Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Někdo je v mém PC

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zpráva
Autor
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113807
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Někdo je v mém PC

#16 Příspěvek od Rudy »

Vždyť to tam píšu. Soubor otevřte, text zkopírujte a vložte sem. Pokud nezvládáte základní práci s PC, nechte si to udělat od někoho, kdo to umí.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#17 Příspěvek od not_ketchupp »

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-04-01.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-06-2021
# Duration: 00:00:05
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 2


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

Not Deleted Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
Not Deleted Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1548 octets] - [06/04/2021 16:16:24]
AdwCleaner[S01].txt - [1609 octets] - [06/04/2021 18:16:09]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#18 Příspěvek od not_ketchupp »

Tak tohle je ono

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113807
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Někdo je v mém PC

#19 Příspěvek od Rudy »

Ano, to je ono. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-20\...\Policies\system: []
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {0a8c0ab8-f8d2-11e9-bb97-90b11c8dc496} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {37fb3f5a-5b62-11ea-bbb0-001a7dda7111} - "F:\setup.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {393bbffe-687f-11eb-bd62-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {cc47666b-0d5d-11eb-bccb-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {da0f45c8-aaf8-11ea-bc54-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-19\...\Policies\system: []
HKU\S-1-5-18\...\Policies\system: []
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
C:\WINDOWS\SysWOW64\unp156707654.tmp
C:\Users\Milospc\AppData\Roaming\UgwIPUUWRxfZSNm
C:\Users\Milospc\AppData\Roaming\Kasuoreo
C:\Users\Milospc\AppData\Roaming\dxpiaLbEQTovDGYYL
C:\Users\Milospc\AppData\Roaming\Onagf
C:\Users\Milospc\AppData\Roaming\OIsXCbJHBYPenw
C:\Users\Milospc\Downloads\Outbyte-PC-Repair-11662247-Crack---License-Key-Free-Download-2021_f814605c5d678f16fc637c.zip
C:\Users\Milospc\Downloads\Streamlabs+OBS+Setup+0.27.1-mgNosYaFcbcxpZz.exe
CustomCLSID: HKU\S-1-5-21-1212909314-1353993095-2117482179-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Milospc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
AlternateDataStreams: C:\Users\Milospc:Heroes & Generals [0]
AlternateDataStreams: C:\Users\Milospc\AppData\Local\Temp:$DATA​ [0]
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
FirewallRules: [TCP Query User{358A8AE0-28E7-412A-90EF-4E175E4ACA86}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe => No File
FirewallRules: [UDP Query User{7E36775F-A79B-42EC-A808-9EC9DCDE001B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe => No File
FirewallRules: [{9F2E6941-E215-4820-B609-8D060C0D95B3}] => (Allow) C:\Users\zimul\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
FirewallRules: [{60254BAD-1547-45C8-BF58-19862F7E2003}] => (Allow) C:\Users\zimul\AppData\Local\Programs\Opera\68.0.3618.125\opera.exe => No File
FirewallRules: [{83CCC72F-05C7-44B0-8061-62263894C280}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe => No File
FirewallRules: [{5882A00B-22F9-42F6-9099-E508983DC7EB}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe => No File
FirewallRules: [TCP Query User{69BB3FBB-73C1-47EE-BAD4-C84646D5AEDA}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{C9BDB66D-8B73-4D45-859C-C152F016FF2C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{96365D89-101B-4944-9275-53BA1B85AE27}C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe] => (Allow) C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe => No File
FirewallRules: [UDP Query User{75684D88-4104-42CA-95CE-D75F8951B9D1}C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe] => (Allow) C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe => No File
FirewallRules: [TCP Query User{AED3B6CD-93C6-49FD-9DE9-13F44F4C8D6A}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [UDP Query User{E9608693-A0D2-4207-B6D7-BBD15D240B27}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [TCP Query User{0A99E0AA-1711-4546-849F-33F0B5080696}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2BF27D67-4FD8-47F5-80D1-D6110B3B943F}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [TCP Query User{25A62816-B8B7-464E-BE3A-DB05216D4636}C:\users\milospc\downloads\skate-3.exe] => (Allow) C:\users\milospc\downloads\skate-3.exe => No File
FirewallRules: [UDP Query User{772A50AB-0A51-49F8-ABD6-C1507CF18A53}C:\users\milospc\downloads\skate-3.exe] => (Allow) C:\users\milospc\downloads\skate-3.exe => No File
FirewallRules: [TCP Query User{BC075250-1BDD-4881-905D-2731537F3F3D}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe => No File
FirewallRules: [UDP Query User{FB3E2067-E892-4FBE-B52C-942AD55EC62C}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe => No File
FirewallRules: [TCP Query User{5DC1C3DE-0EB4-41C6-8F86-4095A125B60C}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{6730C93A-E8BF-4D62-9836-2E2DA48DAEC4}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{53214230-514D-4BE7-86F9-10E7FF9EE0E5}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{3FCD3698-EF99-4A33-8A62-16AABE5B9978}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{03CC29EA-9CE9-44BF-913A-449D60408935}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{C4CF68F7-B141-427E-A405-B869C450CD32}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{7A6B5208-CB8C-4B41-A776-839FB5728524}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{C197BE58-29D9-460F-9E7D-C5A3B7084327}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{3EC29D88-4A2F-4815-9C4E-C5B03F9D5D3B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{E00A498B-586E-467E-A7F2-8B50E49CCA70}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe => No File
FirewallRules: [{447E624C-84BE-441A-BF3D-53AC60250AA4}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe => No File
FirewallRules: [{97F40FB6-0DDA-4960-84AD-C36B03B4D84F}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe => No File
FirewallRules: [TCP Query User{3C974D6E-BA2E-4BB7-B00B-8819B3984C8A}C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{C6C56EF7-4519-46FD-80A7-5973667C6B60}C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{46B484B1-77A6-476E-B4FA-B6AE5953B516}C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{26B717F4-F988-4E6F-B98D-D47DF2C6A632}C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{73C27503-ABD0-4612-8AF6-5F3DDE5AE8F7}C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{496EB067-1019-493E-8A19-AD98A392F96A}C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{837F76C2-FB1F-4805-BDFA-A9E5E310DC05}C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{AEF522F5-3763-425D-B7E6-D31C4AA85AD3}C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{132F0FF0-457F-49EB-A8B7-35E530EB0E9A}C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{257A571E-10E9-46A1-AFCB-CC6E4072DB30}C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{4446389C-7B2E-4CB4-9551-2BC6B2B3A1E1}C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{02273402-D4F3-4CCD-804D-02137FCEF0D2}C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{FDD2AB8F-5216-4246-A646-FBC2FF161B9E}C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{87FCD6AE-7389-4105-B4F8-C08D7ACB06C2}C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{C48A9B3A-2086-42BE-B939-FDAED0BAB28C}C:\users\milospc\appdata\local\fivem\fivem.exe] => (Allow) C:\users\milospc\appdata\local\fivem\fivem.exe => No File
FirewallRules: [UDP Query User{E6A4DE44-8012-4AA5-9A42-0188F39F8D04}C:\users\milospc\appdata\local\fivem\fivem.exe] => (Allow) C:\users\milospc\appdata\local\fivem\fivem.exe => No File
FirewallRules: [{D2B1C3EA-23D8-4D2B-8214-48D555A37554}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [{AD718F50-9BEE-4AAE-86B1-8C5BB04CEF5E}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [{4F6E51A6-B9EC-4ECE-84BD-A2C338145992}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [{50531C96-5632-40F3-99CD-57258FB896A2}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [TCP Query User{A01224B8-0BB5-485F-B82E-80951A77C915}C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe => No File
FirewallRules: [UDP Query User{9EA8B534-9CE4-4C9C-916E-7B4EE5ECBAAD}C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe => No File
FirewallRules: [TCP Query User{4D70940C-3160-43BD-8E88-4E16A5A450D8}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Block) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe => No File
FirewallRules: [UDP Query User{7492C51B-84D9-439B-87BE-D86EF2593F8B}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Block) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe => No File
FirewallRules: [{C4044891-0EBD-478D-B539-AF6A4B9B1F02}] => (Allow) C:\Users\Milospc\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{8CCFB84D-F0D6-4CAC-B388-D10230CFC185}] => (Allow) C:\Users\Milospc\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{820B1EE6-A03E-419D-9068-51D2CE9EBA9A}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File
FirewallRules: [{68828B5A-2991-4683-94FA-93C454CB1864}] => (Allow) D:\Hry\2019.4.17f1\Editor\Unity.exe => No File
FirewallRules: [{6B55C12F-EFC7-436A-BC5F-285F9F7059EF}] => (Block) D:\Hry\2019.4.17f1\Editor\Unity.exe => No File
FirewallRules: [TCP Query User{5AD036C7-BBDF-431C-903D-6790BC71C6A2}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2A7DFB4A-911D-444C-B9CF-8917CF10863A}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{ACA880B9-563E-4E1A-8244-AA3F7877C6E6}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{91443409-7158-440D-92AF-9543116CF36C}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{631757B0-E0AB-4755-A38D-08DF5AE18E32}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{D1334954-EE6D-403B-A265-F928DD74B3BE}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{E1954805-B9E7-4802-8BDC-018B3F0491C4}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{3257BC98-8A14-4FA6-86D4-A7AEB9C29A82}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{0CD2FE39-DC74-4B6A-87E0-24A77320025D}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{1DC37837-6EAE-448B-B3A1-2FE92EEEE3FE}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{40411A8E-D43F-46DC-80E2-B8CEE8E8F29F}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{BA604527-F345-4CDC-9AF0-295D870084A7}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{2E19A69E-7B3D-48FC-AB6D-2E1D07707F11}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{70CF0488-1AFA-4D27-BC1C-F9B5802C6DA7}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{6C0637D5-1363-4EDF-936B-DE7B2806EFC5}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{B4E40423-F0BD-47FE-8586-599FF0974766}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{E93FFC9F-EE0A-40BE-9282-6988F1DD2A97}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{6A56C4B8-3285-48A9-BCA7-AC6143AD799A}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{4172AA0E-03DC-459E-857F-978BA8F2A2C5}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{3C9AF9D4-1AC1-4C78-B616-C6D09C865C8D}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{73515F63-3676-4396-A7BA-4D32EFD6AEDA}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{F7E2A10C-EACE-42B7-ACD3-1639D49E0C2B}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [TCP Query User{33594C29-E494-4D8E-ACD1-3E727712BBB7}C:\program files (x86)\cobian backup 11\cbremotemanager.exe] => (Block) C:\program files (x86)\cobian backup 11\cbremotemanager.exe => No File
FirewallRules: [UDP Query User{63A03A73-0FD4-48FC-AE3A-6277AD0F2381}C:\program files (x86)\cobian backup 11\cbremotemanager.exe] => (Block) C:\program files (x86)\cobian backup 11\cbremotemanager.exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#20 Příspěvek od not_ketchupp »

Takže mám jít na plochu a založit nový text dokument a do něj zkopírovat tu zprávu co jste poslal. Potom mám jít do toho FRST64 a dát ,,FIX". To jsem dal a píše to co jse muložil do přílohy
Přílohy
Farbar Recovery Scan Tool (x64) Version_ 05-04-2021 07.04.2021 9_07_18.png
Farbar Recovery Scan Tool (x64) Version_ 05-04-2021 07.04.2021 9_07_18.png (5.07 KiB) Zobrazeno 113 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113807
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Někdo je v mém PC

#21 Příspěvek od Rudy »

Otevřete poznámkový blok, zkopírujete do něj text z mého postu, uložíte do stejného adresáře, v kterém je FRST jako fixlist.txt (nepřeklepnout se, nejčastější chyba je, že je vypsána přípona txt 2x - to nesmí být) a pak otevřít znovu FRST a kliknout na "Fix". Proběhne mazání a po něm restart PC. Při novém startu se zobrazí fixlog, který sem zkopírujete. Podle přiloženého obrázku máte fixlist buď někde jinde, nebo jste ho chybně uložil.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#22 Příspěvek od not_ketchupp »

Já právě nevím kde je to místo kde je ten adresář.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113807
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Někdo je v mém PC

#23 Příspěvek od Rudy »

Bože můj! Když jste dával logy FRST+Addition, spouštěl jste FRST z plochy (C:\Users\Milospc\Desktop). Plocha je také adresář. Pokud jste FRST někam nepřemístil, musí tam být. Proto jsem vám dával do postu, abyste uložil fixlist na plochu. Proto do poznámkového bloku zkopírujte ten text z mého postu z z 6.4. 8:18pm hod a uložte ho na plochu (nebo tam, kde máte nyní FRST) podle návodu z mého postu ze 7.4. 9:35am hod.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#24 Příspěvek od not_ketchupp »

Už se mi to povedlo, ale po restartování se mi to neotevřelo. Co mám teď dělat???

