF-19F585EC0CDB} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [4750016 2019-04-16] (COMODO) [File not signed]
Task: {E6392B27-607E-45FD-A481-97FAB6D5837B} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [472064 2019-12-31] (Microsoft Corporation) [File not signed]
Task: {E6F3A527-8B0B-43FA-94EB-584032761924} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4d8a-A53E-D81C70CF743C} C:\Windows\system32\msdrm.dll [390144 2013-12-04] (Microsoft Corporation) [File not signed]
Task: {E720E91B-948A-4E04-A0B8-0140B98B3281} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-12] (Adobe) [File not signed]
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB} C:\Windows\System32\wpcmig.dll [15872 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {E86799CB-AE23-4004-B6EE-4973E2132730} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {EC54D2A6-17B7-49D7-914B-C98F99269D1B} - System32\Tasks\{76771257-43CB-4FD8-B3CA-2B26AC8E9DB6} => C:\Windows\system32\pcalua.exe -a Q:\Downloads\MapSource_6163.exe -d Q:\Downloads
Task: {ECD9F4BD-B2BF-47F1-A143-17C7E3901AC9} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify2 => C:\Windows\system32\EOSNotify.exe [472064 2019-12-31] (Microsoft Corporation) [File not signed]
Task: {F1369A11-E983-4458-B390-712EFA1CBA44} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575cfe-9a55-4003-a5e1-f38d1ebdcbe1} C:\Windows\system32\MsCtfMonitor.dll [19968 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {F22761AC-F0AE-4EBD-A1CB-BE69446FEBDF} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {F253AD6C-D968-48A9-AA60-F53F6EFA18AA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe [226304 2010-11-20] (Microsoft Corporation) [File not signed]
Task: {F682500B-6613-43D0-A39F-234116B17D5F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [4747720 2014-06-27] (Safer-Networking Ltd.) [File not signed]
Task: {F93C7104-998A-4A38-B935-775A3138B3C3} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotifications.exe [89600 2009-07-14] (Microsoft Corporation) [File not signed]
Task: {FFB8486A-9861-4B82-BE38-C7F8FB1B6605} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855fec53-d2e4-4999-9e87-3414e9cf0ff4} C:\Windows\system32\wdc.dll [1227264 2017-06-12] (Microsoft Corporation) [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Chrome Cleanup Tool logs upload retry.job => Q:\Downloads\software_removal_tool.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2860077999-920603677-2990381230-1000Core.job => C:\Users\fleker\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 C:\Windows\system32\NLAapi.dll [52224 2012-10-03] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [52224 2009-07-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024 2009-07-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024 2009-07-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 05 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 06 C:\Windows\system32\winrnr.dll [20992 2009-07-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corp.) [File not signed]
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corp.) [File not signed]
Winsock: Catalog9 01 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 02 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 03 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 04 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 05 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 06 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 07 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 08 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 09 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 10 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 11 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 12 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 13 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 14 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 15 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 16 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 17 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 18 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 19 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 20 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 21 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 22 C:\Windows\system32\mswsock.dll [231424 2016-06-14] (Microsoft Corporation) [File not signed]
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 77.236.192.130 77.236.192.150
Tcpip\..\Interfaces\{819151BA-D0B9-43E4-9AC0-A43EA7183990}: [DhcpNameServer] 77.236.192.130 77.236.192.150

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
DownloadDir: Q:\Downloads
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {03198DAC-EF8D-4B51-B4CC-DD2B6CD8D399} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {2FF8A88D-B182-4B98-8166-B8E2DA2E0477} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {4CD834B7-559C-45FF-812C-522BA6C71038} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {50843D58-36BF-43D5-8F02-2FD3A5B3D579} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {59CA9E3E-F97B-40E7-B71D-C53FF5D7E8FE} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {6B1C2026-BCA5-46E2-AFB5-C39107F69533} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {A7F02A85-874C-4876-84ED-B10DFD10D879} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {B20D65EC-40E6-4F68-8A7C-5278DA87AAE5} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__180524__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {D129CCF2-165E-48D1-B05C-BEE8E0E2666C} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-2860077999-920603677-2990381230-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) [File not signed]
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) [File not signed]
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\system32\urlmon.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2018-02-10] (Microsoft Corporation) [File not signed]
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: gcf - No CLSID Value - 
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation) [File not signed]
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-12-04] (Microsoft Corporation) [File not signed]
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll [2018-05-11] (Microsoft Corporation) [File not signed]
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2013-09-25] (Microsoft Corporation) [File not signed]
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-12-04] (Microsoft Corporation) [File not signed]
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2018-02-10] (Microsoft Corporation) [File not signed]
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2019-12-17] (Microsoft Corporation) [File not signed]
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll [2014-03-31] (Microsoft Corporation) [File not signed]
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation) [File not signed]
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation) [File not signed]
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation) [File not signed]
Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL [2009-02-26] (Microsoft Corporation) [File not signed]

FireFox:
========
FF DefaultProfile: negmd9pm.default
FF ProfilePath: C:\Users\fleker\AppData\Roaming\ParseHub\parsehub\Profiles\negmd9pm.default [2018-04-17]
FF Extension: (No Name) - C:\Program Files\ParseHub\browser\extensions\install@parsehub.com.xpi [not found]
FF ProfilePath: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default [2020-03-22]
FF Homepage: Mozilla\Firefox\Profiles\uuy52ycx.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF NewTab: Mozilla\Firefox\Profiles\uuy52ycx.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10440__180524__yaff
FF Notifications: Mozilla\Firefox\Profiles\uuy52ycx.default -> hxxps://app.zonky.cz
FF NewTabOverride: Mozilla\Firefox\Profiles\uuy52ycx.default -> Enabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: (Distill Web Monitor) - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\alertbox@ajitk.com.xpi [2017-09-15] [Legacy]
FF Extension: (Check4Change) - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\check4change-owner@mozdev.org.xpi [2019-02-28]
FF Extension: (Pushbullet) - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\jid1-BYcQOfYfmBMd9A@jetpack.xpi [2019-02-28]
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\sko-extension@firma.seznam.cz.xpi [2017-12-06]
FF Extension: (No Name) - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-02-28]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-11-02]
FF SearchPlugin: C:\Users\fleker\AppData\Roaming\Mozilla\Firefox\Profiles\uuy52ycx.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-05-24]
