Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by MaClaud (administrator) on CALIBRA (ASUSTeK Computer Inc. N73SV) (24-12-2020 02:08:36)
Running from C:\Users\MaClaud\Desktop
Loaded Profiles: MaClaud
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ArcSoft Inc.) [File not signed] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Fresco Logic, Inc -> Fresco Logic) C:\Windows\System32\FLxHCIm.exe
(Gemalto, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplms.exe
(Gemalto, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplmv.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel(R) Turbo Boost Technology Monitor -> Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <8>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Sony) [File not signed] C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> WmiPrvSE.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18368512 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10228224 2010-11-03] (Intel Corporation) [File not signed]
HKLM\...\Run: [FLxHCIm] => C:\windows\system32\FLxHCIm.exe [77472 2019-03-26] (Fresco Logic, Inc -> Fresco Logic)
HKLM\...\Run: [FLxHCIm64] => C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe [77472 2019-03-26] (Fresco Logic, Inc -> Fresco Logic)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-10-16] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Eps_Reg.exe] => C:\Users\MaClaud\AppData\Local\Temp\Eps_Reg.exe /L /NSmartCard2000 <==== ATTENTION
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\Run: [Google Update] => C:\Users\MaClaud\AppData\Local\Google\Update\1.3.36.52\GoogleUpdateCore.exe [219592 2020-12-03] (Google LLC -> Google LLC)
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\Run: [SafeInCloud] => C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe [2306560 2020-09-10] () [File not signed]
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [1684480 2020-09-02] (Sony) [File not signed]
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\Software\Policies\...\system: [disablecmd] 0
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\MountPoints2: G - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\MountPoints2: {2307927b-40ab-11eb-8a5b-005056c00008} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\MountPoints2: {93935260-8468-11ea-9051-005056c00008} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1414726678-80063402-3466205120-1000\...\MountPoints2: {d17a249f-8ca6-11ea-a771-74f06dbe6f9f} - G:\HiSuiteDownLoader.exe
HKLM\...\Windows x64\Print Processors\Epson Inkjet: C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL [38912 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\...\Windows x64\Print Processors\sst7cPC: C:\Windows\System32\spool\prtprocs\x64\sst7cpc.dll [43520 2014-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\windows\system32\EP0SLM01.DLL [77824 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\pdfcmon: C:\windows\system32\pdfcmon.dll [65024 2012-03-14] (pdfforge GbR) [File not signed]
HKLM\...\Print\Monitors\sst7c Langmon: C:\windows\system32\sst7clm.dll [34304 2014-07-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\...\AppCompatFlags\InstalledSDB\{ad846bae-d44b-4722-abad-f7420e08bcd9}: [DatabasePath] -> C:\windows\AppPatch\Custom\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb [2020-01-17]
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-08-02] (Broadcom Corporation -> Broadcom Corporation.)
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [171896 2018-01-04] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\System\symsrv.dll [69337 2020-12-18] (Microsoft Corporation) [File not signed] <==== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-07-01] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\EasyJTAG Startup Agent.lnk [2020-11-18]
ShortcutTarget: EasyJTAG Startup Agent.lnk -> C:\Program Files\Z3X\EASYJTAG\autorun_agent.exe () [File not signed]
AlternateShell: 
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00F61C5C-F0FF-4A58-9D9B-09A2E5678443} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [660792 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0BC85B8E-993D-4DCB-9012-2B1F015E0789} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1414726678-80063402-3466205120-1000Core => C:\Users\MaClaud\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {42BDA739-E704-4D4E-B58E-43974ED6DF41} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [660792 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F12801E-2A67-447B-A5FB-2E58BFBD0245} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [525104 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {569FE0DD-E93D-4094-B77E-30FE39A93607} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [825079 2018-01-10] (NVIDIA Corporation) [File not signed]
Task: {983A7EB2-FAC1-421D-BCF1-EA59FC243078} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {A1FD4554-033D-4DBA-AF91-C2EEE878C830} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [825079 2018-01-10] (NVIDIA Corporation) [File not signed]
Task: {A98739D8-DBF7-4547-BD09-5AD448902559} - System32\Tasks\AdwCleaner_onReboot => C:\Users\MaClaud\Desktop\adwcleaner_8.0.8.exe [8525431 2020-12-24] (Malwarebytes) [File not signed]
Task: {C33F296A-E29B-48D7-BBC1-4F7ECAC29F7E} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65440 2020-04-14] (Microsoft Corporation -> Microsoft)
Task: {D50F5092-5C39-467D-BAFE-B980F8910DA4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1414726678-80063402-3466205120-1000UA => C:\Users\MaClaud\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {D8C36499-2C59-4710-AE75-7302BB6BD734} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1414726678-80063402-3466205120-1000 => C:\Users\MaClaud\AppData\Local\MEGAsync\MEGAupdater.exe [760696 2018-01-15] (Mega Limited -> Mega Limited)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [200407 2015-08-12] (Apple Inc.) [File not signed]