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113807
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Někdo je v mém PC

#25 Příspěvek od Rudy »

To se někdy stává, oba logy najdete na ploše v souborech frst.txt a addition.txt. Soubory otevřte a text, který v nich najdete, zkopírujte sem.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#26 Příspěvek od not_ketchupp »

Nemůžu to sem poslat, protože to má moc slov. Co mám dělat??

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#27 Příspěvek od not_ketchupp »

Tady je první půlka FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-04-2021
Ran by Milospc (administrator) on DESKTOP-HA2U350 (Dell Inc. OptiPlex 9010) (06-04-2021 15:26:24)
Running from C:\Users\Milospc\Desktop
Loaded Profiles: Milospc
Platform: Windows 10 Pro Version 1903 18362.1256 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
() [File not signed] C:\Program Files (x86)\Wondershare\dr.fone - Virtual Location (iOS)\Addins\VirtualLocation\ElevationService.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Comodo Security Solutions -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\COMODO Secure Shopping\csssrv64.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <4>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\CryptoTabCrashHandler.exe
(CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\CryptoTabCrashHandler64.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskService.exe
(Datronicsoft, Inc. -> datronicsoft) C:\Windows\System32\spacedeskServiceTray.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\89.0.4389.25\remoting_host.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <21>
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(libMPVPlayer) [File not signed] C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\plugins\libMPVPlayer\libMPVPlayer.exe
(livelySubProcess) [File not signed] C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\plugins\subproc\livelySubProcess.exe
(livelywpf) [File not signed] C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\livelywpf.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Milospc\AppData\Local\Microsoft\Teams\current\Teams.exe <10>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\CompPkgSrv.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\conhost.exe <3>
(Microsoft Corporation) [File not signed] C:\Windows\System32\ctfmon.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\dasHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\dwm.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\rundll32.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchFilterHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchIndexer.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchProtocolHost.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\System32\sihost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\spoolsv.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wbem\WmiPrvSE.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\System32\winlogon.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\WUDFHost.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.38.25003.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe <2>
(Pango Inc. -> Pango Inc.) C:\Program Files (x86)\Hotspot Shield\10.12.1\bin\cmw_srv.exe
(Pango Inc. -> Pango Inc.) C:\Program Files (x86)\Hotspot Shield\10.12.1\bin\hsscp.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(remotemouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
(RemoteMouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\WINDOWS\system32\SecurityHealthSystray.exe [84992 2020-02-12] (Microsoft Corporation) [File not signed]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353784 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [824240 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [10140904 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [CryptoTab Browser] => C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [2059304 2020-12-23] (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [94898944 2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5035416 2019-09-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [441448 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [33792 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [27648 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-20\...\Policies\system: []
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33036768 2021-03-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-03-23] (Valve -> Valve Corporation)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [uTorrent] => C:\Users\Milospc\AppData\Roaming\uTorrent\uTorrent.exe [2133032 2021-03-17] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Milospc\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-03-24] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [VideoWallpaper] => C:\BioniX Video Wallpaper\VideoWallpaper.exe [3892224 2018-03-11] (CubicDesign) [File not signed]
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [GoogleChromeAutoLaunch_9BD91CCC5AEC38B40BE9587F2DA521BE] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Chromium] => "c:\users\milospc\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1747288 2021-03-18] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Discord] => C:\Users\Milospc\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [WallpaperEngine] => C:\Users\Milospc\Downloads\wallpaper engine 1.1.341\wallpaper_engine\wallpaper32.exe [2578936 2020-11-26] (Kristjan Skutta -> )
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792272 2021-01-13] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [livelywpf] => C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\livelywpf.exe [195072 2021-01-11] (livelywpf) [File not signed]
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Voicemod] => C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe [5682320 2021-02-25] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144760 2021-04-06] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Policies\system: []
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {0a8c0ab8-f8d2-11e9-bb97-90b11c8dc496} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {37fb3f5a-5b62-11ea-bbb0-001a7dda7111} - "F:\setup.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {393bbffe-687f-11eb-bd62-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {cc47666b-0d5d-11eb-bccb-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {da0f45c8-aaf8-11ea-bc54-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-19\...\Policies\system: []
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session
HKU\S-1-5-18\...\Policies\system: []
HKLM\...\Providers\Internet Print Provider: C:\WINDOWS\system32\inetpp.dll [177664 2019-10-07] (Microsoft Corporation) [File not signed]
HKLM\...\Providers\LanMan Print Services: C:\WINDOWS\system32\win32spl.dll [863232 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [44544 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Appmon: C:\WINDOWS\system32\AppMon.dll [113152 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Local Port: C:\WINDOWS\system32\localspl.dll [1184256 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\WINDOWS\system32\FXSMON.DLL [46592 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\WINDOWS\system32\tcpmon.dll [222720 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\USB Monitor: C:\WINDOWS\system32\usbmon.dll [862208 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\WSD Port: C:\WINDOWS\system32\APMon.dll [1375232 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-09-17]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk [2020-09-17]
ShortcutTarget: simplicheck.lnk -> C:\Program Files (x86)\simplitec\simplicheck\simplicheck.exe (simplitec GmbH -> simplitec)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Splashtop Wired XDisplay Agent.lnk [2021-03-29]
ShortcutTarget: Splashtop Wired XDisplay Agent.lnk -> C:\Program Files (x86)\Splashtop\Splashtop Wired XDisplay\Agent\SWXDAgent.exe (Splashtop Inc. -> Splashtop Inc.)
Startup: C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FuzeTV.lnk [2021-04-05]
ShortcutTarget: FuzeTV.lnk -> C:\Users\Milospc\AppData\Local\Overwolf\Extensions\dafpjodfmofenjonekfnkphpghegoekhfepmbmib\0.9.9.2368\plugins\agent\FuzeTV.exe (Quarterback Inc.) [File not signed]
Startup: C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HoneygainUpdater.lnk [2021-04-05]
ShortcutTarget: HoneygainUpdater.lnk -> C:\Users\Milospc\AppData\Roaming\Honeygain\HoneygainUpdater.exe (OOO "XMAC" -> Honeygain)
Startup: C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2020-09-01]
ShortcutTarget: Twitch.lnk -> C:\Users\Milospc\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
Startup: C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk [2020-06-17]
ShortcutTarget: IMVU.lnk -> C:\Users\Milospc\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe (No File)
Startup: C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-12-03]
ShortcutTarget: Twitch.lnk -> C:\Users\Milospc\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01C5B377-A7EB-4FF3-9C6C-86852FACB348} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\WINDOWS\system32\ProvTool.exe [84480 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {01E148B7-E844-409B-90A6-7BC643B92EF5} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047} C:\WINDOWS\System32\ReAgentTask.dll [13824 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {01F94132-A3BF-4AD3-BA30-D631FD3A67CA} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {027D2824-ECCD-438B-A4EA-D7A4EF86A06F} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-B242-4FA8-8C25-CAF695B88209} C:\Windows\System32\pnppolicy.dll [56832 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {04C10A9D-5360-47B2-9C96-2DDBCE8EC3F7} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [119296 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {058BE07E-575F-42CA-894B-6A8F9716F16E} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {CA767AA8-9157-4604-B64B-40747123D5F2} C:\WINDOWS\System32\regidle.dll [15872 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {066611CA-B68B-4C48-B3E6-E80FC0B7545E} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {C27F6B1D-FE0B-45E4-9257-38799FA69BC8} C:\WINDOWS\System32\usbceip.dll [123392 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {07B85E51-23DD-4E95-912E-62B91AA468FB} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {083F3813-82BC-4622-A1B0-070C619B7D11} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => C:\WINDOWS\system32\mitigationscanner.exe [58880 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {08AFBCF4-A922-42D7-AB8F-59B75BA130B4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22763912 2021-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {0903A339-04A3-4976-8F4E-DDDD3CD546FB} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\WINDOWS\system32\DFDWiz.exe [52736 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {0929591E-A4DD-41E2-8B92-DDA848EBDDC3} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\WINDOWS\system32\TimeSyncTask.dll [14848 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {0A2D0DE7-8550-4F4A-87DD-61785557564A} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\WINDOWS\system32\defrag.exe [186880 2020-02-12] (Microsoft Corp.) [File not signed]
Task: {0B76A047-5E0D-48D6-97E9-1CB6702F8832} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\WINDOWS\System32\wsqmcons.exe [92672 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {0C7D8A27-9B28-49F1-979C-AD37C4D290B1} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\WINDOWS\system32\appidcertstorecheck.exe [19456 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {0CB1E455-09EB-4AE0-8957-20C1CC45B289} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0D4254FC-C2E0-4C43-AAE5-DB986C14E087} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\WINDOWS\System32\dusmtask.exe [37888 2020-03-10] (Microsoft Corporation) [File not signed]
Task: {0F8187C2-B821-410E-95AE-9B5D0065CD06} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} C:\Windows\System32\WorkFoldersShell.dll [225792 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {105D676A-D551-4274-81E7-97AC52E4FD87} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\WINDOWS\system32\speech_onecore\common\SpeechRuntime.exe [284160 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {12B77A7C-1DDB-48D8-9A89-E91548474357} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications => {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} C:\Windows\System32\UsbTask.dll [54784 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {15975FEC-F71A-4FF3-9831-53024113DA95} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {18192CBE-3B5C-4E7A-92AD-368C4F8745EE} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\WINDOWS\system32\RAServer.exe [134144 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {18C07FF5-0EB8-4956-BE65-FF8BF2023095} - System32\Tasks\CryptoTabUpdateTaskMachineCore => C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
Task: {1B0C0498-944F-4BAA-A51E-1D4376253762} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\WINDOWS\system32\BthUdTask.exe [40448 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {1B813E0C-2BBF-4EFE-9108-D9D020D465F2} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97D47D56-3777-49FB-8E8F-90D7E30E1A1E} C:\Windows\System32\WorkFoldersShell.dll [225792 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {1C654285-C780-4C07-8D95-D950BB7A03E7} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {1FD82FBC-B8E1-4418-9252-DCB00E106E2E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {21AC9D73-9E12-493B-9E70-8446634E3E41} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3915216 2021-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {21ACA54C-4987-4CDC-AD8E-6929BFD41CD4} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync => {2AE64751-B728-4D6B-97A0-B2DA2E7D2A3B} C:\Windows\System32\srmclient.dll [1316352 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {220D3535-F0C2-4BE0-9FA8-341454F3B598} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {231CFD74-36FE-44CC-88F6-83B9704DFE93} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {2758C66F-29D7-40AD-9559-2825ED905C29} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [288768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {28DCC145-28F5-41E5-9506-ADDA91CD4966} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [288768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {29C0F4DC-19CC-4E6C-96FA-C910ECB14B49} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [270848 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {2F07DB8D-A9E5-462B-B97A-F0ACBF417792} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {C463A0FC-794F-4FDF-9201-01938CEACAFA} C:\WINDOWS\system32\rasmbmgr.dll [62464 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {30526E35-00F9-4BED-9846-7BBC937831E9} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} C:\Windows\System32\pstask.dll [15872 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {3066949F-5A76-4F4C-9C87-A14A649A6273} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3472D253-581F-4480-8539-784D74361402} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\WINDOWS\system32\dstokenclean.exe [13312 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {34E8CE7D-77E5-4405-AE3D-26816C4C69C8} - System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check => C:\WINDOWS\System32\dsregcmd.exe [1057280 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {35A41E3D-CFF5-4BAA-97C7-2C61FE6BAD5B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {37451B14-51B7-4CD1-8BAF-982132260ECB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3810C063-8759-4D54-A834-4BEA5D6BFBE4} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {3A1B0B58-9995-4BB3-8503-355FADC9B273} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118128 2021-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C45C6F0-0D32-4C27-9336-7B982C77F32E} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync => {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {3D8E83D8-967E-44AC-8896-42CDEC763404} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser => {DDAFAEA2-8842-4E96-BADE-D44A8D676FDB} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {3E7650E7-DBA3-4B90-8D84-4232AE8A029F} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh => {711001CD-CC1D-4470-9B7E-1EF73849C79E} C:\WINDOWS\System32\MitigationConfiguration.dll [83968 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {3EBAF09A-814C-4FB9-9F00-8BB931BFE845} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\WINDOWS\system32\bcdboot.exe [231424 2021-01-26] (Microsoft Corporation) [File not signed] -> %windir% /sysrepair
Task: {40378C7B-CE71-41E6-9B6F-EDE9D47789DE} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {416FBFEF-09C2-4D51-9358-72205B2F5ED3} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {417D2A3C-0AC4-4F5D-BF29-B0E233E5E9D3} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager => {DECA92E0-AF85-439E-9204-86679978DA08} C:\WINDOWS\System32\AppLockerCsp.dll [382464 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {41CA9CE0-97C5-41E7-8CA1-BE31A9724ED5} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\WINDOWS\System32\DeviceSetupManagerAPI.dll [157696 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe [116224 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {4611D11D-8D71-42E5-A255-6C9F03CFD64A} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927EA2AF-1C54-43D5-825E-0074CE028EEE} C:\WINDOWS\System32\energytask.dll [26112 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {4883F702-0BF0-4E53-8F23-A305A15F3E96} - System32\Tasks\NCH Software\VoxalDowngrade => C:\Program Files (x86)\NCH Software\Voxal\voxal.exe [2359856 2020-05-14] (NCH Software, Inc. -> NCH Software)