FF Plugin: @ganymede/GanymedeNetPlugin,version=1.0 -> C:\Program Files\Ganymede\Plugins\npganymedenet.dll [2013-07-15] ( ) [File not signed]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) [File not signed]
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN) [File not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems) [File not signed]
FF Plugin HKU\S-1-5-21-2860077999-920603677-2990381230-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\fleker\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-08-08] (Unity Technologies ApS) [File not signed]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default [2020-03-22]
CHR DownloadDir: Q:\Downloads
CHR Notifications: Default -> hxxps://gcx.aliexpress.com; hxxps://m.tipsport.cz; hxxps://www.booktook.cz; hxxps://www.mall.tv; hxxps://www.miroslavholec.cz; hxxps://www.tipsport.cz; hxxps://www.wedos.cz
CHR HomePage: Default -> hxxp://google.com/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Easy Auto Refresh) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2019-07-01]
CHR Extension: (Prezentace) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-18]
CHR Extension: (Touch VPN - Secure and unlimited VPN proxy) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2020-03-20]
CHR Extension: (YouTube) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-08]
CHR Extension: (Link Grabber) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\caodelkhipncidmoebgbbeemedohcdma [2018-04-23]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-02-19]
CHR Extension: (Vyhledávání Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-08]
CHR Extension: (Clear Cache) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cppjkneekbjaeellbfkmgnhonkkjfpdn [2017-04-17]
CHR Extension: (Link Klipper - Extract all links) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahollcgofmpnehocdgofnhkkchiekoo [2015-10-24]
CHR Extension: (ZenMate Free VPN – Best VPN for Chrome) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2020-03-12]
CHR Extension: (Notepad - online) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fefodpegbocmidnfphgggnjcicipaibk [2019-07-04]
CHR Extension: (Tabulky) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Download Sound) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmcbineojopoamfhaabogigdbpbklnld [2018-06-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-13]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-03-20]
CHR Extension: (Multilink) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakpaefefpemiaahboigpjchbmgkejaj [2016-02-05]
CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2020-03-16]
CHR Extension: (Auto Refresh) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifooldnmmcmlbdennkpdnlnbgbmfalko [2019-09-02]
CHR Extension: (Omnibox Timer) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\iooaeaogjngpihndkcednkblomlkaaif [2018-02-14]
CHR Extension: (Convert Webpage) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfgjakpoeboiacbdckndebilgicejhkp [2015-09-18]
CHR Extension: (The Great Suspender) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2019-08-24]
CHR Extension: (Linkclump) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2019-11-30]
CHR Extension: (Highlight Keywords for Google Search) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhahncknpppipmgjchbbhehkfglelepf [2018-04-21]
CHR Extension: (Hotspot Shield VPN Free Proxy – Unblock Sites) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbejmccbhkncgokjcmghpfloaajcffj [2019-05-04]
CHR Extension: (FreshStart - Cross Browser Session Manager) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmidkjogcjnnlfimjcedenagjfacpobb [2016-05-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Context Menu Search) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocpcmghnefmdhljkoiapafejjohldoga [2016-05-07]
CHR Extension: (Wachete - Monitor website content changes) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\oendfdlboglnmpmlpnokgopffmiphfgn [2018-07-18]
CHR Extension: (Video Editor for Chromebook & more: Free app) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\okgjbfikepgflmlelgfgecmgjnmnmnnb [2019-09-25]
CHR Extension: (Beautiful Audio Editor) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\okiblndpcefmebnkjnjfplijnelbcjmm [2016-12-24]
CHR Extension: (Fullscreen Anything) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\olcfgpmjldkkjdclidhcbonieibfhhdh [2019-09-07]
CHR Extension: (Chrome Memory Clear) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompbnonfhnfbkoeohfbdfkblkfmmkcap [2019-08-09]
CHR Extension: (Gmail) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-04]
CHR Extension: (Podobné stránky Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjnfggphgdjblhfjaphkjhfpiiekbbej [2019-01-04]
CHR Extension: (Chrome Media Router) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR Extension: (Domain Availability Checker and Whois Lookup) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pokekecininnhejfkgcbnekjddnepope [2018-04-21]
CHR Extension: (panLorenc tipsport alarm) - Q:\Poslední dokumenty\panLorenc tipsport alarm [2019-10-30]
CHR Extension: (Tipsport a sportradar statistiky) - Q:\Poslední dokumenty\sportradar v.3.0 (mtman) [2019-05-17]
CHR Profile: C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-22]
CHR Extension: (Prezentace Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-22]
CHR Extension: (Dokumenty Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-22]
CHR Extension: (Disk Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-22]
CHR Extension: (YouTube) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-22]
CHR Extension: (Vyhledávání Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-22]
CHR Extension: (Tabulky Google) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-22]
CHR Extension: (Gmail) - C:\Users\fleker\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-22]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - <no Path/update_url>
CHR HKU\S-1-5-21-2860077999-920603677-2990381230-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-2860077999-920603677-2990381230-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-2860077999-920603677-2990381230-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2860077999-920603677-2990381230-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
StartMenuInternet: Google Chrome Canary.THXZD3ZNDJ4DFRIXY5N5GMV3U4 - C:\Users\fleker\AppData\Local\Google\Chrome SxS\Application\chrome.exe

Opera: 
=======
OPR DownloadDir: Q:\Downloads
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\fleker\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2019-10-24]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88648 2020-02-25] (Adobe Systems) [File not signed]
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-12] (Adobe) [File not signed]
R3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [62464 2015-11-10] (Microsoft Corporation) [File not signed]
S3 ALG; C:\Windows\System32\alg.exe [59392 2009-07-14] (Microsoft Corporation) [File not signed]
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [209408 2014-05-18] (AMD) [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-12-19] (Advanced Micro Devices, Inc.) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [29696 2020-01-03] (Microsoft Corporation) [File not signed]
S3 Appinfo; C:\Windows\System32\appinfo.dll [47104 2019-11-05] (Microsoft Corporation) [File not signed]
S3 aspnet_state; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [47960 2019-03-28] (Microsoft Corporation) [File not signed]
R2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [474624 2019-09-12] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [474624 2019-09-12] (Microsoft Corporation) [File not signed]
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [88576 2019-11-05] (Microsoft Corporation) [File not signed]
S3 BDESVC; C:\Windows\System32\bdesvc.dll [76800 2009-07-14] (Microsoft Corporation) [File not signed]
R2 BFE; C:\Windows\System32\bfe.dll [494592 2010-11-20] (Microsoft Corporation) [File not signed]
R2 BITS; C:\Windows\System32\qmgr.dll [585728 2010-11-20] (Microsoft Corporation) [File not signed]
S3 Browser; C:\Windows\System32\browser.dll [102912 2012-07-04] (Microsoft Corporation) [File not signed]
S3 bthserv; C:\Windows\system32\bthserv.dll [64512 2009-07-14] (Microsoft Corporation) [File not signed]
S4 CertPropSvc; C:\Windows\System32\certprop.dll [67584 2010-11-20] (Microsoft Corporation) [File not signed]
S4 clr_optimization_v2.0.50727_32; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [67224 2014-03-20] (Microsoft Corporation) [File not signed]
S2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [132792 2019-03-28] (Microsoft Corporation) [File not signed]
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [9055208 2019-04-16] (COMODO) [File not signed]
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1983680 2019-04-11] (COMODO) [File not signed]