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{2A2F8EC6-537B-4B41-AD19-33E93A923D4E}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{D3C56AF9-7B29-4B4D-979F-CE1142B157B0}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{DBD2075C-C1E2-43BB-9C40-E1A7769201E3}: [DhcpNameServer] 192.168.42.129

FireFox:
========
FF DefaultProfile: x40heix7.default
FF ProfilePath: C:\Users\MaClaud\AppData\Roaming\TomTom\HOME\Profiles\bf16q830.default [2020-03-04]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\MaClaud\AppData\Roaming\Mozilla\Firefox\Profiles\x40heix7.default [2020-12-24]
FF Notifications: Mozilla\Firefox\Profiles\x40heix7.default -> hxxps://calendar.google.com
FF Extension: (Česká kontrola pravopisu (bez diakritiky)) - C:\Users\MaClaud\AppData\Roaming\Mozilla\Firefox\Profiles\x40heix7.default\Extensions\cs2@dictionaries.addons.mozilla.org.xpi [2019-01-04]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\MaClaud\AppData\Roaming\Mozilla\Firefox\Profiles\x40heix7.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-01-04]
FF Extension: (SafeInCloud Password Manager) - C:\Users\MaClaud\AppData\Roaming\Mozilla\Firefox\Profiles\x40heix7.default\Extensions\info@safe-in-cloud.com.xpi [2020-12-17]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\MaClaud\AppData\Roaming\Mozilla\Firefox\Profiles\x40heix7.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2020-12-18]
FF Extension: (uBlock Origin) - C:\Users\MaClaud\AppData\Roaming\Mozilla\Firefox\Profiles\x40heix7.default\Extensions\uBlock0@raymondhill.net.xpi [2020-12-24]
FF Extension: (No Name) - C:\Users\MaClaud\AppData\Roaming\Mozilla\Firefox\Profiles\x40heix7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-11] (Adobe Systems Incorporated -> )
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-01-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-12-16] (VideoLAN) [File not signed]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-11] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_35 -> C:\Windows\SysWOW64\npdeployJava1.dll [2012-09-02] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll [2012-09-02] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-01-04] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-01-04] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @qq.com/npAndroidAssistant -> C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\\1.8.101.2154\npQQPhoneManagerExt.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default [2020-12-24]
CHR Extension: (Prezentace) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-04]
CHR Extension: (Dokumenty) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-04]
CHR Extension: (Disk Google) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-04]
CHR Extension: (Maximize Flash) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\chihjmmmhbapnhemoopibkekbojilhge [2020-03-04]
CHR Extension: (Tabulky) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (Google Kalendář) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2020-06-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-04]
CHR Extension: (Fullscreen Anything) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\olcfgpmjldkkjdclidhcbonieibfhhdh [2020-03-04]
CHR Extension: (Gmail) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\MaClaud\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
StartMenuInternet: Google Chrome - C:\Users\MaClaud\AppData\Local\Google\Chrome\Application\chrome.exe

Opera: 
=======
OPR Extension: (To-Read sites) - C:\Users\MaClaud\AppData\Roaming\Opera Software\Opera Stable\Extensions\ocjdcfknlmpoicmjpklcofjlpnegobbb [2013-09-13]
OPR Extension: (Adblock Plus) - C:\Users\MaClaud\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2013-09-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [187335 2009-02-06] (ArcSoft Inc.) [File not signed]
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952 2011-06-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [897088 2010-11-03] (Intel Corporation) [File not signed]
R3 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496 2010-11-03] (Intel Corporation) [File not signed]
R2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [983104 2010-11-03] (Intel Corporation) [File not signed]
R2 hasplms; C:\windows\system32\hasplms.exe [7643216 2019-04-29] (Gemalto, Inc. -> SafeNet, Inc.)
S2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192320 2020-09-24] (Huawei Technologies Co., Ltd. -> )
S4 KingoSoftService; C:\Users\MaClaud\AppData\Local\Kingosoft\Kingo Root\update_58142\bin\checkupdate.exe [367584 2016-09-17] (Finger Power Technology Co., Ltd. -> )
S3 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2012-12-28] (Even Balance, Inc. -> )
S4 qcmtusvc; C:\Program Files (x86)\QUALCOMM Incorporated\Qualcomm USB Drivers For Windows\DriverPackage\Qualcomm\Tools\qcmtusvc.exe [83456 2015-07-09] (QUALCOMM, Inc.) [File not signed]
R2 RapiMgr; C:\windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S4 SbieSvc; E:\Program Files\Sandboxie\SbieSvc.exe [183896 2013-07-08] (SANDBOXIE L.T.D -> Sandboxie Holdings, LLC)
S3 ss_conn_launcher_service; C:\windows\system32\Samsung\EasySetup\ss_conn_launcher.exe [182120 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [830503 2019-12-17] (DEVGURU Co., LTD.) [File not signed]
S2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [1011583 2019-12-17] (DEVGURU Co., LTD.) [File not signed]
S3 VMAuthdService; C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [79872 2011-11-13] (VMware, Inc.) [File not signed]
S4 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [11839488 2011-11-13] () [File not signed]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S2 WcesComm; C:\windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2575360 2020-09-02] (Sony) [File not signed]
S2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
S3 TrustedInstaller; %SystemRoot%\servicing\TrustedInstaller.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 2672E3BA; C:\windows\system32\drivers\2672E3BA.sys [255928 2020-12-24] (Malwarebytes Corporation -> Malwarebytes)
R2 aksdf; C:\windows\system32\drivers\aksdf.sys [389560 2019-04-29] (Gemalto, Inc. -> SafeNet, Inc.)