Task: {48F207D2-23BE-4F26-A115-B05B486F6CA6} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates => {D5A04D91-6FE6-4FE4-A98A-FEB4500C5AF7} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {4A61BCE1-02FC-4F8D-AD7D-06CC80F2C130} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {4B79A419-F671-47D7-B001-888A456864AE} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358B920-0AC7-461F-98F4-58E32CD89148} C:\WINDOWS\system32\wininet.dll [5041152 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {4D496758-CF92-424B-8FC7-E95278FD13F2} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask => {C844C79D-AED8-4DCE-AB25-4D359BED84F8} C:\WINDOWS\System32\WpcRefreshTask.dll [1127936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {4DDF305C-E963-45BE-A8F0-DB2A76C9E03C} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {517F026C-D476-4CF5-B42E-23D757B36DB5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51B7FB15-4DCB-400E-9A98-10E802F21FB3} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceScreenOnOff => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {52C1F2DA-58AA-494C-8D61-BFE8A0FC2285} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {52D32770-F5E2-485C-BFB6-D56C6A1F66A9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3915216 2021-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {54DE0277-1082-4A96-B69E-EA4580E78494} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {55412461-F053-4583-A6BF-19F36DAAD46D} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates => {A558C6A5-B42B-4C98-B610-BF9559143139} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {5679B6F1-0B05-4230-872B-BB64877ABA76} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\WINDOWS\system32\defrag.exe [186880 2020-02-12] (Microsoft Corp.) [File not signed]
Task: {574B26F9-094B-45B5-895D-C171342ABE5D} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} C:\WINDOWS\System32\wdi.dll [101888 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {58288CB7-4BC3-4408-B52F-202304CE9DCD} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {5C4B9292-73EC-4C99-9592-56E827AED280} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {6099772D-A604-4768-AE38-C3B7ED2BBFEE} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [203264 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {613A083C-17CD-47F4-AC35-96FC308E59CF} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [23040 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {626B896E-799D-4D32-855B-365F98ECB3C7} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => {59EECBFE-C2F5-4419-9B99-13FE05FF2675} C:\Windows\System32\fcon.dll [186880 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {62F10519-A66D-4FBA-86BD-78D0ED32E65D} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {641EC4E1-3857-4C7C-B363-15EE8CB31515} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization => {5C9AB547-345D-4175-9AF6-65133463A100} C:\Windows\System32\TieringEngineService.exe [316928 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {64BFE52D-B5D0-41D9-B3AF-EE6F0A81EC3C} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\WINDOWS\System32\WindowsActionDialog.exe [60928 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {653F27FF-7055-487F-B48C-8735F7653035} - System32\Tasks\Opera scheduled assistant Autoupdate 1580632950 => C:\Users\zimul\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-15] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\zimul\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {65733B1D-D145-4770-90BC-BF3772E1FAD8} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} C:\WINDOWS\system32\msdrm.dll [558592 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {66D2CBB0-974D-409B-9790-4A078497AB23} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask => {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} C:\WINDOWS\System32\mapsupdatetask.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {68560DFD-FC67-4EF8-BAA4-7F72211F3FD5} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\WINDOWS\system32\dxgiadaptercache.exe [221696 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {69900606-33B9-4502-A49E-9EE698C18CE6} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\WINDOWS\system32\WinSATAPI.dll [372224 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {6BB72D11-596C-469A-A80D-59204414F0CA} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask => {A4173A49-F373-4475-9A0F-2D615204DC20} C:\WINDOWS\system32\SettingSyncCore.dll [1068544 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {6CD70278-3C30-4E8E-A585-8D9E5CAB415F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {6DFFC692-7C61-4464-A3FE-FDCB4971D08E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {71BFB70C-91A5-41C9-B858-C9DACBEF4900} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {73CB9900-BD4D-4C69-9F68-6746AE3BB44B} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry => {F3A219C3-2698-4CBF-9C07-037EDB8E72E6} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {73FC8827-86B7-42C0-A8B2-9ED4B51C1DD8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {798DB582-30ED-4D82-974F-12178BC4D55A} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\WINDOWS\system32\speech_onecore\common\SpeechModelDownload.exe [199168 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {7AADA666-6F65-426C-A00E-8ED54D8CB243} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\WINDOWS\system32\lpremove.exe [71680 2020-03-10] (Microsoft Corporation) [File not signed]
Task: {7FBDDC9A-D7DB-4F90-B8CE-4973E5018DF5} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [270848 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {823F7188-5012-42FC-84D6-FA377D85C79C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateModelTask => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {860A8CAD-AFF2-457F-B775-969A8D6A5DF6} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {874EA78F-0006-477B-84BD-028C6BB0BB53} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {87AFF330-84D7-4F41-8C8B-8613DACE0F29} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22763912 2021-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {894C4E69-300D-4AAE-A37A-B8E3DBDA563B} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\WINDOWS\System32\PlaySndSrv.dll [88576 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {8C98D672-4609-44AB-A110-C69A24302A66} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {8CE419DE-4815-423C-8287-51CEF62C7937} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync => {B0D2B535-12E1-439F-86B3-BADA289510F0} C:\Windows\System32\WiFiCloudStore.dll [274432 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {8F8CC6BA-5AA5-49F4-A5AD-49AE3816F0FC} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {8F8F5002-8ACA-43DD-A747-2F4CA7E36AF8} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\WINDOWS\System32\dsregcmd.exe [1057280 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {90CE3D49-DC7D-423D-B25E-68AD4719F489} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {94C7344C-6979-41EC-B85B-18A45F2F5A7B} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {95AC8E0E-8CCC-4E40-B94F-BBE3BC6E67BF} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
Task: {99F8855E-6B59-43EA-B38C-9033B396C776} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6A1F-47B9-BD52-1D5F95D49C1B} C:\Windows\System32\pnpui.dll [41984 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {9A2316CF-1A8D-46AB-931E-C6471643E44F} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [29696 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {9C96CA27-ED37-49E6-A1BF-90E35E900502} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\AC Power Download => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {9CB9760E-A5CF-40B2-AA8B-66B3D69315E7} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\WINDOWS\system32\ProvTool.exe [84480 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {9E42E54A-6BB4-4F7E-892C-2C5183F55B20} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\WINDOWS\system32\eduprintprov.exe [97280 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {A1A4F90B-9598-45B7-85D2-AE21B341085D} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [32768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {A28C777F-CE3B-4DD2-BE34-70D4EC7AF28F} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {A3B63C25-FB73-4449-B359-BE1BF54BF94B} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1212909314-1353993095-2117482179-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2021-01-26] () [File not signed]
Task: {A6165C74-12A1-4101-91D5-5A8DA8F17062} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A6432082-89BD-434D-9C61-D7FE6D91CCB9} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [525824 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {A806A8FA-C7FE-4770-BFDF-90F6A40E3DEF} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {A8E26236-4D4B-46F7-AAF3-75902A32BB15} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {AFEDA958-2E8D-446F-AF75-73FE5A229E67} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\WINDOWS\System32\fhtask.dll [59392 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {B0D31043-BAFF-492E-9529-80DA1BA753BE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B1F05AAE-0807-4546-A86E-6C5DE167E635} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {B241FCBE-C6B6-4F12-9A5C-DD58A9D6CE18} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {B320E058-C6FA-413F-876B-0C9B4428AE66} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic6 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {B4BD993A-BFA8-4F52-8682-6F2E90185FE9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {B54A4AF8-4B81-482A-A3B6-3D2E479F5A6C} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\WINDOWS\system32\tzsync.exe [62464 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {B75AF762-3C5C-4C74-ADB1-B99F98FDE0E5} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {B8F0DEC7-8392-4F57-9990-74FCB934033F} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [505856 2021-01-26] () [File not signed]
Task: {BAA487E1-378C-45A5-B980-69A7EB04C773} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855FEC53-D2E4-4999-9E87-3414E9CF0FF4} C:\WINDOWS\system32\wdc.dll [712192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {BAF24219-FE08-415A-971A-634E210595D1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {BB08CB1A-B958-4F06-B318-F618C2015A83} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {BB5C9F82-7A27-4979-82BD-45739449A876} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\WINDOWS\system32\disksnapshot.exe [92160 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {BC927B45-3B28-42C1-A010-9332469BF93A} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\WINDOWS\system32\appidpolicyconverter.exe [158720 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {BD3E4945-8C27-4F29-A3B4-B7B6D208AC6A} - System32\Tasks\Opera scheduled Autoupdate 1580632930 => C:\Users\zimul\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-15] (Opera Software AS -> Opera Software)
Task: {BEF19949-EFA3-412C-8B8E-BC3B749C325D} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange => {77646A68-AD14-4D53-897D-7BE4DDE5F929} C:\Windows\System32\TempSignedLicenseExchangeTask.dll [73728 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C0B065A7-75E9-4CF8-B9D3-54E630EA447A} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\WINDOWS\System32\srchadmin.dll [207872 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C1DC52D1-949D-4DE7-BD2F-FF91C6A0C4BF} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\WINDOWS\system32\srtasks.exe [57856 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {C1E433E6-9861-4183-BE6F-ABC6F79B37D3} - System32\Tasks\Microsoft\Windows\Offline Files\Logon Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [805888 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {C27B0967-C9D0-4B0B-9095-FC1ED785BEB6} - System32\Tasks\CryptoTabUpdateTaskMachineUA => C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
Task: {C391351C-0F98-447E-B3F3-F932910C72FD} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\WINDOWS\system32\dmclient.exe [120320 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C3FCA668-3E80-4CE7-BF22-923EF0E3331B} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C6B2579B-4962-4D12-883D-BBD420573A6C} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic1 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {C7BEACF3-363F-42F9-A68C-203392B534AA} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask => {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} C:\WINDOWS\system32\SettingSyncCore.dll [1068544 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {C7FCDE46-F8B6-4BB7-AA32-DFF92C6B74DC} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\WINDOWS\System32\LocationNotificationWindows.exe [67584 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C839CDAC-DF3D-4246-BE87-8BE6864A9971} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\WINDOWS\system32\SpaceAgent.exe [137728 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {CAA8BA80-3E72-4BC5-AA78-9F8151EF7C12} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\WINDOWS\system32\directxdatabaseupdater.exe [285696 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {CD19BC8A-E9FE-49ED-92A5-0E1194F69F00} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\WINDOWS\System32\XblGameSaveTask.exe [32768 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {CDF00375-8FBD-4B07-8CE2-623C538E9885} - System32\Tasks\Microsoft\Windows\Offline Files\Background Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [805888 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {D060ACCC-E8C3-4CC7-8505-42F7595F510D} - System32\Tasks\S-1-5-21-1212909314-1353993095-2117482179-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [134656 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {D19A2726-897E-4F7D-9CE4-0773B449CE9E} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceConnectedToNetwork => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {D1D7A402-E8A4-4666-8CD3-8F4EE447CB15} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {D526F1B7-E23F-4247-BCCF-702C809AC81A} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {D6B6B3B0-5971-46A3-932B-CEAD3576353C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {D7603DFD-C214-4EA9-AED2-7A9EF224A164} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {C1F85EF8-BCC2-4606-BB39-70C523715EB3} C:\WINDOWS\System32\sdiagschd.dll [52224 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {D838E882-FEE4-4C1F-B148-90A12DFCC669} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [525824 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {DAE12BEE-AF8C-4826-8A2D-E22471168A4D} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [119296 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {DD2DA744-02CE-47EC-A045-836D4197D1ED} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [70144 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {DF8ABE54-47C9-4567-8DD0-36F92A2CC529} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates => {0DC331EE-8438-49D5-A721-E10B937CE459} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E215B699-95A9-44CD-A30F-ECEEDA4BFAE6} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\WINDOWS\system32\dmclient.exe [120320 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {E2D2FD73-2DBE-49C3-BFE1-60E31CE6B324} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {E341CA12-CA83-4931-BB01-FCCA79E7FEA6} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\WINDOWS\system32\sdclt.exe [1214976 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E4AE0786-E39C-4622-97A1-66FE512A2D02} - System32\Tasks\ebtools => C:\Program Files (x86)\EUROBYTE TOOLS\vp4.exe [298016 2020-04-21] (EUROBYTE SOFTWARE s.r.o. -> OEM) [File not signed]
Task: {E4AEB720-7F18-419F-A20E-6E0B5C4ED968} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E609D366-10F0-4EC1-96C8-1F8161C673C5} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\WINDOWS\system32\MDMAgent.exe [116224 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E9584198-7911-470F-A652-045B6281107C} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\WINDOWS\system32\cleanmgr.exe [71168 2019-03-19] (Microsoft Corporation) [File not signed] -> /autoclean /d %systemdrive%
Task: {E9A46D73-1D61-4419-90FD-B0B371A44777} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {EA814992-5134-4103-96EC-7B52403B2906} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\WINDOWS\System32\drvinst.exe [173568 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {EBAEFAE2-A347-4F0A-89A9-82871C110AAD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDBDB6CB-814E-4646-938E-ABC65706505A} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [270848 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {EFAB0670-5690-4709-9131-565A99AE53D6} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {F02B389F-2CC0-47DE-B0A6-F99BA3FCC5F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [525824 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F06683BC-B272-42F2-A7ED-D41A4491FEFD} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\WINDOWS\system32\msdrm.dll [558592 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {F200B6AE-7AD3-4DF7-B3EB-F1356CA5D011} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F2E8AA59-252D-4EA4-AF79-32DB90AB50D6} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\WINDOWS\System32\XblGameSaveTask.exe [32768 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F3256766-85DF-42A9-81FD-A1BAD3C4791C} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache => {E07647F7-AED2-48D9-9720-939BC24A8A3C} C:\Windows\System32\wosc.dll [245248 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {F369958F-78A7-4AF3-9208-D840060ECE2F} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense => {AB2A519B-03B0-43CE-940A-A73DF850B49A} C:\WINDOWS\system32\StorageUsage.dll [130560 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F380C283-F2BA-4E42-95DB-2BC0C6CFFF86} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [32768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {F4DA128A-8466-4406-8794-0387F6912827} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [29696 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {F71BF14A-F1A9-4341-B2BD-03245185E2A2} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {F9239244-50E0-43C1-9235-39D5254C1404} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {F983E937-6426-4EB2-BBC3-9E94E3752925} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask => {9885AEF2-BD9F-41E0-B15E-B3141395E803} C:\WINDOWS\System32\mapstoasttask.dll [53760 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {FA103B2E-5EB2-499F-9443-9765F29C7B5B} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [203264 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {FB215B8A-3318-456D-8280-2EF10CF64C2A} - System32\Tasks\Services\Diagnostic => C:\Users\Milospc\AppData\Local\Disk\AutoIt3\AutoIt3_x64.exe -> "C:\Users\Milospc\AppData\Local\Disk\AutoIt3\Settings.au3"
Task: {FD261B7D-CF4B-4CFD-BA92-42D7565A51D6} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} C:\WINDOWS\system32\MsCtfMonitor.dll [89600 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {FD99B9AA-26F4-41C8-A511-227192E65CF5} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {FED6F514-FB19-4DDC-983D-22A587403459} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118128 2021-03-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#28 Příspěvek od not_ketchupp »