S3 COMSysApp; C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [7168 2009-07-14] (Microsoft Corporation) [File not signed]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [146432 2019-12-10] (Microsoft Corporation) [File not signed]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [380928 2019-11-15] (Microsoft Corporation) [File not signed]
S3 defragsvc; C:\Windows\System32\defragsvc.dll [218624 2009-07-14] (Microsoft Corporation) [File not signed]
S3 DfSdkS; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 17\DfsdkS.exe [406016 2019-09-27] (mst software GmbH, Germany) [File not signed]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [256512 2019-07-13] (Microsoft Corporation) [File not signed]
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [940784 2018-08-13] (Microsoft Corporation) [File not signed]
R2 DigitalWave.Update.Service; C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-07-05] (Digital Wave Ltd) [File not signed]
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [131584 2018-06-08] (Microsoft Corporation) [File not signed]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [214016 2010-11-20] (Microsoft Corporation) [File not signed]
R2 DPS; C:\Windows\system32\dps.dll [144384 2010-11-20] (Microsoft Corporation) [File not signed]
R3 EapHost; C:\Windows\System32\eapsvc.dll [98304 2009-07-14] (Microsoft Corporation) [File not signed]
R2 EFS; C:\Windows\System32\lsass.exe [22016 2020-01-03] (Microsoft Corporation) [File not signed]
S3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [556544 2010-11-20] (Microsoft Corporation) [File not signed]
S3 ehSched; C:\Windows\ehome\ehsched.exe [94720 2009-07-14] (Microsoft Corporation) [File not signed]
R2 eventlog; C:\Windows\System32\wevtsvc.dll [1086976 2010-11-20] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\system32\es.dll [271360 2009-07-14] (Microsoft Corporation) [File not signed]
S3 Fax; C:\Windows\system32\fxssvc.exe [523264 2010-11-20] (Microsoft Corporation) [File not signed]
S3 fdPHost; C:\Windows\system32\fdPHost.dll [12800 2009-07-14] (Microsoft Corporation) [File not signed]
S3 FDResPub; C:\Windows\system32\fdrespub.dll [28160 2009-07-14] (Microsoft Corporation) [File not signed]
R2 FontCache; C:\Windows\system32\FntCache.dll [910336 2019-11-05] (Microsoft Corporation) [File not signed]
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [42856 2009-06-10] (Microsoft Corporation) [File not signed]
S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\80.0.3987.149\elevation_service.exe [963568 2020-03-16] (Google LLC) [File not signed]
R2 gpsvc; C:\Windows\System32\gpsvc.dll [606720 2016-06-14] (Microsoft Corporation) [File not signed]
S2 gupdate; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-11] (Google Inc.) [File not signed]
S3 gupdatem; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-11] (Google Inc.) [File not signed]
R3 hidserv; C:\Windows\system32\hidserv.dll [49152 2009-07-14] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [71168 2010-11-20] (Microsoft Corporation) [File not signed]
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [194560 2010-11-20] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [165376 2010-11-20] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S3 idsvc; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [879248 2014-06-30] (Microsoft Corporation) [File not signed]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [104960 2019-12-17] (Microsoft Corporation) [File not signed]
R2 IKEEXT; C:\Windows\System32\ikeext.dll [679424 2013-10-12] (Microsoft Corporation) [File not signed]
S3 IPBusEnum; C:\Windows\system32\ipbusenum.dll [78848 2009-07-14] (Microsoft Corporation) [File not signed]
S4 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [502784 2019-11-05] (Microsoft Corporation) [File not signed]
R3 KeyIso; C:\Windows\system32\lsass.exe [22016 2020-01-03] (Microsoft Corporation) [File not signed]
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [308736 2009-07-14] (Microsoft Corporation) [File not signed]
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [167936 2020-01-03] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [88576 2018-04-25] (Microsoft Corporation) [File not signed]
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [189952 2009-07-14] (Microsoft Corporation) [File not signed]
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [18432 2009-07-14] (Microsoft Corporation) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5547464 2020-03-22] (Malwarebytes) [File not signed]
S4 Mcx2Svc; C:\Windows\system32\Mcx2Svc.dll [68096 2010-11-20] (Microsoft Corporation) [File not signed]
S3 Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation) [File not signed]
R2 MMCSS; C:\Windows\system32\mmcss.dll [49664 2009-07-14] (Microsoft Corporation) [File not signed]
S3 MozillaMaintenance; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [217040 2019-02-28] (Mozilla Foundation) [File not signed]
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [564736 2018-08-10] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\Windows\System32\msdtc.exe [134144 2009-07-14] (Microsoft Corporation) [File not signed]
S4 MSiSCSI; C:\Windows\system32\iscsiexe.dll [114688 2009-07-14] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\System32\msiexec.exe /V [73216 2019-11-05] (Microsoft Corporation) [File not signed]
S4 napagent; C:\Windows\system32\qagentRT.dll [330240 2010-11-20] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\system32\lsass.exe [22016 2020-01-03] (Microsoft Corporation) [File not signed]
R3 Netman; C:\Windows\System32\netman.dll [280576 2009-07-14] (Microsoft Corporation) [File not signed]
S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation) [File not signed]
S4 NetPipeActivator; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation) [File not signed]
R3 netprofm; C:\Windows\System32\netprofm.dll [360448 2009-07-14] (Microsoft Corporation) [File not signed]
S4 NetTcpActivator; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136256 2019-03-28] (Microsoft Corporation) [File not signed]
R2 NlaSvc; C:\Windows\System32\nlasvc.dll [242688 2015-01-14] (Microsoft Corporation) [File not signed]
R2 nsi; C:\Windows\system32\nsisvc.dll [19968 2017-08-11] (Microsoft Corporation) [File not signed]
S3 odserv; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation) [File not signed]
S3 ose; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation) [File not signed]
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [269824 2019-07-13] (Microsoft Corporation) [File not signed]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [328192 2018-01-01] (Microsoft Corporation) [File not signed]
R3 PcaSvc; C:\Windows\System32\pcasvc.dll [157184 2019-06-12] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\system32\pla.dll [1508352 2017-03-10] (Microsoft Corporation) [File not signed]
R2 PlugPlay; C:\Windows\system32\umpnpmgr.dll [293376 2011-05-24] (Microsoft Corporation) [File not signed]
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [20480 2009-07-14] (Microsoft Corporation) [File not signed]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [269824 2019-07-13] (Microsoft Corporation) [File not signed]
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [351744 2016-06-14] (Microsoft Corporation) [File not signed]
R2 Power; C:\Windows\system32\umpo.dll [122368 2019-09-19] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [164864 2015-01-14] (Microsoft Corporation) [File not signed]
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [22016 2020-01-03] (Microsoft Corporation) [File not signed]
S3 QWAVE; C:\Windows\system32\qwave.dll [210944 2009-07-14] (Microsoft Corporation) [File not signed]
R2 RalinkRegistryWriter; C:\Program Files\Ralink\Common\RaRegistry.exe [391472 2013-06-26] (Ralink Technology, Corp.) [File not signed]
S3 RaMediaServer; C:\Program Files\Ralink\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink) [File not signed]
S3 RasAuto; C:\Windows\System32\rasauto.dll [90624 2009-07-14] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\Windows\System32\rasmans.dll [286208 2010-11-20] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [75264 2017-11-02] (Microsoft Corporation) [File not signed]
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [112640 2009-07-14] (Microsoft Corporation) [File not signed]
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [43520 2009-07-14] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\Windows\system32\locator.exe [9216 2009-07-14] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\Windows\system32\rpcss.dll [380928 2019-11-15] (Microsoft Corporation) [File not signed]
R2 SamSs; C:\Windows\system32\lsass.exe [22016 2020-01-03] (Microsoft Corporation) [File not signed]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum\RpcAgentSrv.exe [137264 2017-06-27] (SiSoftware) [File not signed]