R2 aksfridge; C:\windows\system32\drivers\aksfridge.sys [487352 2019-04-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 akshasp; C:\windows\System32\DRIVERS\akshasp.sys [69560 2019-04-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 akshhl; C:\windows\System32\DRIVERS\akshhl.sys [68536 2019-04-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 aksusb; C:\windows\System32\DRIVERS\aksusb.sys [313784 2019-04-29] (Gemalto, Inc. -> SafeNet, Inc.)
R0 ambakdrv; C:\windows\System32\ambakdrv.sys [51120 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AmUStor; C:\windows\System32\drivers\AmUStor.SYS [44032 2010-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.)
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AndnetBus; C:\windows\System32\DRIVERS\lgandnetbus64.sys [30208 2016-08-31] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndNetDiag; C:\windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AVEO; C:\windows\System32\DRIVERS\AVEOdcnt.sys [237056 2010-03-24] (Aveo Technology Corp. -> AVEO Corp)
S3 BTCFilterService; C:\windows\System32\DRIVERS\motfilt.sys [6144 2013-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc)
R3 cbrtfltr; C:\windows\System32\DRIVERS\cbrtfltr.sys [173248 2020-02-05] (Cellebrite Mobile Synchronization -> Cellebrite Mobile Synchronization)
S3 Ctxusbr; C:\windows\System32\DRIVERS\ctxusbr.sys [77488 2016-09-05] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S3 diagswitchdrv; C:\Windows\SysWOW64\DRIVERS\diagswitchdrv.sys [117888 2014-08-17] (Huawei Technologies Co., Ltd.) [File not signed]
R3 DroidCam; C:\windows\System32\DRIVERS\droidcam.sys [33592 2015-05-24] (DEV47 APPS -> Dev47Apps)
R3 DroidCamVideo; C:\windows\System32\DRIVERS\droidcamvideo.sys [229432 2015-05-24] (DEV47 APPS -> Dev47Apps)
R1 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-01-21] (DT Soft Ltd -> DT Soft Ltd)
S3 easyjtag; C:\windows\System32\DRIVERS\easyjtag.sys [65024 2017-09-04] (Z3X EasyJTAG -> )
S3 eGateUSB; C:\windows\System32\Drivers\eGateUSB.sys [98816 2007-05-09] (Gemalto) [File not signed]
S3 EloMTApr; C:\windows\System32\DRIVERS\EloMTApr.sys [232960 2017-05-18] (Elo Touch Solutions, Inc. -> )
S3 EloMTSer; C:\windows\System32\DRIVERS\EloMTSer.sys [122368 2017-05-18] (Elo Touch Solutions, Inc. -> )
S3 EloMTUsb; C:\windows\System32\DRIVERS\EloMTUsb.sys [183808 2017-05-18] (Elo Touch Solutions, Inc. -> )
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [129024 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronic Corp.)
S3 evserial9; C:\windows\System32\DRIVERS\evserial9.sys [44464 2020-06-15] (Electronic Team, Inc -> Electronic Team, Inc.)
S3 ew_usbccgpfilter; C:\windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2020-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbccgpfilter; C:\Windows\SysWOW64\DRIVERS\ew_usbccgpfilter.sys [19200 2016-03-29] (Huawei Technologies Co., Ltd.) [File not signed]
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-03-20] () [File not signed]
S3 ggsomc; C:\windows\System32\DRIVERS\ggsomc.sys [32384 2018-02-05] (Sony Mobile Communications AB -> Sony Mobile Communications)
R2 hardlock; C:\windows\system32\drivers\hardlock.sys [1970104 2019-04-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 HSPL_usbvcom; C:\windows\System32\DRIVERS\hw_usbvcom.sys [221824 2015-11-25] (Huawei Technologies Co., Ltd.) [File not signed]
S3 HSPL_usbvcom; C:\Windows\SysWOW64\DRIVERS\hw_usbvcom.sys [221824 2015-11-25] (Huawei Technologies Co., Ltd.) [File not signed]
S3 htcnprot; C:\windows\System32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider)
S3 htcusbnet; C:\windows\System32\DRIVERS\htcusbnet.sys [154624 2011-08-04] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 HtcVCom32; C:\windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated)
S3 HWHandSet; C:\windows\System32\DRIVERS\hw_quusbmdm.sys [226560 2020-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSet; C:\Windows\SysWOW64\DRIVERS\hw_quusbmdm.sys [226560 2016-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSetProLine; C:\windows\System32\DRIVERS\hw_quusbmdm.sys [226560 2020-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 HWHandSetProLine; C:\Windows\SysWOW64\DRIVERS\hw_quusbmdm.sys [226560 2016-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\windows\System32\DRIVERS\hw_cdcacm.sys [127360 2020-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_ctrlfakedev; C:\windows\System32\DRIVERS\hw_ctrlfakedev.sys [115712 2015-03-10] (Huawei Technologies Co., Ltd.) [File not signed]