Druhá část souboru FRST.txt
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-20] => Proxy is enabled.
ProxyServer: [S-1-5-20] => 127.0.0.1:8080
ProxyServer: [S-1-5-21-1212909314-1353993095-2117482179-1001] => 127.0.0.1:8080
ProxyEnable: [S-1-5-19] => Proxy is enabled.
ProxyServer: [S-1-5-19] => 127.0.0.1:8080
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\winrnr.dll [23552 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\NLAapi.dll [70144 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [50688 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [68096 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [86528 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [86528 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 05 C:\Windows\System32\winrnr.dll [31232 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 06 C:\Windows\system32\NLAapi.dll [93184 2021-01-26] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 07 C:\Windows\system32\wshbth.dll [64000 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{39e13112-3809-4051-a0fd-994ebc0e82cc}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{c08b1ae4-b2c1-43dc-b62d-bf54a1d0efe5}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{c08b1ae4-b2c1-43dc-b62d-bf54a1d0efe5}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{debc0501-d7a1-4e10-ad4b-7e7d52c1667f}: [DhcpNameServer] 8.8.8.8
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
DownloadDir: C:\Users\Milospc\Downloads

FireFox:
========
FF DefaultProfile: zpb0iizu.default
FF ProfilePath: C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\zpb0iizu.default [2021-01-16]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\zpb0iizu.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-12-05]
FF Extension: (Seznam doplněk - Email) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\zpb0iizu.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-12-05]
FF ProfilePath: C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\8wejbjcc.default-release [2021-03-16]
FF Extension: (Mozilla Official) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\8wejbjcc.default-release\Extensions\{14553439-2741-4e9d-b474-784f336f58c9} [2020-08-31] [not signed]
FF Extension: (Greasemonkey) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\8wejbjcc.default-release\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2021-03-08]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-01-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.CryptoTab.com/CryptoTab Update;version=3 -> C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\npCryptoTabUpdate3.dll [2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
FF Plugin-x32: @tools.CryptoTab.com/CryptoTab Update;version=9 -> C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\npCryptoTabUpdate3.dll [2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default [2021-04-06]
CHR Notifications: Default -> hxxps://meet.google.com
CHR Extension: (Prezentace) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-08]
CHR Extension: (Dokumenty) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-08]
CHR Extension: (Disk Google) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-19]
CHR Extension: (YouTube) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-08]
CHR Extension: (uBlock Origin) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-03-29]
CHR Extension: (Adblock na Youtube™) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2021-02-01]
CHR Extension: (Deadpool Full Screen Theme) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\echjomhoplepodjjaaohelfnlnoelhgd [2021-03-22]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2021-03-18]
CHR Extension: (Tabulky) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-08]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-04-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-09]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-03-18]
CHR Extension: (Avast Online Security) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-03-22]
CHR Extension: (Cyrilometodějská církevní ZŠ (Pro rodiče a žáky)) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpdiodnkhijjlncmmhpjdkgpihchjdap [2021-02-01]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-03-18]
CHR Extension: (Swift Select) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\molponhobmbbinjnghgafbfampcgamln [2021-03-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Antivirus Totall Protection) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\npegaambembapehhcojbmdalajagajio [2021-02-07]
CHR Extension: (N-bot - Microsoft Teams Online class Attender) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\onbankppjhoeccfkpnhogojjllbefglb [2021-02-01]
CHR Extension: (Gmail) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-31]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-26]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-02-01]
CHR Extension: (Prezentace) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-17]
CHR Extension: (Dokumenty) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-17]
CHR Extension: (Disk Google) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-17]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2021-02-01]
CHR Extension: (YouTube) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-17]
CHR Extension: (Tabulky) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-17]
CHR Extension: (Chrome Media Router) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-01]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-03]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-26]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\Milospc\AppData\Roaming\Opera Software\Opera Stable [2020-12-19]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1271808 2021-01-26] (Microsoft Corporation) [File not signed]
R2 nsi; C:\WINDOWS\System32\nsisvc.dll [30720 2019-11-15] (Microsoft Corporation) [File not signed]
U3 AarSvc; C:\WINDOWS\System32\AarSvc.dll [195584 2021-01-26] (Microsoft Corporation) [File not signed]
U4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [10316304 2019-09-23] (Acronis International GmbH -> )
U2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1254784 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6399680 2021-01-03] (Acronis International GmbH -> )
U3 AJRouter; C:\WINDOWS\System32\AJRouter.dll [25088 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ALG; C:\WINDOWS\System32\alg.exe [94720 2019-03-19] (Microsoft Corporation) [File not signed]
U2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3743464 2021-03-09] (philandro Software GmbH -> philandro Software GmbH)
U3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [82944 2021-01-26] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [162304 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [198656 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppMgmt; C:\WINDOWS\SysWOW64\appmgmts.dll [160768 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [710144 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [3735552 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AssignedAccessManagerSvc; C:\WINDOWS\System32\assignedaccessmanagersvc.dll [944640 2021-01-26] (Microsoft Corporation) [File not signed]
U2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [737792 2021-01-26] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [1943552 2021-01-26] (Microsoft Corporation) [File not signed]
U3 autotimesvc; C:\WINDOWS\System32\autotimesvc.dll [116224 2019-03-19] (Microsoft Corporation) [File not signed]
U3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [112128 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1393664 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [526336 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-03-07] (BattlEye Innovations e.K. -> )
U2 BFE; C:\WINDOWS\System32\bfe.dll [878080 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BITS; C:\WINDOWS\System32\qmgr.dll [1588224 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [534528 2021-01-26] (Microsoft Corporation) [File not signed]
U2 BrokerInfrastructure; C:\WINDOWS\System32\psmsrv.dll [237056 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Browser; C:\WINDOWS\System32\browser.dll [134656 2019-10-07] (Microsoft Corporation) [File not signed]
U3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [1077248 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BTAGService; C:\WINDOWS\SysWOW64\BTAGService.dll [705536 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [382976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 bthserv; C:\WINDOWS\system32\bthserv.dll [223744 2021-01-26] (Microsoft Corporation) [File not signed]
U3 camsvc; C:\WINDOWS\system32\CapabilityAccessManager.dll [368640 2021-01-26] (Microsoft Corporation) [File not signed]
U3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [128512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 cbdhsvc; C:\WINDOWS\System32\cbdhsvc.dll [1125376 2021-01-26] (Microsoft Corporation) [File not signed]
U2 CDPSvc; C:\WINDOWS\System32\CDPSvc.dll [648192 2021-01-26] (Microsoft Corporation) [File not signed]
U2 CDPUserSvc; C:\WINDOWS\System32\CDPUserSvc.dll [521728 2021-01-26] (Microsoft Corporation) [File not signed]
U3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [192512 2021-01-26] (Microsoft Corporation) [File not signed]
U2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\89.0.4389.25\remoting_host.exe [72808 2021-01-27] (Google LLC -> Google LLC)
U2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8854920 2021-02-06] (Microsoft Corporation -> Microsoft Corporation)
U2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [21304 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U3 COMSysApp; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [19256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U3 ConsentUxUserSvc; C:\WINDOWS\System32\ConsentUxClient.dll [177664 2021-01-26] (Microsoft Corporation) [File not signed]
U2 cryptobrowser; C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
U3 cryptobrowserm; C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [96256 2019-03-19] (Microsoft Corporation) [File not signed]
U3 CscService; C:\WINDOWS\System32\cscsvc.dll [739840 2021-01-26] (Microsoft Corporation) [File not signed]
U2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [4054248 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [1260544 2021-01-26] (Microsoft Corporation) [File not signed]
U3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [494080 2020-02-12] (Microsoft Corporation) [File not signed]
U2 DeviceAssociationService; C:\WINDOWS\system32\das.dll [482816 2019-03-19] (Microsoft Corporation) [File not signed]
U3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [126976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [467456 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [338944 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [651264 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DevQueryBroker; C:\WINDOWS\system32\DevQueryBroker.dll [34816 2019-12-11] (Microsoft Corporation) [File not signed]
U2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [388608 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Dhcp; C:\WINDOWS\SysWOW64\dhcpcore.dll [321536 2021-01-26] (Microsoft Corporation) [File not signed]
U3 diagnosticshub.standardcollector.service; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [97792 2021-01-26] (Microsoft Corporation) [File not signed]
U3 diagsvc; C:\WINDOWS\system32\DiagSvc.dll [215040 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [3811328 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DispBrokerDesktopSvc; C:\WINDOWS\System32\DispBroker.Desktop.dll [405504 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DisplayEnhancementService; C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1190912 2020-03-10] (Microsoft Corporation) [File not signed]
U3 DmEnrollmentSvc; C:\WINDOWS\system32\Windows.Internal.Management.dll [935936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DmEnrollmentSvc; C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll [656896 2021-01-26] (Microsoft Corporation) [File not signed]
U3 dmwappushservice; C:\WINDOWS\system32\dmwappushsvc.dll [58368 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [350208 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DoSvc; C:\WINDOWS\system32\dosvc.dll [1607680 2021-01-26] (Microsoft Corporation) [File not signed]
U3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [268288 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DPS; C:\WINDOWS\system32\dps.dll [169984 2019-03-19] (Microsoft Corporation) [File not signed]
U2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2259768 2021-03-10] (Comodo Security Solutions -> Comodo)
U3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [271872 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DsSvc; C:\WINDOWS\System32\DsSvc.dll [157696 2020-02-12] (Microsoft Corporation) [File not signed]
U2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [358912 2020-03-10] (Microsoft Corporation) [File not signed]
U3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [110080 2019-03-19] (Microsoft Corporation) [File not signed]
U3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-09-15] (EasyAntiCheat Oy -> Epic Games, Inc)
U3 EFS; C:\WINDOWS\system32\efssvc.dll [79872 2019-03-19] (Microsoft Corporation) [File not signed]
U2 ElevationService; C:\Program Files (x86)\Wondershare\dr.fone - Virtual Location (iOS)\Addins\VirtualLocation\ElevationService.exe [960512 2020-07-31] () [File not signed]
U3 embeddedmode; C:\WINDOWS\System32\embeddedmodesvc.dll [172032 2019-03-19] (Microsoft Corporation) [File not signed]
U3 EntAppSvc; C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll [554496 2021-01-26] (Microsoft Corporation) [File not signed]
U2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1952768 2021-01-26] (Microsoft Corporation) [File not signed]
U2 EventSystem; C:\WINDOWS\system32\es.dll [401408 2021-01-26] (Microsoft Corporation) [File not signed]
U2 EventSystem; C:\WINDOWS\SysWOW64\es.dll [336384 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Fax; C:\WINDOWS\system32\fxssvc.exe [636416 2019-03-19] (Microsoft Corporation) [File not signed]
U3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [21504 2019-03-19] (Microsoft Corporation) [File not signed]
U3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [35328 2019-03-19] (Microsoft Corporation) [File not signed]
U2 fhsvc; C:\WINDOWS\system32\fhsvc.dll [120832 2019-03-19] (Microsoft Corporation) [File not signed]
U2 FontCache; C:\WINDOWS\system32\FntCache.dll [1885184 2021-01-26] (Microsoft Corporation) [File not signed]
U3 FrameServer; C:\WINDOWS\system32\FrameServer.dll [743936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-12-12] (NVIDIA Corporation -> NVIDIA)
U3 GraphicsPerfSvc; C:\WINDOWS\System32\GraphicsPerfSvc.dll [97792 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
U3 hidserv; C:\WINDOWS\system32\hidserv.dll [34816 2019-03-19] (Microsoft Corporation) [File not signed]
U3 hidserv; C:\WINDOWS\SysWOW64\hidserv.dll [29696 2019-03-19] (Microsoft Corporation) [File not signed]
U2 hshld_10.12.1; C:\Program Files (x86)\Hotspot Shield\10.12.1\bin\cmw_srv.exe [224368 2021-01-08] (Pango Inc. -> Pango Inc.)
U2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> )
U3 icssvc; C:\WINDOWS\System32\tetheringservice.dll [236032 2019-10-08] (Microsoft Corporation) [File not signed]
U2 IKEEXT; C:\WINDOWS\System32\ikeext.dll [1047040 2021-01-26] (Microsoft Corporation) [File not signed]
U3 InstallService; C:\WINDOWS\system32\InstallService.dll [2481664 2021-01-26] (Microsoft Corporation) [File not signed]
U3 InstallService; C:\WINDOWS\SysWOW64\InstallService.dll [1748480 2021-01-26] (Microsoft Corporation) [File not signed]
U2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [832000 2019-11-15] (Microsoft Corporation) [File not signed]
U3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [64512 2019-03-19] (Microsoft Corporation) [File not signed]
U2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
U3 KeyIso; C:\WINDOWS\system32\keyiso.dll [90624 2021-01-26] (Microsoft Corporation) [File not signed]
U3 KeyIso; C:\WINDOWS\SysWOW64\keyiso.dll [66560 2021-01-26] (Microsoft Corporation) [File not signed]
U3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [372224 2019-03-19] (Microsoft Corporation) [File not signed]
U2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [280064 2019-03-19] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [295936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 lfsvc; C:\WINDOWS\System32\lfsvc.dll [47104 2019-03-19] (Microsoft Corporation) [File not signed]