S3 SCardSvr; C:\Windows\System32\SCardSvr.dll [132608 2009-07-14] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\Windows\system32\schedsvc.dll [751104 2019-06-04] (Microsoft Corporation) [File not signed]
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [67584 2010-11-20] (Microsoft Corporation) [File not signed]
S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [125952 2010-11-20] (Microsoft Corporation) [File not signed]
S2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) [File not signed]
S2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) [File not signed]
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) [File not signed]
S3 seclogon; C:\Windows\system32\seclogon.dll [21504 2016-02-09] (Microsoft Corporation) [File not signed]
R2 SENS; C:\Windows\System32\sens.dll [49664 2009-07-14] (Microsoft Corporation) [File not signed]
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [25088 2009-07-14] (Microsoft Corporation) [File not signed]
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [724376 2015-08-12] (Nokia) [File not signed]
S3 SessionEnv; C:\Windows\system32\sessenv.dll [113664 2010-11-20] (Microsoft Corporation) [File not signed]
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [300544 2009-07-14] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [328704 2019-12-10] (Microsoft Corporation) [File not signed]
S4 SNMPTRAP; C:\Windows\System32\snmptrap.exe [12800 2009-07-14] (Microsoft Corporation) [File not signed]
R2 Spooler; C:\Windows\System32\spoolsv.exe [317952 2018-01-01] (Microsoft Corporation) [File not signed]
S2 sppsvc; C:\Windows\system32\sppsvc.exe [3179520 2010-11-20] (Microsoft Corporation) [File not signed]
S3 sppuinotify; C:\Windows\system32\sppuinotify.dll [53760 2010-11-20] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [162816 2019-07-13] (Microsoft Corporation) [File not signed]
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [90112 2009-07-14] (Microsoft Corporation) [File not signed]
R2 StiSvc; C:\Windows\System32\wiaservc.dll [465920 2019-12-10] (Microsoft Corporation) [File not signed]
R3 swprv; C:\Windows\System32\swprv.dll [313856 2009-07-14] (Microsoft Corporation) [File not signed]
R2 SysMain; C:\Windows\system32\sysmain.dll [1155584 2018-01-01] (Microsoft Corporation) [File not signed]
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [72704 2017-12-05] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [242176 2010-11-20] (Microsoft Corporation) [File not signed]
S3 TermService; C:\Windows\System32\termsrv.dll [527872 2019-03-11] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [37376 2009-07-14] (Microsoft Corporation) [File not signed]
S3 THREADORDER; C:\Windows\system32\mmcss.dll [49664 2009-07-14] (Microsoft Corporation) [File not signed]
S4 TrkWks; C:\Windows\System32\trkwks.dll [77312 2009-07-14] (Microsoft Corporation) [File not signed]
R3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [204800 2010-11-20] (Microsoft Corporation) [File not signed]
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [35840 2009-07-14] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\System32\upnphost.dll [266752 2019-11-05] (Microsoft Corporation) [File not signed]
R2 UxSms; C:\Windows\System32\uxsms.dll [29696 2009-07-14] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\system32\lsass.exe [22016 2020-01-03] (Microsoft Corporation) [File not signed]
S3 vds; C:\Windows\System32\vds.exe [453632 2010-11-20] (Microsoft Corporation) [File not signed]
R3 VSS; C:\Windows\system32\vssvc.exe [1025536 2010-11-20] (Microsoft Corporation) [File not signed]
S3 W32Time; C:\Windows\system32\w32time.dll [288768 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WatAdminSvc; C:\Windows\system32\Wat\WatAdminSvc.exe [1343400 2013-05-31] (Microsoft Corporation) [File not signed]
S3 wbengine; C:\Windows\system32\wbengine.exe [1203200 2010-11-20] (Microsoft Corporation) [File not signed]
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [151552 2009-07-14] (Microsoft Corporation) [File not signed]
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [276992 2010-11-20] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [33280 2019-11-15] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [76800 2015-02-25] (Microsoft Corporation) [File not signed]
S3 WdiSystemHost; C:\Windows\system32\wdi.dll [76800 2015-02-25] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\System32\webclnt.dll [208896 2016-10-11] (Microsoft Corporation) [File not signed]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [147968 2009-07-14] (Microsoft Corporation) [File not signed]
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [62464 2019-09-10] (Microsoft Corporation) [File not signed]
S3 WerSvc; C:\Windows\System32\WerSvc.dll [65024 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [54784 2019-12-10] (Microsoft Corporation) [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [351744 2016-06-14] (Microsoft Corporation) [File not signed]
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [168960 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [1178112 2016-10-01] (Microsoft Corporation) [File not signed]
R2 Wlansvc; C:\Windows\System32\wlansvc.dll [829440 2019-06-28] (Microsoft Corporation) [File not signed]
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713904 2012-07-17] (Microsoft Corp.) [File not signed]
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [136192 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1121792 2010-11-20] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [10752 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [85504 2010-11-20] (Microsoft Corporation) [File not signed]
R2 wscsvc; C:\Windows\System32\wscsvc.dll [73728 2009-07-14] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [428544 2019-12-10] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\Windows\system32\wuaueng.dll [2091520 2019-12-10] (Microsoft Corporation) [File not signed]
S3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [73216 2012-07-26] (Microsoft Corporation) [File not signed]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [185344 2014-01-28] (Microsoft Corporation) [File not signed]
R2 postgresql-10; "C:\Program Files\PostgreSQL\10\bin\pg_ctl.exe" runservice -N "postgresql-10" -D "C:\Program Files\PostgreSQL\10\data" -w

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [164864 2010-11-20] (Microsoft Corporation) [File not signed]
R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [274624 2018-02-10] (Microsoft Corporation) [File not signed]
S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [10240 2010-11-20] (Microsoft Corporation) [File not signed]
S3 adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys [422976 2009-07-14] (Adaptec, Inc.) [File not signed]
S3 adpahci; C:\Windows\system32\DRIVERS\adpahci.sys [297552 2009-07-14] (Adaptec, Inc.) [File not signed]
S3 adpu320; C:\Windows\system32\DRIVERS\adpu320.sys [146512 2009-07-14] (Adaptec, Inc.) [File not signed]
R1 AFD; C:\Windows\system32\drivers\afd.sys [338944 2017-04-04] (Microsoft Corporation) [File not signed]
S3 agp440; C:\Windows\system32\drivers\agp440.sys [53312 2009-07-14] (Microsoft Corporation) [File not signed]
S3 aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [70720 2009-07-14] (Adaptec, Inc.) [File not signed]
S3 aliide; C:\Windows\system32\drivers\aliide.sys [14400 2009-07-14] (Acer Laboratories Inc.) [File not signed]
S3 amdagp; C:\Windows\system32\drivers\amdagp.sys [52968 2019-04-19] (Microsoft Corporation) [File not signed]
S3 amdide; C:\Windows\system32\drivers\amdide.sys [14912 2009-07-14] (Microsoft Corporation) [File not signed]
S3 AmdK8; C:\Windows\system32\drivers\amdk8.sys [55296 2020-01-03] (Microsoft Corporation) [File not signed]
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11527680 2014-05-18] (Advanced Micro Devices, Inc.) [File not signed]
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [501248 2014-05-18] (Advanced Micro Devices, Inc.) [File not signed]
R3 AmdPPM; C:\Windows\system32\drivers\amdppm.sys [52736 2020-01-03] (Microsoft Corporation) [File not signed]
S3 amdsata; C:\Windows\system32\drivers\amdsata.sys [80256 2011-03-11] (Advanced Micro Devices) [File not signed]
S3 amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [159312 2009-07-14] (AMD Technologies Inc.) [File not signed]
R0 amdxata; C:\Windows\System32\drivers\amdxata.sys [22400 2011-03-11] (Advanced Micro Devices) [File not signed]
R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices) [File not signed]
S3 AppID; C:\Windows\system32\drivers\appid.sys [50688 2020-01-03] (Microsoft Windows) [File not signed]
S3 arc; C:\Windows\system32\DRIVERS\arc.sys [76368 2009-07-14] (Adaptec, Inc.) [File not signed]