S3 hw_ctrlfakedev; C:\Windows\SysWOW64\DRIVERS\hw_ctrlfakedev.sys [115712 2015-03-10] (Huawei Technologies Co., Ltd.) [File not signed]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 IT9135BDA; C:\windows\System32\Drivers\IT9135BDA.sys [165504 2016-12-23] (Microsoft Windows Hardware Compatibility Publisher -> ITE)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-21] (ASUSTeK Computer Inc. -> )
S3 libusb0; C:\windows\System32\DRIVERS\libusb0.sys [52832 2013-02-23] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\windows\System32\DRIVERS\libusbK.sys [47200 2020-08-17] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 lusbcbrt; C:\windows\System32\DRIVERS\lusbcbrt.sys [44224 2020-02-05] (Cellebrite Mobile Synchronization -> Cellebrite Mobile Synchronization)
S0 malqoorz; C:\Windows\SysWOW64\drivers\yahcdwms.sys [61440 2017-04-25] () [File not signed]
S3 massfilter_hs; C:\windows\System32\drivers\massfilter_hs.sys [11776 2010-10-20] (Microsoft Windows Hardware Compatibility Publisher -> HandSet Incorporated)
S3 mbamchameleon; C:\windows\system32\drivers\mbamchameleon.sys [192952 2020-12-24] (Malwarebytes Corporation -> Malwarebytes)
S3 motandroidusb; C:\windows\System32\Drivers\motoandroid.sys [32768 2013-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Motorola)
S3 motccgp; C:\windows\System32\DRIVERS\motccgp.sys [23552 2013-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc)
S3 motmodem; C:\windows\System32\DRIVERS\motmodem.sys [31744 2013-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc)
S3 MotoSwitchService; C:\windows\System32\DRIVERS\motswch.sys [8832 2012-06-08] (Microsoft Windows Hardware Compatibility Publisher -> Motorola)
S3 Motousbnet; C:\windows\System32\DRIVERS\Motousbnet.sys [27648 2013-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc)
S3 motport; C:\windows\System32\DRIVERS\motport.sys [31744 2013-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Mobility Inc)
S3 motusbdevice; C:\windows\System32\DRIVERS\motusbdevice.sys [12288 2013-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Motorola Inc)
S3 NETw5s64; C:\windows\System32\DRIVERS\NETw5s64.sys [6952960 2009-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 nmwcd; C:\windows\System32\drivers\ccdcmbx64.sys [19968 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbox64.sys [27136 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdnsucx64; C:\windows\System32\drivers\nmwcdnsucx64.sys [12800 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdnsux64; C:\windows\System32\drivers\nmwcdnsux64.sys [171008 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 qcfilter; C:\windows\System32\DRIVERS\qcusbfilter.sys [40448 2015-07-09] (QUALCOMM Incorporated) [File not signed]
S3 qcusbser; C:\windows\System32\DRIVERS\qu_usb_serial.sys [245248 2015-07-09] (QUALCOMM Incorporated) [File not signed]
S3 qcusbser; C:\Windows\SysWOW64\DRIVERS\qu_usb_serial.sys [245248 2015-07-09] (QUALCOMM Incorporated) [File not signed]
S3 qcusbwwan; C:\windows\System32\DRIVERS\qcusbwwan.sys [516608 2015-07-09] (QUALCOMM Incorporated) [File not signed]
S3 R5BaseSmc; C:\windows\System32\DRIVERS\smccard.sys [23592 2014-01-13] (Feitian Technologies Co., Ltd. -> OEM)
S3 riffbox; C:\windows\System32\DRIVERS\riffbox64.sys [32768 2012-04-24] (Microsoft Windows -> Microsoft Corporation)
R3 RtlWlanu; C:\windows\System32\DRIVERS\rtwlanu.sys [7947192 2018-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 s0016bus; C:\windows\System32\DRIVERS\s0016bus.sys [115240 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mdfl; C:\windows\System32\DRIVERS\s0016mdfl.sys [19496 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mdm; C:\windows\System32\DRIVERS\s0016mdm.sys [158760 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016mgmt; C:\windows\System32\DRIVERS\s0016mgmt.sys [137256 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016nd5; C:\windows\System32\DRIVERS\s0016nd5.sys [34344 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016obex; C:\windows\System32\DRIVERS\s0016obex.sys [136744 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0016unic; C:\windows\System32\DRIVERS\s0016unic.sys [151592 2008-05-16] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017bus; C:\windows\System32\DRIVERS\s0017bus.sys [113704 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mdfl; C:\windows\System32\DRIVERS\s0017mdfl.sys [19496 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mdm; C:\windows\System32\DRIVERS\s0017mdm.sys [152616 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017mgmt; C:\windows\System32\DRIVERS\s0017mgmt.sys [133160 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017nd5; C:\windows\System32\DRIVERS\s0017nd5.sys [34856 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017obex; C:\windows\System32\DRIVERS\s0017obex.sys [128552 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s0017unic; C:\windows\System32\DRIVERS\s0017unic.sys [145960 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018bus; C:\windows\System32\DRIVERS\s1018bus.sys [113704 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mdfl; C:\windows\System32\DRIVERS\s1018mdfl.sys [19496 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mdm; C:\windows\System32\DRIVERS\s1018mdm.sys [153128 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018mgmt; C:\windows\System32\DRIVERS\s1018mgmt.sys [133160 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018nd5; C:\windows\System32\DRIVERS\s1018nd5.sys [34856 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018obex; C:\windows\System32\DRIVERS\s1018obex.sys [128552 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1018unic; C:\windows\System32\DRIVERS\s1018unic.sys [146472 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039bus; C:\windows\System32\DRIVERS\s1039bus.sys [127600 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mdfl; C:\windows\System32\DRIVERS\s1039mdfl.sys [19568 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mdm; C:\windows\System32\DRIVERS\s1039mdm.sys [161904 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039mgmt; C:\windows\System32\DRIVERS\s1039mgmt.sys [141424 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039nd5; C:\windows\System32\DRIVERS\s1039nd5.sys [34416 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039obex; C:\windows\System32\DRIVERS\s1039obex.sys [137328 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 s1039unic; C:\windows\System32\DRIVERS\s1039unic.sys [158320 2012-07-24] (Sony Ericsson Mobile Communications AB -> MCCI Corporation)
S3 SbieDrv; E:\Program Files\Sandboxie\SbieDrv.sys [199384 2013-07-08] (SANDBOXIE L.T.D -> Sandboxie Holdings, LLC)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [12400 2018-12-09] (Macrovision Europe Ltd) [File not signed]
R3 seehcri; C:\windows\System32\DRIVERS\seehcri.sys [34032 2012-07-24] (Sony Ericsson Mobile Communications AB -> Sony Ericsson Mobile Communications)
S3 Ser2pl; C:\windows\System32\DRIVERS\ser2pl64.sys [160256 2013-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S0 soesbn; C:\Windows\SysWOW64\drivers\vevk.sys [61440 2017-04-25] () [File not signed]
S3 sprdvcom; C:\windows\System32\DRIVERS\sprdvcom.sys [28160 2015-03-04] (Spreadtrum Communications (shanghai) Co., Ltd. -> SPRD Device)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166760 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\windows\System32\Drivers\ss_conn_usb_driver2.sys [43368 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SzCCID; C:\windows\System32\DRIVERS\SzCCID.sys [46080 2020-02-05] (Generic) [File not signed]
S3 token; C:\windows\System32\DRIVERS\eps2kt1.sys [43432 2014-01-13] (Feitian Technologies Co., Ltd. -> OEM)
R2 TurboB; C:\windows\System32\DRIVERS\TurboB.sys [13832 2010-04-16] (Intel(R) Turbo Boost Technology Monitor -> )
S3 UFS2XX; C:\windows\System32\drivers\UFS2XX.sys [82528 2013-08-19] (UAB ”DIGITEKA” -> FTDI Ltd.)
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbbus; C:\windows\System32\DRIVERS\lgx64bus.sys [17920 2016-02-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 UsbDiag; C:\windows\System32\DRIVERS\lgx64diag.sys [28160 2016-02-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 USBModem; C:\windows\System32\DRIVERS\lgx64modem.sys [34816 2016-02-17] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 usbser; C:\Windows\SysWOW64\DRIVERS\USBSER.sys [33280 2013-08-28] (Microsoft Windows -> Microsoft Corporation)
R2 VMnetBridge; C:\windows\System32\DRIVERS\vmnetbridge.sys [45680 2011-11-13] (VMware, Inc. -> VMware, Inc.)
S3 VSBC9; C:\windows\System32\DRIVERS\evsbc9.sys [132016 2020-06-15] (Electronic Team, Inc -> Electronic Team, Inc.)