U3 LicenseManager; C:\WINDOWS\system32\LicenseManagerSvc.dll [50176 2019-03-19] (Microsoft Corporation) [File not signed]
U3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [265728 2019-03-19] (Microsoft Corporation) [File not signed]
U3 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [27136 2019-03-19] (Microsoft Corporation) [File not signed]
U2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
U2 LSM; C:\WINDOWS\System32\lsm.dll [676864 2021-01-26] (Microsoft Corporation) [File not signed]
U3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [340992 2021-01-26] (Microsoft Corporation) [File not signed]
U2 MapsBroker; C:\WINDOWS\System32\moshost.dll [92160 2019-03-19] (Microsoft Corporation) [File not signed]
U2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [952992 2021-03-26] (McAfee, LLC -> McAfee, LLC)
U3 MessagingService; C:\WINDOWS\System32\MessagingService.dll [88064 2019-03-19] (Microsoft Corporation) [File not signed]
U2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1912488 2019-09-23] (Acronis International GmbH -> )
U2 mpssvc; C:\WINDOWS\system32\mpssvc.dll [1062912 2021-01-26] (Microsoft Corporation) [File not signed]
U3 MSDTC; C:\WINDOWS\System32\msdtc.exe [148480 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [151040 2019-03-19] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\WINDOWS\system32\msiexec.exe /V [67072 2019-03-19] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\WINDOWS\SysWOW64\msiexec.exe /V [59904 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [831488 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [170496 2019-10-07] (Microsoft Corporation) [File not signed]
U3 NcbService; C:\WINDOWS\System32\ncbservice.dll [374784 2021-01-26] (Microsoft Corporation) [File not signed]
U3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [89600 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Netlogon; C:\WINDOWS\system32\netlogon.dll [867840 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Netlogon; C:\WINDOWS\SysWOW64\netlogon.dll [672256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Netman; C:\WINDOWS\System32\netman.dll [266240 2021-01-26] (Microsoft Corporation) [File not signed]
U3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [614912 2021-01-26] (Microsoft Corporation) [File not signed]
U3 NetSetupSvc; C:\WINDOWS\System32\NetSetupSvc.dll [336896 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NgcCtnrSvc; C:\WINDOWS\System32\NgcCtnrSvc.dll [810496 2019-10-07] (Microsoft Corporation) [File not signed]
U3 NgcSvc; C:\WINDOWS\system32\ngcsvc.dll [957952 2019-10-07] (Microsoft Corporation) [File not signed]
U2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [382976 2021-01-26] (Microsoft Corporation) [File not signed]
U2 OneSyncSvc; C:\WINDOWS\System32\APHostService.dll [352256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-04-06] (Electronic Arts, Inc. -> Electronic Arts)
U2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479640 2021-04-06] (Electronic Arts, Inc. -> Electronic Arts)
U3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
U3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [353280 2021-01-26] (Microsoft Corporation) [File not signed]
U3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [428544 2019-10-07] (Microsoft Corporation) [File not signed]
U3 PeerDistSvc; C:\WINDOWS\system32\peerdistsvc.dll [1965568 2019-03-19] (Microsoft Corporation) [File not signed]
U3 perceptionsimulation; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [103424 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PerfHost; C:\WINDOWS\SysWow64\perfhost.exe [21504 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PhoneSvc; C:\WINDOWS\System32\PhoneService.dll [943616 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PimIndexMaintenanceSvc; C:\WINDOWS\System32\PimIndexMaintenance.dll [190464 2019-03-19] (Microsoft Corporation) [File not signed]
U3 pla; C:\WINDOWS\system32\pla.dll [1507328 2021-01-26] (Microsoft Corporation) [File not signed]
U3 pla; C:\WINDOWS\SysWOW64\pla.dll [1559040 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [126976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [27136 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [353280 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [447488 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Power; C:\WINDOWS\system32\umpo.dll [158720 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [3552256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PrintWorkflowUserSvc; C:\WINDOWS\System32\PrintWorkflowService.dll [179200 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PrintWorkflowUserSvc; C:\WINDOWS\SysWOW64\PrintWorkflowService.dll [141312 2021-01-26] (Microsoft Corporation) [File not signed]
U2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [492032 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PushToInstall; C:\WINDOWS\system32\PushToInstall.dll [284672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 QWAVE; C:\WINDOWS\system32\qwave.dll [288768 2019-03-19] (Microsoft Corporation) [File not signed]
U3 QWAVE; C:\WINDOWS\SysWOW64\qwave.dll [227328 2019-03-19] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [104448 2019-03-19] (Microsoft Corporation) [File not signed]
R2 RasMan; C:\WINDOWS\System32\rasmans.dll [952320 2021-01-26] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [500224 2021-01-26] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\WINDOWS\SysWOW64\mprdim.dll [403456 2021-01-26] (Microsoft Corporation) [File not signed]
U2 RemoteMouseService; C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe [11264 2019-07-25] () [File not signed]
U4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [160768 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RetailDemo; C:\WINDOWS\system32\RDXService.dll [736768 2021-01-26] (Microsoft Corporation) [File not signed]
U3 RmSvc; C:\WINDOWS\System32\RMapi.dll [157184 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1676696 2021-03-09] (Rockstar Games, Inc. -> Rockstar Games)
R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [80384 2021-01-26] (Microsoft Corporation) [File not signed]
U3 RpcLocator; C:\WINDOWS\system32\locator.exe [11264 2019-03-19] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [1260544 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [282624 2021-01-26] (Microsoft Corporation) [File not signed]
U3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [200192 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Schedule; C:\WINDOWS\system32\schedsvc.dll [894976 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [192512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SDRSVC; C:\WINDOWS\System32\SDRSVC.dll [148992 2021-01-26] (Microsoft Corporation) [File not signed]
U3 seclogon; C:\WINDOWS\system32\seclogon.dll [31232 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1271296 2021-01-26] (Microsoft Corporation) [File not signed]
R2 SENS; C:\WINDOWS\System32\sens.dll [73728 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SensorDataService; C:\WINDOWS\System32\SensorDataService.exe [1264128 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SensorService; C:\WINDOWS\system32\SensorService.dll [487424 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [176640 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [483328 2019-10-08] (Microsoft Corporation) [File not signed]
U3 SessionEnv; C:\WINDOWS\SysWOW64\sessenv.dll [417280 2019-10-08] (Microsoft Corporation) [File not signed]
U3 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [629760 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SharedRealitySvc; C:\WINDOWS\System32\SharedRealitySvc.dll [477184 2021-01-26] (Microsoft Corporation) [File not signed]
U2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [252928 2019-03-19] (Microsoft Corporation) [File not signed]
U2 ShellHWDetection; C:\WINDOWS\SysWOW64\shsvcs.dll [197120 2019-03-19] (Microsoft Corporation) [File not signed]
U4 shpamsvc; C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [239104 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SmsRouter; C:\WINDOWS\system32\SmsRouterSvc.dll [599552 2019-10-08] (Microsoft Corporation) [File not signed]
U3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [15872 2019-03-19] (Microsoft Corporation) [File not signed]
U2 spacedeskService; C:\WINDOWS\System32\spacedeskService.exe [1204152 2021-03-28] (Datronicsoft, Inc. -> )
U3 spectrum; C:\WINDOWS\system32\spectrum.exe [987136 2021-01-26] (Microsoft Corporation) [File not signed]
R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [765440 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [240128 2021-01-26] (Microsoft Corporation) [File not signed]
U4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2019-03-19] () [File not signed]
U3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [206336 2019-03-19] (Microsoft Corporation) [File not signed]
U2 stisvc; C:\WINDOWS\System32\wiaservc.dll [671744 2021-01-26] (Microsoft Corporation) [File not signed]
U3 StorSvc; C:\WINDOWS\system32\storsvc.dll [1009664 2021-01-26] (Microsoft Corporation) [File not signed]
U3 svsvc; C:\WINDOWS\system32\svsvc.dll [13824 2019-03-19] (Microsoft Corporation) [File not signed]
U3 swprv; C:\WINDOWS\System32\swprv.dll [457216 2021-01-26] (Microsoft Corporation) [File not signed]
U2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7395256 2019-09-23] (Acronis International GmbH -> )
U2 SysMain; C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
U2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [243200 2021-01-26] (Microsoft Corporation) [File not signed]
U2 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [223744 2021-01-26] (Microsoft Corporation) [File not signed]
U3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [309248 2021-01-26] (Microsoft Corporation) [File not signed]
U3 TapiSrv; C:\WINDOWS\SysWOW64\tapisrv.dll [252928 2021-01-26] (Microsoft Corporation) [File not signed]
U2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 TermService; C:\WINDOWS\System32\termsrv.dll [1060352 2021-01-26] (Microsoft Corporation) [File not signed]
R2 Themes; C:\WINDOWS\system32\themeservice.dll [67072 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [7095824 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U3 TieringEngineService; C:\WINDOWS\system32\TieringEngineService.exe [316928 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TimeBrokerSvc; C:\WINDOWS\System32\TimeBrokerServer.dll [172032 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1499136 2021-01-26] (Microsoft Corporation) [File not signed]
U3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [1246208 2021-01-26] (Microsoft Corporation) [File not signed]
U2 TrkWks; C:\WINDOWS\System32\trkwks.dll [112128 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TroubleshootingSvc; C:\WINDOWS\system32\MitigationClient.dll [394752 2019-03-19] (Microsoft Corporation) [File not signed]
S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [177152 2021-01-26] (Microsoft Corporation) [File not signed]
U3 tzautoupdate; C:\WINDOWS\system32\tzautoupdate.dll [96768 2019-10-07] (Microsoft Corporation) [File not signed]
U3 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [72704 2019-10-07] (Microsoft Corporation) [File not signed]
U4 UevAgentService; C:\WINDOWS\system32\AgentService.exe [1185792 2019-11-15] (Microsoft Corporation) [File not signed]
U3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [395776 2021-01-26] (Microsoft Corporation) [File not signed]
U3 UnistoreSvc; C:\WINDOWS\System32\unistore.dll [1158656 2019-10-07] (Microsoft Corporation) [File not signed]
U3 UnistoreSvc; C:\WINDOWS\SysWOW64\unistore.dll [957952 2019-10-07] (Microsoft Corporation) [File not signed]
U3 upnphost; C:\WINDOWS\System32\upnphost.dll [457216 2021-01-26] (Microsoft Corporation) [File not signed]
U3 upnphost; C:\WINDOWS\SysWOW64\upnphost.dll [330752 2021-01-26] (Microsoft Corporation) [File not signed]
U3 UserDataSvc; C:\WINDOWS\System32\userdataservice.dll [1536512 2021-01-26] (Microsoft Corporation) [File not signed]
U2 UserManager; C:\WINDOWS\System32\usermgr.dll [1285120 2021-01-26] (Microsoft Corporation) [File not signed]
U2 UsoSvc; C:\WINDOWS\system32\usosvc.dll [544256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 VaultSvc; C:\Windows\System32\vaultsvc.dll [361472 2021-01-26] (Microsoft Corporation) [File not signed]
U3 vds; C:\WINDOWS\System32\vds.exe [640512 2019-10-07] (Microsoft Corporation) [File not signed]
U3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10069120 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
U3 vmicrdv; C:\WINDOWS\System32\icsvcext.dll [311808 2019-03-19] (Microsoft Corporation) [File not signed]
U3 vmicvss; C:\WINDOWS\System32\icsvcext.dll [311808 2019-03-19] (Microsoft Corporation) [File not signed]
U3 VSS; C:\WINDOWS\system32\vssvc.exe [1447424 2021-01-26] (Microsoft Corporation) [File not signed]
U3 W32Time; C:\WINDOWS\system32\w32time.dll [495616 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [406528 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WalletService; C:\WINDOWS\system32\WalletService.dll [432640 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WarpJITSvc; C:\WINDOWS\System32\Windows.WARP.JITService.dll [61952 2019-03-19] (Microsoft Corporation) [File not signed]
U3 wbengine; C:\WINDOWS\system32\wbengine.exe [1539072 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [963072 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [1059328 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [478208 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [101888 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiServiceHost; C:\WINDOWS\SysWOW64\wdi.dll [88064 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [101888 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiSystemHost; C:\WINDOWS\SysWOW64\wdi.dll [88064 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
U3 WebClient; C:\WINDOWS\System32\webclnt.dll [219136 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WebClient; C:\WINDOWS\SysWOW64\webclnt.dll [190976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [199680 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [27648 2019-03-19] (Microsoft Corporation) [File not signed]
U3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [125440 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [229888 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [740352 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [83968 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [233472 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2808832 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WinRM; C:\WINDOWS\SysWOW64\WsmSvc.dll [2307584 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wisvc; C:\WINDOWS\system32\flightsettings.dll [893952 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [729600 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WlanSvc; C:\WINDOWS\System32\wlansvc.dll [2656768 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [2157056 2020-03-10] (Microsoft Corporation) [File not signed]
U3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1390080 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WManSvc; C:\WINDOWS\system32\Windows.Management.Service.dll [924160 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [204288 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1105408 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-10-16] (Wondershare Technology Co.,Ltd -> Wondershare)
U3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [2138112 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [83456 2019-10-08] (Microsoft Corporation) [File not signed]
U2 WpnService; C:\WINDOWS\system32\WpnService.dll [255488 2021-01-26] (Microsoft Corporation) [File not signed]
U2 WpnUserService; C:\WINDOWS\System32\WpnUserService.dll [90624 2021-01-26] (Microsoft Corporation) [File not signed]
U2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [851968 2021-01-26] (Microsoft Corporation) [File not signed]
U2 WSearch; C:\WINDOWS\SysWOW64\SearchIndexer.exe [670720 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [1766400 2021-01-26] (Microsoft Corporation) [File not signed]
U3 XblAuthManager; C:\WINDOWS\System32\XblAuthManager.dll [1063936 2019-03-19] (Microsoft Corporation) [File not signed]
U3 XblGameSave; C:\WINDOWS\System32\XblGameSave.dll [1263616 2021-01-26] (Microsoft Corporation) [File not signed]
U3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [72704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 XboxNetApiSvc; C:\WINDOWS\system32\XboxNetApiSvc.dll [1268224 2019-03-19] (Microsoft Corporation) [File not signed]
U3 HnGEpicService; C:\Program Files\Epic Games\HeroesGeneralsWWII\hngservice.exe [X]
U2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