S3 arcsas; C:\Windows\system32\DRIVERS\arcsas.sys [86608 2009-07-14] (Adaptec, Inc.) [File not signed]
R0 asahci32; C:\Windows\System32\DRIVERS\asahci32.sys [40344 2013-01-10] (Asmedia Technology) [File not signed]
S3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [17920 2009-07-14] (Microsoft Corporation) [File not signed]
R0 atapi; C:\Windows\System32\drivers\atapi.sys [21584 2009-07-14] (Microsoft Corporation) [File not signed]
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [77312 2014-05-18] (Advanced Micro Devices) [File not signed]
S3 b06bdrv; C:\Windows\system32\DRIVERS\bxvbdx.sys [430080 2009-07-13] (Broadcom Corporation) [File not signed]
S3 b57nd60x; C:\Windows\System32\DRIVERS\b57nd60x.sys [229888 2009-07-13] (Broadcom Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [25168 2009-07-14] (Microsoft Corporation) [File not signed]
R1 Beep; C:\Windows\System32\Drivers\Beep.sys [6144 2009-07-14] (Microsoft Corporation) [File not signed]
R1 blbdrive; C:\Windows\System32\DRIVERS\blbdrive.sys [35328 2009-07-14] (Microsoft Corporation) [File not signed]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [68608 2018-07-18] (Microsoft Corporation) [File not signed]
S3 BrFiltLo; C:\Windows\system32\DRIVERS\BrFiltLo.sys [13568 2009-07-13] (Brother Industries, Ltd.) [File not signed]
S3 BrFiltUp; C:\Windows\system32\DRIVERS\BrFiltUp.sys [5248 2009-07-13] (Brother Industries, Ltd.) [File not signed]
S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [272128 2009-07-14] (Brother Industries Ltd.) [File not signed]
S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [62336 2009-07-13] (Brother Industries Ltd.) [File not signed]
S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [12160 2009-07-13] (Brother Industries Ltd.) [File not signed]
S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [11904 2009-07-13] (Brother Industries Ltd.) [File not signed]
S3 BTHMODEM; C:\Windows\system32\DRIVERS\bthmodem.sys [56320 2009-07-14] (Microsoft Corporation) [File not signed]
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [70656 2019-02-10] (Microsoft Corporation) [File not signed]
R1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [108544 2010-11-20] (Microsoft Corporation) [File not signed]
S3 circlass; C:\Windows\system32\DRIVERS\circlass.sys [37888 2009-07-14] (Microsoft Corporation) [File not signed]
R0 CLFS; C:\Windows\System32\CLFS.sys [253880 2019-12-10] (Microsoft Corporation) [File not signed]
S3 CmBatt; C:\Windows\system32\DRIVERS\CmBatt.sys [14080 2009-07-14] (Microsoft Corporation) [File not signed]
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [30576 2019-03-15] (COMODO) [File not signed]
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [674760 2019-03-15] (COMODO) [File not signed]
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [54368 2019-03-15] (COMODO) [File not signed]
S3 cmdide; C:\Windows\system32\drivers\cmdide.sys [15952 2009-07-14] (CMD Technology, Inc.) [File not signed]
R0 CNG; C:\Windows\System32\Drivers\cng.sys [374872 2018-05-15] (Microsoft Corporation) [File not signed]
S3 Compbatt; C:\Windows\system32\DRIVERS\compbatt.sys [19024 2009-07-14] (Microsoft Corporation) [File not signed]
R3 CompositeBus; C:\Windows\system32\drivers\CompositeBus.sys [31232 2010-11-20] (Microsoft Corporation) [File not signed]
S4 crcdisk; C:\Windows\system32\DRIVERS\crcdisk.sys [22096 2009-07-14] (Microsoft Corporation) [File not signed]
R1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [88576 2018-04-25] (Microsoft Corporation) [File not signed]
R1 discache; C:\Windows\System32\drivers\discache.sys [32256 2009-07-14] (Microsoft Corporation) [File not signed]
R0 Disk; C:\Windows\System32\drivers\disk.sys [57280 2016-04-12] (Microsoft Corporation) [File not signed]
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [5120 2016-01-13] (Microsoft Corporation) [File not signed]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-06-01] (DT Soft Ltd) [File not signed]
R3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [732600 2019-08-13] (Microsoft Corporation) [File not signed]
S3 ebdrv; C:\Windows\system32\DRIVERS\evbdx.sys [3100160 2009-07-13] (Broadcom Corporation) [File not signed]
S3 elxstor; C:\Windows\system32\DRIVERS\elxstor.sys [453712 2009-07-14] (Emulex) [File not signed]
S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [7168 2018-02-10] (Microsoft Corporation) [File not signed]
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [142336 2019-02-10] (Microsoft Corporation) [File not signed]
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [148992 2019-02-10] (Microsoft Corporation) [File not signed]
S3 fdc; C:\Windows\system32\DRIVERS\fdc.sys [25088 2009-07-14] (Microsoft Corporation) [File not signed]
R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [58448 2009-07-14] (Microsoft Corporation) [File not signed]
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [28160 2009-07-14] (Microsoft Corporation) [File not signed]
S3 flpydisk; C:\Windows\system32\DRIVERS\flpydisk.sys [19968 2009-07-14] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [201960 2018-01-01] (Microsoft Corporation) [File not signed]
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [46160 2009-07-14] (Microsoft Corporation) [File not signed]
U0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [19824 2012-03-01] (Microsoft Corporation) [File not signed]
R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [196328 2013-01-24] (Microsoft Corporation) [File not signed]
S3 gagp30kx; C:\Windows\system32\DRIVERS\gagp30kx.sys [57936 2009-07-14] (Microsoft Corporation) [File not signed]
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [43368 2013-05-23] (ThreatTrack Security) [File not signed]
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [2777344 2017-03-18] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.) [File not signed]
S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [26624 2009-07-13] (Hauppauge Computer Works, Inc.) [File not signed]
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [304128 2019-08-27] (Microsoft Corporation) [File not signed]
R3 HDAudBus; C:\Windows\system32\drivers\HDAudBus.sys [108544 2010-11-20] (Microsoft Corporation) [File not signed]
S3 HidBatt; C:\Windows\system32\DRIVERS\HidBatt.sys [21504 2009-07-14] (Microsoft Corporation) [File not signed]
S3 HidBth; C:\Windows\system32\DRIVERS\hidbth.sys [91136 2009-07-14] (Microsoft Corporation) [File not signed]
S3 HidIr; C:\Windows\system32\DRIVERS\hidir.sys [37888 2009-07-14] (Microsoft Corporation) [File not signed]
R3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [24064 2019-03-05] (Microsoft Corporation) [File not signed]
S3 HpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [67152 2009-07-14] (Hewlett-Packard Company) [File not signed]
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [515072 2019-12-10] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-07-30] (REALiX(tm)) [File not signed]
R0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [14208 2010-11-20] (Microsoft Corporation) [File not signed]
R3 i8042prt; C:\Windows\system32\drivers\i8042prt.sys [80896 2009-07-14] (Microsoft Corporation) [File not signed]
S3 iaStorV; C:\Windows\system32\drivers\iaStorV.sys [332160 2011-03-11] (Intel Corporation) [File not signed]
S3 iirsp; C:\Windows\system32\DRIVERS\iirsp.sys [41040 2009-07-14] (Intel Corp./ICP vortex GmbH) [File not signed]
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [109544 2019-03-15] (COMODO) [File not signed]
R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTKVHDA.sys [3017112 2014-05-18] (Realtek Semiconductor Corp.) [File not signed]
S3 intelide; C:\Windows\system32\drivers\intelide.sys [15424 2009-07-14] (Microsoft Corporation) [File not signed]
S3 intelppm; C:\Windows\system32\drivers\intelppm.sys [53760 2020-01-03] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [58880 2009-07-14] (Microsoft Corporation) [File not signed]
S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [65536 2010-11-20] (Microsoft Corporation) [File not signed]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [101888 2009-07-14] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [13824 2009-07-14] (Microsoft Corporation) [File not signed]
S3 isapnp; C:\Windows\system32\drivers\isapnp.sys [46312 2019-04-19] (Microsoft Corporation) [File not signed]
S3 iScsiPrt; C:\Windows\system32\drivers\msiscsi.sys [234432 2014-02-04] (Microsoft Corporation) [File not signed]
R3 kbdclass; C:\Windows\System32\DRIVERS\kbdclass.sys [42576 2009-07-14] (Microsoft Corporation) [File not signed]
R3 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [28160 2010-11-20] (Microsoft Corporation) [File not signed]
R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [69048 2020-01-03] (Microsoft Corporation) [File not signed]
R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [137656 2020-01-03] (Microsoft Corporation) [File not signed]