S3 WDC_SAM; C:\windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 wdf_usb; C:\windows\System32\DRIVERS\usb2ser.sys [140672 2014-11-24] (Microsoft Windows Hardware Compatibility Publisher -> MBB)
R3 wdkmd; C:\windows\System32\DRIVERS\WDKMD.sys [39832 2010-06-18] (Wireless Display -> Intel Corporation)
S3 wdm_usb; C:\windows\System32\DRIVERS\usb2ser.sys [140672 2014-11-24] (Microsoft Windows Hardware Compatibility Publisher -> MBB)
S3 zghsdiag; C:\windows\System32\DRIVERS\zghsdiag.sys [129432 2011-07-07] (ZTE CORPORATION  -> ZTE Incorporated)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 DIRECTIORM; \??\E:\Program Files\RAMMon\DirectIo64.sys [X]
S3 EloBus; system32\DRIVERS\EloBus.sys [X]
S3 EloSer; system32\DRIVERS\EloSerG2.sys [X]
S3 HTCAND64; System32\Drivers\ANDROIDUSB.sys [X]
U5 hw_usbdev; C:\Windows\SysWOW64\Drivers\hw_usbdev.sys [116864 2011-10-23]  (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S3 nvvhci; system32\DRIVERS\nvvhci.sys [X]
S3 qcusbnet; system32\DRIVERS\qcusbnet.sys [X]
S3 smhwdev; system32\DRIVERS\smhwdev.sys [X]
S3 smhwser; system32\DRIVERS\smhwser.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vzandnetadb; System32\Drivers\lgvzandnetadb.sys [X]
S1 xcbdplvu; \??\C:\windows\system32\drivers\xcbdplvu.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-24 02:07 - 2020-12-24 02:08 - 002286592 _____ (Farbar) C:\Users\MaClaud\Desktop\FRST64.exe
2020-12-24 02:02 - 2020-12-24 02:02 - 000000000 ____D C:\windows\erdnt
2020-12-24 01:58 - 2020-12-24 02:06 - 000748330 _____ C:\windows\ntbtlog.txt
2020-12-24 01:46 - 2020-12-24 01:47 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-12-24 01:46 - 2020-12-24 01:46 - 014178840 _____ (Malwarebytes Corp.) C:\Users\MaClaud\Desktop\mbar-1.10.3.1001.exe
2020-12-24 01:46 - 2020-12-24 01:46 - 000255928 _____ (Malwarebytes) C:\windows\system32\Drivers\2672E3BA.sys
2020-12-24 01:46 - 2020-12-24 01:46 - 000192952 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2020-12-24 01:46 - 2020-12-24 01:46 - 000000000 ____D C:\Users\MaClaud\Desktop\mbar
2020-12-24 01:34 - 2020-12-24 01:34 - 000003100 _____ C:\windows\system32\Tasks\AdwCleaner_onReboot
2020-12-24 01:29 - 2020-12-24 01:29 - 008525431 _____ (Malwarebytes) C:\Users\MaClaud\Desktop\adwcleaner_8.0.8.exe
2020-12-24 01:21 - 2020-12-24 01:21 - 189687664 _____ (AO Kaspersky Lab) C:\Users\MaClaud\Desktop\KVRT.exe
2020-12-24 01:19 - 2020-12-24 01:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-12-24 00:58 - 2020-12-24 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-12-21 23:46 - 2020-12-24 01:05 - 000000000 ____D C:\Program Files (x86)\Kingo ROOT
2020-12-20 11:32 - 2020-12-20 11:32 - 000000417 _____ C:\Users\MaClaud\Desktop\novic.txt
2020-12-20 10:57 - 2020-07-20 20:30 - 011608336 _____ C:\windows\SysWOW64\lokised.dll
2020-12-18 16:25 - 2020-12-24 01:05 - 000000000 ____D C:\Users\MaClaud\AppData\Local\HiSuite
2020-12-18 16:25 - 2020-12-24 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2020-12-18 16:25 - 2020-12-24 01:05 - 000000000 ____D C:\Program Files (x86)\HiSuite
2020-12-18 16:25 - 2020-12-18 16:30 - 000000072 _____ C:\Users\MaClaud\Desktop\Nový textový dokument.txt
2020-12-18 16:25 - 2020-12-18 16:25 - 000000951 _____ C:\Users\Public\Desktop\HiSuite.lnk
2020-12-18 16:24 - 2020-11-12 10:42 - 000135848 _____ (Electronic Team, Inc.) C:\windows\system32\Drivers\vuhub.sys
2020-12-18 16:24 - 2020-11-12 10:42 - 000045736 _____ (Electronic Team, Inc.) C:\windows\system32\Drivers\eusbstub.sys
2020-12-17 22:49 - 2020-12-24 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2020-12-17 22:49 - 2020-12-24 01:05 - 000000000 ____D C:\Program Files\Sony
2020-12-17 22:49 - 2020-12-17 22:49 - 000002135 _____ C:\Users\Public\Desktop\Xperia Companion.lnk
2020-12-14 22:22 - 2020-12-24 01:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Upgrade S Gotu2 v5.5.8
2020-12-14 22:22 - 2020-12-24 01:06 - 000000000 ____D C:\Mobile Upgrade S Gotu2 v5.5.8
2020-12-14 22:22 - 2020-12-14 22:22 - 000000825 _____ C:\Users\Public\Desktop\Mobile Upgrade S Gotu2 v5.5.8.lnk
2020-12-11 22:52 - 2020-12-11 22:52 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flashtool
2020-12-10 23:35 - 2020-12-10 23:35 - 000000297 _____ C:\Users\MaClaud\.gitconfig
2020-12-02 22:27 - 2020-12-02 22:27 - 000001892 _____ C:\Users\Public\Desktop\Autopsy 4.17.0.lnk