not_ketchupp
3. Stupeň Varování
Příspěvky: 37
Registrován: 05 dub 2021 18:31

Re: Někdo je v mém PC

#29 Příspěvek od not_ketchupp »

A poslední část FRST.txt
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U3 1394ohci; C:\WINDOWS\System32\drivers\1394ohci.sys [264704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 AcpiDev; C:\WINDOWS\System32\drivers\AcpiDev.sys [20992 2019-03-19] (Microsoft Corporation) [File not signed]
U3 acpipagr; C:\WINDOWS\System32\drivers\acpipagr.sys [12800 2019-03-19] (Microsoft Corporation) [File not signed]
U3 AcpiPmi; C:\WINDOWS\System32\drivers\acpipmi.sys [16896 2019-03-19] (Microsoft Corporation) [File not signed]
U3 acpitime; C:\WINDOWS\System32\drivers\acpitime.sys [13824 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Acx01000; C:\WINDOWS\System32\drivers\Acx01000.sys [337920 2020-03-10] (Microsoft Corporation) [File not signed]
U1 afunix; C:\WINDOWS\system32\drivers\afunix.sys [40960 2021-01-26] (Microsoft Corporation) [File not signed]
U1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2021-01-26] (Microsoft Corporation) [File not signed]
U1 ahcache; C:\WINDOWS\System32\DRIVERS\ahcache.sys [291840 2021-01-26] (Microsoft Corporation) [File not signed]
U3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [18432 2019-03-19] (Advanced Micro Devices, Inc) [File not signed]
U3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [37888 2019-03-19] (Advanced Micro Devices, Inc) [File not signed]
U3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
U3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
U3 applockerfltr; C:\WINDOWS\System32\drivers\applockerfltr.sys [18432 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AsyncMac; C:\WINDOWS\System32\drivers\asyncmac.sys [31232 2019-03-19] (Microsoft Corporation) [File not signed]
U3 athur; C:\WINDOWS\System32\drivers\athuwbx.sys [2702336 2017-11-28] (Qualcomm Atheros Communications, Inc.) [File not signed]
U1 BasicDisplay; C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys [68096 2019-10-07] (Microsoft Corporation) [File not signed]
U1 BasicRender; C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys [37888 2019-10-07] (Microsoft Corporation) [File not signed]
U3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [9728 2019-03-19] (Windows (R) Win 7 DDK provider) [File not signed]
U1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-03-19] (Microsoft Corporation) [File not signed]
U3 bowser; C:\WINDOWS\System32\DRIVERS\bowser.sys [117248 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [File not signed]
U3 BthEnum; C:\WINDOWS\System32\drivers\BthEnum.sys [114688 2020-03-10] (Microsoft Corporation) [File not signed]
U3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [131072 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthLEEnum; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [97280 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [36864 2020-03-10] (Microsoft Corporation) [File not signed]
U3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76288 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthPan; C:\WINDOWS\System32\drivers\bthpan.sys [133120 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BTHPORT; C:\WINDOWS\System32\drivers\BTHport.sys [1428992 2020-03-10] (Microsoft Corporation) [File not signed]
U3 BTHUSB; C:\WINDOWS\System32\drivers\BTHUSB.sys [99328 2020-03-10] (Microsoft Corporation) [File not signed]
U3 buttonconverter; C:\WINDOWS\System32\drivers\buttonconverter.sys [43008 2019-03-19] (Microsoft Corporation) [File not signed]
U4 cdfs; C:\WINDOWS\System32\DRIVERS\cdfs.sys [100352 2019-12-11] (Microsoft Corporation) [File not signed]
U1 cdrom; C:\WINDOWS\System32\drivers\cdrom.sys [173056 2019-03-19] (Microsoft Corporation) [File not signed]
U3 circlass; C:\WINDOWS\System32\drivers\circlass.sys [51200 2019-03-19] (Microsoft Corporation) [File not signed]
U2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [457216 2021-01-26] (Microsoft Corporation) [File not signed]
U3 CmBatt; C:\WINDOWS\System32\drivers\CmBatt.sys [36864 2019-03-19] (Microsoft Corporation) [File not signed]
U0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2019-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
U1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U3 CompositeBus; C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys [40960 2019-10-07] (Microsoft Corporation) [File not signed]
U1 CSC; C:\WINDOWS\System32\drivers\csc.sys [576512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 dc1-controller; C:\WINDOWS\System32\drivers\dc1-controller.sys [56320 2019-03-19] (Microsoft Corp.) [File not signed]
U1 Dfsc; C:\WINDOWS\System32\Drivers\dfsc.sys [151040 2019-03-19] (Microsoft Corporation) [File not signed]
U3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
U3 DroidCamVideo; C:\WINDOWS\System32\drivers\droidcamvideo.sys [33784 2020-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
U3 ErrDev; C:\WINDOWS\System32\drivers\errdev.sys [14336 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Huawei Technologies Co., Ltd.) [File not signed]
U3 exfat; C:\Windows\System32\Drivers\exfat.sys [404480 2019-12-11] (Microsoft Corporation) [File not signed]
U3 fdc; C:\WINDOWS\System32\drivers\fdc.sys [35328 2019-03-19] (Microsoft Corporation) [File not signed]
U1 FileCrypt; C:\WINDOWS\System32\drivers\filecrypt.sys [59392 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Filetrace; C:\WINDOWS\System32\drivers\filetrace.sys [40960 2019-03-19] (Microsoft Corporation) [File not signed]
U2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [687768 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2021-01-03] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U3 flpydisk; C:\WINDOWS\System32\drivers\flpydisk.sys [28160 2021-01-26] (Microsoft Corporation) [File not signed]
U3 genericusbfn; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [20992 2019-10-07] (Microsoft Corporation) [File not signed]
U1 GpuEnergyDrv; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [8704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
U3 HdAudAddService; C:\WINDOWS\System32\drivers\HdAudio.sys [425472 2019-10-07] (Microsoft Corporation) [File not signed]
U3 HDAudBus; C:\WINDOWS\System32\drivers\HDAudBus.sys [114688 2020-03-10] (Microsoft Corporation) [File not signed]
U3 HidBth; C:\WINDOWS\System32\drivers\hidbth.sys [121344 2021-01-26] (Microsoft Corporation) [File not signed]
U3 hidi2c; C:\WINDOWS\System32\drivers\hidi2c.sys [54784 2019-03-19] (Microsoft Corporation) [File not signed]
U3 HidIr; C:\WINDOWS\System32\drivers\hidir.sys [48640 2019-03-19] (Microsoft Corporation) [File not signed]
U3 hidspi; C:\WINDOWS\System32\drivers\hidspi.sys [64512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 HidUsb; C:\WINDOWS\System32\drivers\hidusb.sys [45568 2019-10-07] (Microsoft Corporation) [File not signed]
U3 hsstap; C:\WINDOWS\System32\drivers\hsstap.sys [39424 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Pango)
U3 HwNClx0101; C:\WINDOWS\System32\Drivers\mshwnclx.sys [28672 2019-03-19] (Microsoft Corporation) [File not signed]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Huawei Technologies Co., Ltd.) [File not signed]
U3 i8042prt; C:\WINDOWS\System32\drivers\i8042prt.sys [119296 2019-03-19] (Microsoft Corporation) [File not signed]
U3 iagpio; C:\WINDOWS\System32\drivers\iagpio.sys [36352 2019-03-19] (Intel(R) Corporation) [File not signed]
U3 iai2c; C:\WINDOWS\System32\drivers\iai2c.sys [91136 2019-03-19] (Intel(R) Corporation) [File not signed]
U3 iaLPSS2i_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_GPIO2_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_GPIO2_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [180736 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSSi_I2C; C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152 2019-03-19] (Intel Corporation) [File not signed]
U3 IndirectKmd; C:\WINDOWS\System32\drivers\IndirectKmd.sys [46592 2019-03-19] (Microsoft Corporation) [File not signed]
U1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [129232 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U3 intelpmax; C:\WINDOWS\System32\drivers\intelpmax.sys [28672 2019-03-19] (Microsoft Corporation) [File not signed]
U3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [90624 2019-03-19] (Microsoft Corporation) [File not signed]
U3 IPNAT; C:\WINDOWS\System32\drivers\ipnat.sys [224768 2019-03-19] (Microsoft Corporation) [File not signed]
U1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO)
U3 kbdhid; C:\WINDOWS\System32\drivers\kbdhid.sys [46592 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ksthunk; C:\WINDOWS\system32\drivers\ksthunk.sys [29184 2019-03-19] (Microsoft Corporation) [File not signed]
U0 lci_proxywddm; C:\WINDOWS\System32\drivers\lci_proxywddm.sys [122576 2019-11-06] (Splashtop Inc. -> LuminonCore)
U2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\73248\driver_cpu_temperature\logi_core_temp.sys [25448 2021-01-13] (Logitech Inc. -> Logitech)
U2 lltdio; C:\WINDOWS\System32\drivers\lltdio.sys [72192 2019-03-19] (Microsoft Corporation) [File not signed]
U3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-12-04] (Logitech Inc -> Logitech)
U3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-12-04] (Logitech Inc -> Logitech)
U3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-12-04] (Logitech Inc -> Logitech)
U2 luafv; C:\WINDOWS\system32\drivers\luafv.sys [141312 2019-10-07] (Microsoft Corporation) [File not signed]
U3 MbbCx; C:\WINDOWS\System32\drivers\MbbCx.sys [359424 2019-11-15] (Microsoft Corporation) [File not signed]
U3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [64512 2019-03-19] (Microsoft Corporation) [File not signed]
U2 MMCSS; C:\WINDOWS\system32\drivers\mmcss.sys [53760 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Modem; C:\WINDOWS\System32\drivers\modem.sys [46592 2019-03-19] (Microsoft Corporation) [File not signed]