R2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [48128 2009-07-14] (Microsoft Corporation) [File not signed]
S3 LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys [95824 2009-07-14] (LSI Corporation) [File not signed]
S3 LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys [89168 2009-07-14] (LSI Corporation) [File not signed]
S3 LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [54864 2009-07-14] (LSI Corporation) [File not signed]
S3 LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys [96848 2009-07-14] (LSI Corporation) [File not signed]
R2 luafv; C:\Windows\system32\drivers\luafv.sys [88064 2019-03-29] (Microsoft Corporation) [File not signed]
S3 megasas; C:\Windows\system32\DRIVERS\megasas.sys [30800 2009-07-14] (LSI Corporation) [File not signed]
S3 MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [235584 2009-07-14] (LSI Corporation, Inc.) [File not signed]
S3 Modem; C:\Windows\System32\drivers\modem.sys [31744 2009-07-14] (Microsoft Corporation) [File not signed]
R3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [23552 2019-09-10] (Microsoft Corporation) [File not signed]
R3 mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [41552 2009-07-14] (Microsoft Corporation) [File not signed]
R3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [26112 2009-07-14] (Microsoft Corporation) [File not signed]
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [78568 2019-06-12] (Microsoft Corporation) [File not signed]
S3 mpio; C:\Windows\system32\drivers\mpio.sys [130432 2010-11-20] (Microsoft Corporation) [File not signed]
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [60416 2018-08-10] (Microsoft Corporation) [File not signed]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [117248 2016-10-11] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [126464 2020-01-03] (Microsoft Corporation) [File not signed]
R3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [226304 2020-01-03] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [98816 2020-01-03] (Microsoft Corporation) [File not signed]
R0 msahci; C:\Windows\System32\drivers\msahci.sys [28032 2010-11-20] (Microsoft Corporation) [File not signed]
S3 msdsm; C:\Windows\system32\drivers\msdsm.sys [116096 2010-11-20] (Microsoft Corporation) [File not signed]
R1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [22528 2019-02-03] (Microsoft Corporation) [File not signed]
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [4096 2009-07-14] (Microsoft Corporation) [File not signed]
R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [13544 2019-04-19] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [8320 2009-07-14] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [5888 2009-07-14] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [5504 2009-07-14] (Microsoft Corporation) [File not signed]
S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [164064 2019-11-05] (Microsoft Corporation) [File not signed]
R1 mssmbios; C:\Windows\system32\drivers\mssmbios.sys [27880 2019-04-19] (Microsoft Corporation) [File not signed]
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [6144 2009-07-14] (Microsoft Corporation) [File not signed]
S3 MTConfig; C:\Windows\system32\DRIVERS\MTConfig.sys [12288 2009-07-14] (Microsoft Corporation) [File not signed]
R0 Mup; C:\Windows\System32\Drivers\mup.sys [49728 2009-07-14] (Microsoft Corporation) [File not signed]
R3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [271360 2017-09-13] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\Windows\System32\drivers\ndis.sys [713408 2018-07-06] (Microsoft Corporation) [File not signed]
S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [27136 2009-07-14] (Microsoft Corporation) [File not signed]
R3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [20992 2018-12-08] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [46080 2010-11-20] (Microsoft Corporation) [File not signed]
R3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [118784 2010-11-20] (Microsoft Corporation) [File not signed]
R3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [48640 2018-12-08] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [36352 2018-01-01] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [188928 2019-02-21] (Microsoft Corporation) [File not signed]
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1635632 2013-09-06] (Ralink Technology Corp.) [File not signed]
S3 nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys [44624 2009-07-14] (IBM Corporation) [File not signed]
S3 nmwcd; C:\Windows\System32\drivers\ccdcmb.sys [18176 2015-08-12] (Nokia) [File not signed]
S3 nmwcdc; C:\Windows\System32\drivers\ccdcmbo.sys [23168 2015-08-12] (Nokia) [File not signed]
R1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [35328 2020-01-03] (Microsoft Corporation) [File not signed]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [17920 2017-08-11] (Microsoft Corporation) [File not signed]
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1214176 2019-02-10] (Microsoft Corporation) [File not signed]
R1 Null; C:\Windows\System32\Drivers\Null.sys [4608 2009-07-14] (Microsoft Corporation) [File not signed]
S3 nvraid; C:\Windows\system32\drivers\nvraid.sys [117120 2011-03-11] (NVIDIA Corporation) [File not signed]
S3 nvstor; C:\Windows\system32\drivers\nvstor.sys [143744 2011-03-11] (NVIDIA Corporation) [File not signed]
S3 nv_agp; C:\Windows\system32\drivers\nv_agp.sys [104680 2019-04-19] (Microsoft Corporation) [File not signed]
S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [62464 2009-07-14] (Microsoft Corporation) [File not signed]
R3 Parport; C:\Windows\System32\DRIVERS\parport.sys [79360 2009-07-14] (Microsoft Corporation) [File not signed]
R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [56176 2012-03-17] (Microsoft Corporation) [File not signed]
R2 Parvdm; C:\Windows\System32\DRIVERS\parvdm.sys [8704 2009-07-14] (Microsoft Corporation) [File not signed]
S3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfd.sys [19072 2015-08-12] (Nokia) [File not signed]
R0 pci; C:\Windows\System32\drivers\pci.sys [154344 2019-04-19] (Microsoft Corporation) [File not signed]
R0 pciide; C:\Windows\System32\drivers\pciide.sys [12368 2009-07-14] (Microsoft Corporation) [File not signed]
S3 pcmcia; C:\Windows\system32\DRIVERS\pcmcia.sys [180288 2009-07-14] (Microsoft Corporation) [File not signed]
R0 pcw; C:\Windows\System32\drivers\pcw.sys [43088 2009-07-14] (Microsoft Corporation) [File not signed]
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [593920 2019-06-12] (Microsoft Corporation) [File not signed]
R3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [73728 2009-07-14] (Microsoft Corporation) [File not signed]
S3 Processor; C:\Windows\system32\drivers\processr.sys [52224 2020-01-03] (Microsoft Corporation) [File not signed]
R1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [104448 2018-01-01] (Microsoft Corporation) [File not signed]
S3 ql2300; C:\Windows\system32\DRIVERS\ql2300.sys [1383488 2009-07-14] (QLogic Corporation) [File not signed]
S3 ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys [106064 2009-07-14] (QLogic Corporation) [File not signed]
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [31744 2009-07-14] (Microsoft Corporation) [File not signed]
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [11776 2009-07-14] (Microsoft Corporation) [File not signed]
R3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [49152 2009-07-14] (Microsoft Corporation) [File not signed]
R3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [78848 2009-07-14] (Microsoft Corporation) [File not signed]
R3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [77824 2009-07-14] (Microsoft Corporation) [File not signed]
R3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [75264 2009-07-14] (Microsoft Corporation) [File not signed]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [248320 2019-09-10] (Microsoft Corporation) [File not signed]
S3 rdpbus; C:\Windows\system32\DRIVERS\rdpbus.sys [18944 2009-07-14] (Microsoft Corporation) [File not signed]
R1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [6656 2010-11-20] (Microsoft Corporation) [File not signed]
R1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [6656 2009-07-14] (Microsoft Corporation) [File not signed]
R1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [7168 2009-07-14] (Microsoft Corporation) [File not signed]
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [14848 2014-05-25] (Microsoft Corporation) [File not signed]
S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [184320 2014-07-17] (Microsoft Corporation) [File not signed]
R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [173288 2018-01-01] (Microsoft Corporation) [File not signed]