2020-12-02 22:27 - 2020-12-02 22:27 - 000000000 ____D C:\Users\MaClaud\AppData\Local\autopsy
2020-12-02 22:26 - 2020-12-03 00:46 - 000000000 ____D C:\Program Files\Autopsy-4.17.0
2020-12-02 22:26 - 2020-12-02 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autopsy
2020-11-29 23:33 - 2020-11-29 23:33 - 003766772 _____ C:\G(449.18GB) Lost File Recovery 2020-11-29 at 23.32.52.res
2020-11-29 19:52 - 2020-11-29 19:52 - 000001174 _____ C:\Users\Public\Desktop\Wondershare Data Recovery.lnk
2020-11-29 19:52 - 2020-11-29 19:52 - 000000000 ____D C:\Users\MaClaud\AppData\Local\Wondershare
2020-11-29 19:52 - 2020-11-29 19:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2020-11-29 19:52 - 2020-11-29 19:52 - 000000000 ____D C:\Program Files (x86)\Wondershare
2020-11-29 09:58 - 2020-11-29 09:58 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\EaseUS
2020-11-29 09:58 - 2020-11-29 09:58 - 000000000 ____D C:\ProgramData\SystemAcCrux

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-24 02:09 - 2020-03-24 23:35 - 000040727 _____ C:\Users\MaClaud\Desktop\FRST.txt
2020-12-24 02:08 - 2020-03-24 23:34 - 000000000 ____D C:\FRST
2020-12-24 02:07 - 2016-11-19 17:27 - 000000000 ____D C:\Users\MaClaud\AppData\LocalLow\Mozilla
2020-12-24 02:07 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\System
2020-12-24 02:06 - 2018-01-21 14:50 - 000000000 ____D C:\Users\MaClaud\AppData\Local\CrashDumps
2020-12-24 02:06 - 2015-02-19 21:31 - 000000091 _____ C:\HaxLogs.txt
2020-12-24 02:06 - 2014-07-06 10:52 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-24 02:06 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-12-24 02:04 - 2015-08-25 09:21 - 000000000 ____D C:\Qoobox
2020-12-24 02:03 - 2009-07-14 05:45 - 000023824 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-12-24 02:03 - 2009-07-14 05:45 - 000023824 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-12-24 02:01 - 2020-04-09 13:51 - 000000000 ____D C:\KVRT_Data
2020-12-24 02:00 - 2018-01-21 12:15 - 000000000 ____D C:\windows\SysWOW64\NV
2020-12-24 02:00 - 2018-01-21 12:15 - 000000000 ____D C:\windows\system32\NV
2020-12-24 02:00 - 2012-04-18 17:32 - 000000000 ____D C:\Users\MaClaud\AppData\Local\ElevatedDiagnostics
2020-12-24 01:47 - 2015-08-25 09:48 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-12-24 01:40 - 2009-07-14 16:18 - 000675130 _____ C:\windows\system32\perfh005.dat
2020-12-24 01:40 - 2009-07-14 16:18 - 000144220 _____ C:\windows\system32\perfc005.dat
2020-12-24 01:40 - 2009-07-14 06:13 - 001601644 _____ C:\windows\system32\PerfStringBackup.INI
2020-12-24 01:40 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf
2020-12-24 01:35 - 2013-03-30 11:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-24 01:32 - 2017-11-03 21:49 - 000000000 ____D C:\ProgramData\AutoUpdate
2020-12-24 01:31 - 2012-12-30 18:02 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\Samsung
2020-12-24 01:31 - 2012-01-21 04:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-12-24 01:16 - 2012-01-21 10:17 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-12-24 01:06 - 2012-01-21 03:53 - 000000000 ____D C:\Users\MaClaud
2020-12-24 01:05 - 2020-11-10 10:37 - 000000000 ____D C:\Program Files (x86)\Safe In Cloud
2020-12-24 01:05 - 2020-07-02 21:29 - 000000000 ____D C:\OpenHardwareMonitor
2020-12-24 01:05 - 2020-03-18 18:45 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-24 01:05 - 2020-03-13 19:42 - 000000000 ____D C:\Users\MaClaud\.android
2020-12-24 01:05 - 2020-01-29 22:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Miracle Team
2020-12-24 01:05 - 2018-03-19 18:51 - 000000000 ____D C:\Users\MaClaud\AppData\Local\QPST
2020-12-24 01:05 - 2018-03-17 13:05 - 000000000 ____D C:\Users\Guest
2020-12-24 01:05 - 2018-01-21 20:31 - 000000000 ____D C:\Program Files (x86)\Uni-Android
2020-12-24 01:05 - 2017-12-28 14:56 - 000000000 ____D C:\AS-SSD-Benchmark2.0.6485
2020-12-24 01:05 - 2017-02-12 23:08 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\uTorrent
2020-12-24 01:05 - 2015-09-25 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT
2020-12-24 01:05 - 2015-08-26 20:21 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS
2020-12-24 01:05 - 2015-01-27 18:21 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\Kingosoft
2020-12-24 01:05 - 2014-11-29 12:04 - 000000000 ____D C:\windows\pss