U3 monitor; C:\WINDOWS\System32\drivers\monitor.sys [69632 2020-03-10] (Microsoft Corporation) [File not signed]
U3 mouhid; C:\WINDOWS\System32\drivers\mouhid.sys [35840 2019-03-19] (Microsoft Corporation) [File not signed]
U3 mpsdrv; C:\WINDOWS\System32\drivers\mpsdrv.sys [80384 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MRxDAV; C:\WINDOWS\system32\drivers\mrxdav.sys [158208 2019-10-08] (Microsoft Corporation) [File not signed]
U2 mrxsmb10; C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys [306176 2021-01-26] (Microsoft Corporation) [File not signed]
U3 MsBridge; C:\WINDOWS\System32\drivers\bridge.sys [127488 2019-03-19] (Microsoft Corporation) [File not signed]
U3 mshidkmdf; C:\WINDOWS\System32\drivers\mshidkmdf.sys [8704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 mshidumdf; C:\WINDOWS\System32\drivers\mshidumdf.sys [12288 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [34816 2021-01-26] (Microsoft Corporation) [File not signed]
U2 MsLldp; C:\WINDOWS\System32\drivers\mslldp.sys [78848 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [11264 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [11264 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSTEE; C:\WINDOWS\System32\drivers\MSTEE.sys [12800 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MTConfig; C:\WINDOWS\System32\drivers\MTConfig.sys [16384 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NativeWifiP; C:\WINDOWS\System32\DRIVERS\nwifi.sys [702464 2019-10-08] (Microsoft Corporation) [File not signed]
U3 NdisCap; C:\WINDOWS\System32\drivers\ndiscap.sys [56320 2021-01-26] (Microsoft Corporation) [File not signed]
U3 NdisImPlatform; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [135168 2020-03-10] (Microsoft Corporation) [File not signed]
U3 NdisTapi; C:\WINDOWS\System32\DRIVERS\ndistapi.sys [28672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Ndisuio; C:\WINDOWS\System32\drivers\ndisuio.sys [70656 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NdisVirtualBus; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [22016 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NdisWan; C:\WINDOWS\System32\drivers\ndiswan.sys [206336 2020-03-10] (Microsoft Corporation) [File not signed]
U3 ndiswanlegacy; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [206336 2020-03-10] (Microsoft Corporation) [File not signed]
U3 NDKPing; C:\WINDOWS\System32\drivers\NDKPing.sys [63488 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ndproxy; C:\WINDOWS\System32\DRIVERS\NDProxy.sys [244736 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Ndu; C:\WINDOWS\System32\drivers\Ndu.sys [132096 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [187904 2019-03-19] (Microsoft Corporation) [File not signed]
U1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [337408 2021-01-26] (Microsoft Corporation) [File not signed]
U1 npsvctrig; C:\WINDOWS\System32\drivers\npsvctrig.sys [27136 2019-03-19] (Microsoft Corporation) [File not signed]
U1 nsiproxy; C:\WINDOWS\System32\drivers\nsiproxy.sys [48128 2019-11-15] (Microsoft Corporation) [File not signed]
U1 Null; C:\Windows\System32\Drivers\Null.sys [7680 2019-03-19] (Microsoft Corporation) [File not signed]
U1 pango_netfilter2; C:\WINDOWS\System32\drivers\pango_netfilter2.sys [94600 2021-01-08] (Pango Inc. -> Pango Inc)
U3 Parport; C:\WINDOWS\System32\drivers\parport.sys [108032 2019-03-19] (Microsoft Corporation) [File not signed]
U2 PEAUTH; C:\WINDOWS\System32\drivers\peauth.sys [817152 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PNPMEM; C:\WINDOWS\System32\drivers\pnpmem.sys [17408 2019-03-19] (Microsoft Corporation) [File not signed]
U3 portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [25600 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PptpMiniport; C:\WINDOWS\System32\drivers\raspptp.sys [103424 2019-03-19] (Microsoft Corporation) [File not signed]
U3 QWAVEdrv; C:\WINDOWS\system32\drivers\qwavedrv.sys [53760 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [19968 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasAgileVpn; C:\WINDOWS\System32\drivers\AgileVpn.sys [114176 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Rasl2tp; C:\WINDOWS\System32\drivers\rasl2tp.sys [112128 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [87552 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasSstp; C:\WINDOWS\System32\drivers\rassstp.sys [85504 2019-03-19] (Microsoft Corporation) [File not signed]
U3 rdpbus; C:\WINDOWS\System32\drivers\rdpbus.sys [28672 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RDPDR; C:\WINDOWS\System32\drivers\rdpdr.sys [167936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 RFCOMM; C:\WINDOWS\System32\drivers\rfcomm.sys [211456 2019-03-19] (Microsoft Corporation) [File not signed]
U3 rhproxy; C:\WINDOWS\System32\drivers\rhproxy.sys [113152 2019-03-19] (Microsoft Corporation) [File not signed]
U2 rspndr; C:\WINDOWS\System32\drivers\rspndr.sys [89088 2019-03-19] (Microsoft Corporation) [File not signed]
U3 scfilter; C:\WINDOWS\System32\DRIVERS\scfilter.sys [45056 2021-01-26] (Microsoft Corporation) [File not signed]
U3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
U3 Serenum; C:\WINDOWS\System32\drivers\serenum.sys [27648 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Serial; C:\WINDOWS\System32\drivers\serial.sys [89600 2019-03-19] (Microsoft Corporation) [File not signed]
U3 sermouse; C:\WINDOWS\System32\drivers\sermouse.sys [29696 2019-03-19] (Microsoft Corporation) [File not signed]
U3 sfloppy; C:\WINDOWS\System32\drivers\sfloppy.sys [18944 2021-01-26] (Microsoft Corporation) [File not signed]
U3 spacedeskDriverBus; C:\WINDOWS\System32\drivers\spacedeskDriverBus.sys [86448 2021-03-28] (Datronicsoft, Inc. -> datronicsoft Inc.)
U3 spacedeskKtmInputMouse; C:\WINDOWS\System32\drivers\spacedeskKtmInputMouse.sys [35240 2021-02-19] (Datronicsoft, Inc. -> )
U3 srv2; C:\WINDOWS\System32\DRIVERS\srv2.sys [772096 2021-01-26] (Microsoft Corporation) [File not signed]
U3 srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [309248 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Synth3dVsc; C:\WINDOWS\System32\drivers\Synth3dVsc.sys [66560 2019-03-19] (Microsoft Corporation) [File not signed]
U3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
U3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
U3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
U2 tcpipreg; C:\WINDOWS\System32\drivers\tcpipreg.sys [54784 2019-03-19] (Microsoft Corporation) [File not signed]
U3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [883256 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171968 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [693768 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U3 TsUsbFlt; C:\WINDOWS\System32\drivers\tsusbflt.sys [65024 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TsUsbGD; C:\WINDOWS\System32\drivers\TsUsbGD.sys [35328 2021-01-26] (Microsoft Corporation) [File not signed]
U3 tsusbhub; C:\WINDOWS\System32\drivers\tsusbhub.sys [132096 2020-01-27] (Microsoft Corporation) [File not signed]
U3 tunnel; C:\WINDOWS\System32\drivers\tunnel.sys [128512 2019-11-15] (Microsoft Corporation) [File not signed]
U3 UcmCx0101; C:\WINDOWS\System32\Drivers\UcmCx.sys [160256 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UcmTcpciCx0101; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [186368 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UcmUcsiAcpiClient; C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys [34816 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UcmUcsiCx0101; C:\WINDOWS\System32\Drivers\UcmUcsiCx.sys [111104 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [51200 2019-03-19] (Microsoft Corporation) [File not signed]
U4 udfs; C:\WINDOWS\System32\DRIVERS\udfs.sys [342528 2019-12-11] (Microsoft Corporation) [File not signed]
U3 umbus; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys [57856 2019-10-07] (Microsoft Corporation) [File not signed]
U3 UmPass; C:\WINDOWS\System32\drivers\umpass.sys [13312 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbaudio; C:\WINDOWS\system32\drivers\usbaudio.sys [198656 2021-01-26] (Microsoft Corporation) [File not signed]
U3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [257536 2019-10-07] (Microsoft Corporation) [File not signed]
U3 usbcir; C:\WINDOWS\System32\drivers\usbcir.sys [107008 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbohci; C:\WINDOWS\System32\drivers\usbohci.sys [30208 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbprint; C:\WINDOWS\System32\drivers\usbprint.sys [34304 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbser; C:\WINDOWS\System32\drivers\usbser.sys [79360 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbuhci; C:\WINDOWS\System32\drivers\usbuhci.sys [39936 2019-03-19] (Microsoft Corporation) [File not signed]
U1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5811160 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
U3 vhf; C:\WINDOWS\System32\drivers\vhf.sys [39936 2019-03-19] (Microsoft Corporation) [File not signed]
U2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [330176 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2021-01-27] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
U0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2021-01-03] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [55976 2020-05-27] (NCH Software, Inc. -> )
U3 vwifibus; C:\WINDOWS\System32\drivers\vwifibus.sys [27648 2019-03-19] (Microsoft Corporation) [File not signed]
U1 vwififlt; C:\WINDOWS\System32\drivers\vwififlt.sys [77312 2019-03-19] (Microsoft Corporation) [File not signed]
U3 vwifimp; C:\WINDOWS\System32\drivers\vwifimp.sys [50176 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WacomPen; C:\WINDOWS\System32\drivers\wacompen.sys [31744 2019-03-19] (Microsoft Corporation) [File not signed]