R2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [60928 2009-07-14] (Microsoft Corporation) [File not signed]
S3 rt2870; C:\Windows\System32\DRIVERS\rt2870.sys [2868136 2019-10-03] (MediaTek Inc.) [File not signed]
R3 RTL8167; C:\Windows\System32\DRIVERS\Rt86win7.sys [693464 2014-05-18] (Realtek ) [File not signed]
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [91016 2012-08-27] (Renesas Electronics Corporation) [File not signed]
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [181128 2012-08-27] (Renesas Electronics Corporation) [File not signed]
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum\WNt600x86\Sandra.sys [23112 2009-08-07] (SiSoftware) [File not signed]
S3 sbp2port; C:\Windows\system32\drivers\sbp2port.sys [85376 2010-11-20] (Microsoft Corporation) [File not signed]
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [26624 2010-11-20] (Microsoft Corporation) [File not signed]
S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [20480 2009-07-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
R3 Serenum; C:\Windows\System32\DRIVERS\serenum.sys [17920 2009-07-14] (Microsoft Corporation) [File not signed]
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [83456 2009-07-14] (Microsoft Corporation) [File not signed]
S3 sermouse; C:\Windows\system32\DRIVERS\sermouse.sys [19968 2009-07-14] (Microsoft Corporation) [File not signed]
S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [11264 2009-07-14] (Microsoft Corporation) [File not signed]
S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [12288 2009-07-14] (Microsoft Corporation) [File not signed]
S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [12800 2010-11-20] (Microsoft Corporation) [File not signed]
S3 sfloppy; C:\Windows\system32\DRIVERS\sfloppy.sys [13824 2009-07-14] (Microsoft Corporation) [File not signed]
S3 sisagp; C:\Windows\system32\drivers\sisagp.sys [51944 2019-04-19] (Microsoft Corporation) [File not signed]
S3 SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys [40016 2009-07-14] (Silicon Integrated Systems Corp.) [File not signed]
S3 SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys [77888 2009-07-14] (Silicon Integrated Systems) [File not signed]
S3 Smb; C:\Windows\System32\DRIVERS\smb.sys [71168 2009-07-14] (Microsoft Corporation) [File not signed]
R0 spldr; C:\Windows\System32\Drivers\spldr.sys [17472 2009-07-14] (Microsoft Corporation) [File not signed]
R3 srv; C:\Windows\System32\DRIVERS\srv.sys [317440 2020-01-03] (Microsoft Corporation) [File not signed]
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [314880 2020-01-03] (Microsoft Corporation) [File not signed]
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [117248 2020-01-03] (Microsoft Corporation) [File not signed]
S3 stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [21072 2009-07-14] (Promise Technology) [File not signed]
R3 swenum; C:\Windows\system32\drivers\swenum.sys [11880 2019-04-19] (Microsoft Corporation) [File not signed]
R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [1312992 2019-07-13] (Microsoft Corporation) [File not signed]
S3 TCPIP6; C:\Windows\System32\DRIVERS\tcpip.sys [1312992 2019-07-13] (Microsoft Corporation) [File not signed]
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [35840 2016-09-14] (Microsoft Corporation) [File not signed]
S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [18432 2010-11-20] (Microsoft Corporation) [File not signed]
S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [24576 2012-02-17] (Microsoft Corporation) [File not signed]
R1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [74752 2017-07-29] (Microsoft Corporation) [File not signed]
R1 TermDD; C:\Windows\system32\drivers\termdd.sys [53992 2019-04-19] (Microsoft Corporation) [File not signed]
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [31744 2017-08-13] (Microsoft Corporation) [File not signed]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [49664 2014-05-25] (Microsoft Corporation) [File not signed]
S3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [108544 2010-11-20] (Microsoft Corporation) [File not signed]
S3 uagp35; C:\Windows\system32\DRIVERS\uagp35.sys [55888 2009-07-14] (Microsoft Corporation) [File not signed]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [247296 2019-02-10] (Microsoft Corporation) [File not signed]
S3 uliagpkx; C:\Windows\system32\drivers\uliagpkx.sys [57064 2019-04-19] (Microsoft Corporation) [File not signed]
R3 umbus; C:\Windows\system32\drivers\umbus.sys [39936 2010-11-20] (Microsoft Corporation) [File not signed]
S3 UmPass; C:\Windows\system32\DRIVERS\umpass.sys [8192 2009-07-14] (Microsoft Corporation) [File not signed]
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8192 2015-08-12] (Nokia) [File not signed]
S3 usbaudio; C:\Windows\System32\drivers\usbaudio.sys [80896 2013-07-12] (Microsoft Corporation) [File not signed]
R3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [76288 2018-05-02] (Microsoft Corporation) [File not signed]
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [86016 2013-07-12] (Microsoft Corporation) [File not signed]
R3 usbehci; C:\Windows\system32\drivers\usbehci.sys [46592 2018-05-02] (Microsoft Corporation) [File not signed]
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [45736 2012-08-28] (Advanced Micro Devices) [File not signed]
R3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [259584 2018-05-02] (Microsoft Corporation) [File not signed]
R3 usbohci; C:\Windows\system32\drivers\usbohci.sys [20480 2018-05-02] (Microsoft Corporation) [File not signed]
S3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [19968 2009-07-14] (Microsoft Corporation) [File not signed]
S3 usbser; C:\Windows\System32\DRIVERS\usbser.sys [28160 2015-07-18] (Microsoft Corporation) [File not signed]
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8192 2015-08-12] (Nokia) [File not signed]
S3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [76288 2016-02-03] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [24576 2018-05-02] (Microsoft Corporation) [File not signed]
S3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [146816 2013-07-12] (Microsoft Corporation) [File not signed]
R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [32488 2019-04-19] (Microsoft Corporation) [File not signed]
S3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [26112 2009-07-14] (Microsoft Corporation) [File not signed]
R1 VgaSave; C:\Windows\System32\drivers\vga.sys [25088 2009-07-14] (Microsoft Corporation) [File not signed]
S3 vhdmp; C:\Windows\system32\drivers\vhdmp.sys [160128 2010-11-20] (Microsoft Corporation) [File not signed]
S3 viaagp; C:\Windows\system32\drivers\viaagp.sys [52968 2019-04-19] (Microsoft Corporation) [File not signed]
S3 ViaC7; C:\Windows\system32\drivers\viac7.sys [53248 2020-01-03] (Microsoft Corporation) [File not signed]
S3 viaide; C:\Windows\system32\drivers\viaide.sys [16976 2009-07-14] (VIA Technologies, Inc.) [File not signed]
R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [52968 2019-04-19] (Microsoft Corporation) [File not signed]
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [296680 2017-07-07] (Microsoft Corporation) [File not signed]
R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [245632 2010-11-20] (Microsoft Corporation) [File not signed]
S3 vsmraid; C:\Windows\system32\DRIVERS\vsmraid.sys [141904 2009-07-14] (VIA Technologies Inc.,Ltd) [File not signed]
R3 vwifibus; C:\Windows\System32\DRIVERS\vwifibus.sys [19968 2009-07-14] (Microsoft Corporation) [File not signed]
R1 VWiFiFlt; C:\Windows\System32\DRIVERS\vwififlt.sys [48128 2009-07-14] (Microsoft Corporation) [File not signed]
R3 vwifimp; C:\Windows\System32\DRIVERS\vwifimp.sys [14336 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WacomPen; C:\Windows\system32\DRIVERS\wacompen.sys [21632 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [63488 2018-12-08] (Microsoft Corporation) [File not signed]
R1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [63488 2018-12-08] (Microsoft Corporation) [File not signed]
S3 Wd; C:\Windows\system32\DRIVERS\wd.sys [19024 2009-07-14] (Microsoft Corporation) [File not signed]
R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [527064 2013-06-25] (Microsoft Corporation) [File not signed]
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [128704 2016-10-31] (MBB) [File not signed]
R1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [9728 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [19008 2009-07-14] (Microsoft Corporation) [File not signed]
S3 winusb; C:\Windows\System32\DRIVERS\WinUsb.sys [35968 2010-11-20] (Microsoft Corporation) [File not signed]
R3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [11264 2018-02-10] (Microsoft Corporation) [File not signed]
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [16384 2019-08-21] (Microsoft Corporation) [File not signed]