2020-12-24 01:05 - 2013-04-19 13:38 - 000000000 ____D C:\Program Files\adb
2020-12-24 01:05 - 2012-02-04 09:38 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\IrfanView
2020-12-24 01:05 - 2012-01-21 13:21 - 000000000 ____D C:\Program Files (x86)\WinRar
2020-12-24 01:05 - 2009-07-14 04:20 - 000000000 ____D C:\windows\registration
2020-12-24 01:04 - 2020-01-29 22:48 - 000000000 ____D C:\Miracle Team
2020-12-24 01:04 - 2019-04-01 23:17 - 000000000 ____D C:\Program Files (x86)\QUALCOMM Incorporated
2020-12-24 01:04 - 2012-01-21 12:03 - 000000000 ____D C:\Users\MaClaud\AppData\Local\Mozilla
2020-12-24 01:00 - 2013-01-05 11:51 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\TeamViewer
2020-12-24 01:00 - 2009-07-14 04:20 - 000000000 ____D C:\windows\ModemLogs
2020-12-24 00:21 - 2012-01-21 02:57 - 000000000 ____D C:\windows\Panther
2020-12-19 10:06 - 2020-07-17 21:37 - 000000252 _____ C:\windows\ptGmfData
2020-12-19 10:06 - 2019-08-27 21:12 - 000000154 _____ C:\windows\fdataGlobal
2020-12-19 09:43 - 2019-05-24 21:47 - 000003974 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{622E5186-25DA-42B1-92A5-EC41038EB5D6}
2020-12-19 09:38 - 2017-08-10 22:02 - 000000000 ____D C:\Program Files (x86)\Bonjour
2020-12-17 22:50 - 2014-05-24 17:31 - 000000000 ____D C:\ProgramData\Sony Mobile
2020-12-17 22:49 - 2015-10-11 17:04 - 000000000 ____D C:\Program Files (x86)\Sony
2020-12-11 22:52 - 2015-10-13 19:23 - 000000000 ____D C:\Flashtool
2020-12-11 22:52 - 2015-10-11 10:39 - 000000000 ____D C:\Users\MaClaud\.flashTool
2020-12-11 22:51 - 2019-10-01 21:02 - 000000000 ____D C:\Users\MaClaud\AppData\Local\BitTorrentHelper
2020-12-09 23:10 - 2014-01-13 21:08 - 000000000 ____D C:\Program Files (x86)\Z3X
2020-12-03 22:14 - 2020-10-20 21:30 - 000003564 _____ C:\windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1414726678-80063402-3466205120-1000UA
2020-12-03 22:14 - 2020-10-20 21:30 - 000003292 _____ C:\windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1414726678-80063402-3466205120-1000Core
2020-12-02 22:27 - 2018-08-06 22:43 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\autopsy
2020-12-02 22:18 - 2012-04-13 19:16 - 000002426 _____ C:\Users\MaClaud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-02 22:18 - 2012-04-13 19:16 - 000002389 _____ C:\Users\MaClaud\Desktop\Google Chrome.lnk
2020-12-01 23:26 - 2020-11-04 14:19 - 000000000 ____D C:\Program Files\Autopsy-4.16.0
2020-11-29 20:14 - 2020-04-13 22:45 - 000000000 ____D C:\Users\MaClaud\AppData\Local\.IdentityService
2020-11-29 20:13 - 2013-11-02 21:50 - 000000000 ____D C:\Users\MaClaud\AppData\Roaming\vlc
2020-11-29 19:29 - 2018-03-15 19:53 - 000000000 ____D C:\Users\MaClaud\Desktop\9008
2020-11-28 11:33 - 2015-06-02 15:16 - 000000000 ____D C:\ProgramData\SP_FT_Logs
2020-11-25 11:56 - 2020-11-12 22:35 - 000020480 _____ C:\windows\SysWOW64\libgcc_s_dw2-1.dll
2020-11-25 11:56 - 2020-02-07 23:20 - 003951616 _____ C:\windows\SysWOW64\QtGui4.dll
2020-11-25 11:56 - 2020-02-07 23:20 - 001595031 _____ C:\windows\SysWOW64\libqjson.dll
2020-11-25 11:56 - 2020-02-07 23:20 - 000968704 _____ C:\windows\SysWOW64\QtCore4.dll
2020-11-25 11:56 - 2020-02-07 23:20 - 000009826 _____ C:\windows\SysWOW64\mingwm10.dll

==================== Files in the root of some directories ========

2018-02-11 12:10 - 2018-02-11 23:22 - 000000096 _____ () C:\Users\MaClaud\AppData\Roaming\version2.xml
2019-02-26 20:37 - 2019-03-10 20:08 - 000000016 _____ () C:\Users\MaClaud\AppData\Roaming\windows_e.cfg
2015-06-01 20:05 - 2018-05-11 23:49 - 000000600 _____ () C:\Users\MaClaud\AppData\Roaming\winscp.rnd
2020-08-06 23:31 - 2020-08-06 23:31 - 000003584 _____ () C:\Users\MaClaud\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-01-21 04:17 - 2012-01-21 04:17 - 000001263 _____ () C:\Users\MaClaud\AppData\Local\PDLSetup.20120121.041752.txt
2018-05-11 23:48 - 2019-07-18 18:43 - 000000128 _____ () C:\Users\MaClaud\AppData\Local\PUTTY.RND
2017-11-13 19:35 - 2020-07-02 21:32 - 000007602 _____ () C:\Users\MaClaud\AppData\Local\Resmon.ResmonCfg
2016-09-17 08:43 - 2016-09-17 08:43 - 000000192 _____ () C:\Users\MaClaud\AppData\Local\uts.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)



testsigning: ==> 'testsigning' is set. Check for possible unsigned driver <==== ATTENTION

LastRegBack: 2020-12-23 14:46
==================== End of FRST.txt ========================