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [66560 2012-07-26] (Microsoft Corporation) [File not signed]
S3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-22 22:04 - 2020-03-22 22:07 - 000113905 _____ C:\Users\fleker\Desktop\FRST.txt
2020-03-22 22:03 - 2020-03-22 22:03 - 002008064 _____ (Farbar) C:\Users\fleker\Desktop\FRST (2).exe
2020-03-22 21:36 - 2020-03-22 21:36 - 000001906 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PokerStars.cz.lnk
2020-03-22 21:36 - 2020-03-22 21:36 - 000001900 _____ C:\Users\Public\Desktop\PokerStars.cz.lnk
2020-03-22 21:36 - 2020-03-22 21:36 - 000001900 _____ C:\ProgramData\Desktop\PokerStars.cz.lnk
2020-03-22 21:36 - 2020-03-22 21:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.cz
2020-03-22 21:03 - 2020-03-22 21:03 - 000003304 ____N C:\bootsqm.dat
2020-03-22 15:40 - 2020-03-22 15:54 - 000000000 ____D C:\Users\fleker\AppData\Roaming\gsmartcontrol
2020-03-21 18:50 - 2020-03-21 18:55 - 000000000 ____D C:\ProgramData\AltrixSoft
2020-03-21 18:49 - 2020-03-22 19:47 - 000000000 ____D C:\Program Files32
2020-03-21 18:49 - 2020-03-22 19:47 - 000000000 ____D C:\Program Files\Common Files\AltrixSoft
2020-03-14 11:39 - 2020-03-22 19:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-03-14 10:51 - 2020-03-14 10:51 - 000121560 _____ C:\Users\fleker\AppData\Local\GDIPFONTCACHEV1.DAT
2020-03-14 10:46 - 2020-03-14 10:46 - 003858088 _____ C:\Windows\system32\FNTCACHE.DAT
2020-03-14 10:24 - 2020-03-14 10:24 - 000002150 _____ C:\Users\Public\Desktop\One-Click-Optimizer (WO17).lnk
2020-03-14 10:24 - 2020-03-14 10:24 - 000002150 _____ C:\ProgramData\Desktop\One-Click-Optimizer (WO17).lnk
2020-03-14 10:24 - 2020-03-14 10:24 - 000001144 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 17.lnk
2020-03-14 10:24 - 2020-03-14 10:24 - 000001144 _____ C:\ProgramData\Desktop\Ashampoo WinOptimizer 17.lnk
2020-03-14 10:24 - 2020-03-14 10:24 - 000000221 _____ C:\Users\Public\Desktop\Ashampoo Deals.url
2020-03-14 10:24 - 2020-03-14 10:24 - 000000221 _____ C:\ProgramData\Desktop\Ashampoo Deals.url
2020-03-14 10:24 - 2020-03-14 10:24 - 000000000 ____D C:\Users\fleker\AppData\Local\Ashampoo
2020-03-14 10:24 - 2020-03-14 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2020-03-14 10:24 - 2020-03-14 10:24 - 000000000 ____D C:\ProgramData\Ashampoo
2020-03-14 10:24 - 2020-03-14 10:24 - 000000000 ____D C:\Program Files\Ashampoo
2020-03-14 10:24 - 2019-09-27 11:37 - 000028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2020-03-12 22:50 - 2020-03-22 22:02 - 000000000 ____D C:\Users\fleker\AppData\Roaming\qBittorrent
2020-03-12 22:50 - 2020-03-14 11:39 - 000000000 ____D C:\Program Files\qBittorrent
2020-03-12 22:50 - 2020-03-12 22:50 - 000000000 ____D C:\Users\fleker\AppData\Local\qBittorrent
2020-03-08 07:03 - 2020-03-08 07:12 - 000000000 ____D C:\Program Files\Hard Disk Sentinel
2020-03-08 07:03 - 2020-03-08 07:03 - 000000000 ____D C:\Users\fleker\AppData\Roaming\Hard Disk Sentinel
2020-03-08 04:30 - 2020-03-22 19:49 - 000000000 ____D C:\Program Files\Core Temp
2020-02-26 21:16 - 2020-03-19 18:19 - 000004028 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582748210

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-22 22:07 - 2015-02-14 23:58 - 000000000 ____D C:\FRST
2020-03-22 21:40 - 2017-04-30 21:27 - 000000000 ____D C:\Program Files\PokerStars.CZ
2020-03-22 21:40 - 2013-06-12 16:42 - 000000000 ____D C:\Users\fleker\AppData\Local\PokerStars.CZ
2020-03-22 21:28 - 2015-02-20 08:26 - 000000000 ____D C:\Users\fleker\AppData\Roaming\HoldemManager
2020-03-22 21:18 - 2009-07-14 05:34 - 000022656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-03-22 21:18 - 2009-07-14 05:34 - 000022656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-03-22 21:17 - 2013-05-30 11:58 - 001735252 _____ C:\Windows\system32\PerfStringBackup.INI
2020-03-22 21:17 - 2009-07-14 09:44 - 000759942 _____ C:\Windows\system32\perfh005.dat
2020-03-22 21:17 - 2009-07-14 09:44 - 000195000 _____ C:\Windows\system32\perfc005.dat
2020-03-22 21:17 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2020-03-22 21:11 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-03-22 20:57 - 2013-06-01 15:39 - 000000000 ____D C:\Users\fleker\AppData\Roaming\vlc
2020-03-22 20:01 - 2019-08-30 13:14 - 000001908 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-22 20:01 - 2019-08-30 13:14 - 000001908 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-03-22 20:01 - 2018-04-21 02:44 - 000000000 ____D C:\Users\fleker\AppData\Local\cache
2020-03-22 20:00 - 2019-08-30 13:14 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2020-03-22 19:45 - 2013-07-09 12:27 - 000000000 ____D C:\Users\fleker\AppData\Local\CrashDumps
2020-03-22 19:45 - 2013-05-30 12:52 - 000000000 ____D C:\Users\fleker\AppData\Roaming\uTorrent
2020-03-22 10:21 - 2015-09-10 17:49 - 000002418 _____ C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary.lnk
2020-03-22 10:21 - 2015-09-10 17:49 - 000002381 _____ C:\Users\fleker\Desktop\Google Chrome Canary.lnk
2020-03-21 18:57 - 2019-06-19 19:04 - 000001900 _____ C:\Users\fleker\Desktop\CrystalDiskInfo.lnk
2020-03-21 18:57 - 2019-06-19 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-03-21 18:57 - 2019-06-19 19:04 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2020-03-21 04:41 - 2019-03-21 17:06 - 000000000 ____D C:\Users\fleker\AppData\Local\BitTorrentHelper
2020-03-21 04:05 - 2015-09-11 04:13 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-21 04:05 - 2015-09-11 04:13 - 000003248 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-21 02:26 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\system32\NDF
2020-03-21 00:58 - 2013-05-30 18:57 - 000000000 ____D C:\Program Files\Opera
2020-03-20 23:04 - 2015-09-16 01:59 - 000003566 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2860077999-920603677-2990381230-1000UA
2020-03-20 23:04 - 2015-09-16 01:59 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2860077999-920603677-2990381230-1000Core1d0ebe895468e43
2020-03-20 14:23 - 2013-05-30 20:04 - 000000000 ____D C:\Users\fleker\AppData\Local\ElevatedDiagnostics
2020-03-18 21:18 - 2017-06-04 13:34 - 000003836 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1496579676
2020-03-15 20:05 - 2018-06-05 18:41 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-03-14 10:28 - 2013-06-08 14:44 - 000000000 ____D C:\Users\fleker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2020-03-14 10:27 - 2013-06-24 18:02 - 000000000 ____D C:\Windows\Minidump
2020-03-13 19:51 - 2013-08-15 02:08 - 000000000 ____D C:\Windows\system32\MRT
2020-03-13 19:31 - 2013-05-31 14:25 - 118379832 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-03-12 20:56 - 2019-04-24 21:41 - 000001026 _____ C:\Users\Public\Desktop\HoldemManager2.lnk
2020-03-12 20:56 - 2019-04-24 21:41 - 000001026 _____ C:\ProgramData\Desktop\HoldemManager2.lnk
2020-03-12 20:56 - 2019-04-24 21:41 - 000000000 ____D C:\Program Files\Holdem Manager 2
2020-03-12 20:51 - 2014-11-30 20:30 - 000000000 ____D C:\Program Files\IrfanView
2020-03-12 20:13 - 2015-06-12 21:55 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-03-12 18:29 - 2017-04-02 16:34 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2020-03-12 18:29 - 2017-04-02 16:34 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2020-03-12 18:29 - 2017-04-02 16:34 - 000004408 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-03-12 18:29 - 2013-05-30 12:29 - 000000000 ____D C:\Windows\system32\Macromed
2020-02-27 03:13 - 2017-05-18 12:11 - 000000000 ____D C:\Users\fleker\AppData\Roaming\Google

==================== Files in the root of some directories ========

2018-03-23 21:59 - 2018-03-23 22:00 - 164602528 _____ (PostgreSQL Global Development Group) C:\Users\fleker\postgresql_10.exe
2013-06-28 13:32 - 2013-06-28 13:32 - 000411509 _____ () C:\Program Files\GSpot270a.zip
2015-02-18 16:55 - 2015-02-18 16:55 - 000069005 _____ () C:\Program Files\hminstalllog.txt
2017-08-19 00:18 - 2017-06-26 12:01 - 016359424 _____ () C:\Users\fleker\AppData\Roaming\Sandra.mdb
2020-02-23 00:29 - 2020-03-12 20:40 - 000007360 _____ () C:\Users\fleker\AppData\Roaming\Microsoft\83b968be-efe4-4a91-894a-ec489147e1aa
2015-01-28 10:49 - 2017-08-15 05:43 - 000004608 _____ () C:\Users\fleker\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-07-31 08:00 - 2013-07-31 08:00 - 000000058 _____ () C:\Users\fleker\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2018-10-23 23:24 - 2018-10-23 23:24 - 000004096 ____H () C:\Users\fleker\AppData\Local\keyfile3.drm
2013-05-31 14:13 - 2017-08-18 14:34 - 000007596 _____ () C:\Users\fleker\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\dnsapi.dll => MD5 is legit
C:\Windows\system32\dllhost.exe => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2020-03-18 02:14
==================== End of FRST.txt ========================