U2 wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [92672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wanarpv6; C:\WINDOWS\System32\DRIVERS\wanarp.sys [92672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wcnfs; C:\WINDOWS\system32\drivers\wcnfs.sys [92672 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
U3 wdiwifi; C:\WINDOWS\System32\DRIVERS\wdiwifi.sys [931840 2019-10-08] (Microsoft Corporation) [File not signed]
U3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
U3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [251904 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WINUSB; C:\WINDOWS\System32\drivers\WinUsb.sys [105472 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WmiAcpi; C:\WINDOWS\System32\drivers\wmiacpi.sys [19456 2019-03-19] (Microsoft Corporation) [File not signed]
U4 ws2ifsl; C:\WINDOWS\system32\drivers\ws2ifsl.sys [25088 2019-10-07] (Microsoft Corporation) [File not signed]
U3 WSDPrintDevice; C:\WINDOWS\System32\drivers\WSDPrint.sys [24576 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WSDScan; C:\WINDOWS\System32\drivers\WSDScan.sys [26112 2020-01-27] (Microsoft Corporation) [File not signed]
U3 WudfPf; C:\WINDOWS\System32\drivers\WudfPf.sys [134656 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WUDFRd; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WUDFWpdFs; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) [File not signed]
U3 xboxgip; C:\WINDOWS\System32\drivers\xboxgip.sys [325120 2021-01-26] (Microsoft Corporation) [File not signed]
U3 xinputhid; C:\WINDOWS\System32\drivers\xinputhid.sys [48640 2021-01-26] (Microsoft Corporation) [File not signed]
U3 xusb22; C:\WINDOWS\System32\drivers\xusb22.sys [102400 2019-03-19] (Microsoft Corporation) [File not signed]
U1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [312776 2020-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Nox Limited Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\ProgramData\Electronic Arts
2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\Program Files (x86)\Origin
2021-04-06 15:22 - 2021-04-06 15:22 - 000000000 ____D C:\Users\Milospc\.QtWebEngineProcess
2021-04-06 15:21 - 2021-04-06 15:21 - 069192266 _____ (Electronic Arts) C:\Users\Milospc\Downloads\ApexLegendsInstaller.exe
2021-04-06 15:20 - 2021-04-06 15:24 - 000208276 _____ C:\Users\Milospc\Desktop\Addition.txt
2021-04-06 15:15 - 2021-04-06 15:28 - 000136744 _____ C:\Users\Milospc\Desktop\FRST.txt
2021-04-06 15:15 - 2021-04-06 15:27 - 000000000 ____D C:\FRST
2021-04-06 15:15 - 2021-04-06 15:15 - 000004176 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2021-04-06 15:15 - 2021-04-06 15:15 - 000000000 ___HD C:\VTRoot
2021-04-06 15:14 - 2021-04-06 15:14 - 002298368 _____ (Farbar) C:\Users\Milospc\Downloads\FRST64.exe
2021-04-06 15:14 - 2021-04-06 15:14 - 002298368 _____ (Farbar) C:\Users\Milospc\Desktop\FRST64.exe
2021-04-06 13:08 - 2021-04-06 13:08 - 000000000 ____H C:\Users\Milospc\Desktop\~WRL0003.tmp
2021-04-06 07:31 - 2021-04-06 07:31 - 000320601 _____ C:\Users\Milospc\Downloads\3 Změna vnitřní energie tělesa - pracovní list (2).pdf
2021-04-06 07:08 - 2021-04-06 07:08 - 000320601 _____ C:\Users\Milospc\Downloads\3 Změna vnitřní energie tělesa - pracovní list (1).pdf
2021-04-06 07:06 - 2021-04-06 07:06 - 000494478 _____ C:\Users\Milospc\Downloads\4 Šíření tepla (1).pdf
2021-04-05 20:29 - 2021-04-05 20:29 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Comodo
2021-04-05 20:10 - 2021-04-05 20:11 - 000000000 ____D C:\$Windows.~BT
2021-04-05 19:54 - 2021-04-06 15:24 - 001301697 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2021-04-05 19:54 - 2021-04-05 19:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\COMODO
2021-04-05 19:54 - 2021-04-05 19:54 - 000000000 ____D C:\Program Files\COMODO
2021-04-05 19:54 - 2019-10-22 18:02 - 000017576 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdboot.sys
2021-04-05 19:54 - 2019-01-29 10:42 - 000254440 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2021-04-05 19:54 - 2019-01-29 10:42 - 000205024 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2021-04-05 19:54 - 2018-08-30 00:55 - 000063256 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2021-04-05 19:53 - 2021-04-05 20:31 - 000000000 ____D C:\Program Files (x86)\Comodo
2021-04-05 19:53 - 2021-04-05 19:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2021-04-05 19:53 - 2021-04-05 19:53 - 000000000 ____D C:\Users\Milospc\AppData\Local\Comodo
2021-04-05 19:53 - 2019-08-21 08:02 - 000454616 _____ (COMODO) C:\WINDOWS\system32\cssguard64.dll
2021-04-05 19:53 - 2019-08-21 08:02 - 000341224 _____ (COMODO) C:\WINDOWS\system32\cmdkbdcss64.dll
2021-04-05 19:53 - 2019-08-21 08:02 - 000337856 _____ (COMODO) C:\WINDOWS\SysWOW64\cssguard32.dll
2021-04-05 19:53 - 2019-08-21 08:02 - 000262376 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbdcss32.dll
2021-04-05 19:53 - 2018-02-28 08:11 - 000125000 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdcss.sys
2021-04-05 19:51 - 2021-04-05 19:53 - 000000000 ____D C:\ProgramData\Comodo
2021-04-05 19:51 - 2021-04-05 19:51 - 005712000 _____ (COMODO) C:\Users\Milospc\Downloads\cispremium_installer.exe
2021-04-05 19:51 - 2021-04-05 19:51 - 000000000 ____D C:\ProgramData\Shared Space
2021-04-05 17:55 - 2021-04-05 20:19 - 000000000 ___HD C:\$SysReset
2021-03-31 10:40 - 2021-03-31 10:40 - 000002820 _____ C:\Users\Milospc\Desktop\Cyrilometodějská církevní ZŠ (Pro rodiče a žáky).lnk
2021-03-30 20:58 - 2021-03-30 20:58 - 001720560 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-03-30 16:27 - 2021-03-30 20:46 - 000000000 ____D C:\Program Files (x86)\Cobian Backup 11
2021-03-30 15:16 - 2021-03-30 15:17 - 000000000 ____D C:\Users\Milospc\AppData\Local\Disc_Soft_Ltd
2021-03-30 15:13 - 2021-03-30 15:13 - 000000000 ____D C:\ProgramData\Disc-Soft
2021-03-30 07:57 - 2021-03-30 08:06 - 921663791 _____ C:\Users\Milospc\Downloads\2021-03-18-22-31-27116-339669-93q6w6icvixv33009k7pvqgxnvvc2e1f0cfeepf3or84n62q7pihazn857bt.tar.gz
2021-03-29 21:22 - 2021-03-29 21:22 - 011643801 _____ C:\Users\Milospc\Downloads\Gotika_8.r.pptx
2021-03-29 17:25 - 2021-04-05 17:55 - 000000000 ____D C:\WINDOWS\Panther
2021-03-29 17:21 - 2021-03-29 17:21 - 000000000 ____D C:\ProgramData\Splashtop
2021-03-29 17:20 - 2021-03-29 17:21 - 011993152 _____ (Splashtop Inc.) C:\Users\Milospc\Downloads\Splashtop_Wired_XDisplay_Agent_v1.5.8.3.exe
2021-03-29 17:10 - 2021-03-29 17:10 - 000115559 _____ C:\Users\Milospc\Downloads\1617008730-sddt_2021-03-27_12-01-15.zip
2021-03-29 17:07 - 2021-03-29 17:07 - 000001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\spacedesk SERVER.lnk
2021-03-29 17:07 - 2021-03-29 17:07 - 000000000 ____D C:\Program Files\datronicsoft
2021-03-29 17:06 - 2021-03-29 17:06 - 005885952 _____ C:\Users\Milospc\Downloads\spacedesk_driver_Win_10_64_v0988_BETA.msi
2021-03-29 11:54 - 2021-03-30 09:13 - 3595763002 _____ C:\Users\Milospc\Downloads\Red.Dead.Redemption.2.Fixed.zip.crdownload
2021-03-29 11:09 - 2021-03-29 11:09 - 000000000 ____D C:\ProgramData\Galaxy
2021-03-29 11:08 - 2021-03-29 11:09 - 000000000 ____D C:\Users\Milospc\Desktop\SWAPPer
2021-03-29 08:59 - 2021-03-29 08:59 - 002993543 _____ C:\Users\Milospc\Downloads\svarta jump.mp4
2021-03-28 20:42 - 2021-03-28 20:42 - 001204152 _____ C:\WINDOWS\system32\spacedeskService.exe
2021-03-28 20:42 - 2021-03-28 20:42 - 000458680 _____ (datronicsoft) C:\WINDOWS\system32\spacedeskServiceTray.exe
2021-03-28 20:42 - 2021-03-28 20:42 - 000240560 _____ (datronicsoft) C:\WINDOWS\system32\spacedeskVideoWallSettings.exe
2021-03-28 20:42 - 2021-03-28 20:42 - 000228288 _____ C:\WINDOWS\system32\spacedeskKtm.dll
2021-03-28 20:17 - 2021-03-28 20:17 - 000086448 _____ (datronicsoft Inc.) C:\WINDOWS\system32\Drivers\spacedeskDriverBus.sys
2021-03-26 14:59 - 2021-03-26 15:03 - 132418343 _____ C:\Users\Milospc\Desktop\Fortnite montage 1.mp4
2021-03-26 13:20 - 2021-03-26 13:20 - 000198176 _____ C:\Users\Milospc\Downloads\Travis Scott - Goosebumps feat. Chase Atlantic (Remix Lyrics).mp3.sfk
2021-03-26 09:54 - 2021-03-28 22:29 - 243808919 _____ C:\Users\Milospc\Documents\ŠvábTheman1.1.1.mp4
2021-03-26 09:41 - 2021-03-26 09:51 - 000000000 ____D C:\Users\Milospc\Desktop\tisk do matiky
2021-03-25 22:00 - 2021-03-25 22:01 - 060938795 _____ C:\Users\Milospc\Desktop\ŠvábTheman1.1.1.mp4
2021-03-25 21:24 - 2021-03-25 21:24 - 000022544 _____ C:\Users\Milospc\Downloads\AMS__Big_Explosion.mov.sfk
2021-03-25 20:00 - 2021-03-25 20:31 - 3290439098 _____ C:\Users\Milospc\Downloads\V Síti 18+ 2019 1080p 5.1 H.264.CZ.mkv
2021-03-25 13:46 - 2021-03-26 18:03 - 1573125054 _____ C:\Users\Milospc\Downloads\Nepotvrzeno 185825.crdownload
2021-03-25 09:54 - 2021-03-25 09:54 - 000494478 _____ C:\Users\Milospc\Downloads\4 Šíření tepla.pdf
2021-03-25 09:54 - 2021-03-25 09:54 - 000320601 _____ C:\Users\Milospc\Downloads\3 Změna vnitřní energie tělesa - pracovní list.pdf
2021-03-24 09:52 - 2021-03-24 09:52 - 029805697 _____ C:\Users\Milospc\Downloads\AMS__Big_Explosion.mov
2021-03-23 22:04 - 2021-03-23 22:04 - 000465869 _____ C:\Users\Milospc\Downloads\Live News Green Screen - 40214.mp4
2021-03-23 22:04 - 2021-03-23 22:04 - 000196208 _____ C:\Users\Milospc\Downloads\Tiktok - 40215.mp4
2021-03-23 22:03 - 2021-03-23 22:03 - 003056945 _____ C:\Users\Milospc\Downloads\Blood - 39139.mp4
2021-03-23 21:35 - 2021-03-23 21:35 - 030007132 _____ C:\Users\Milospc\Downloads\Money - 58760.mp4
2021-03-23 21:35 - 2021-03-23 21:35 - 004756241 _____ C:\Users\Milospc\Downloads\Light - 41407.mp4
2021-03-23 21:25 - 2021-03-23 21:25 - 002203644 _____ C:\Users\Milospc\Downloads\Green Screen - 17408.mp4
2021-03-23 21:24 - 2021-03-23 21:24 - 001674153 _____ C:\Users\Milospc\Downloads\Loading Circle - 42581.mp4
2021-03-23 21:24 - 2021-03-23 21:24 - 001588588 _____ C:\Users\Milospc\Downloads\Office Dance - 39290.mp4
2021-03-23 21:24 - 2021-03-23 21:24 - 000100115 _____ C:\Users\Milospc\Downloads\Camera - 37775.mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 011456185 _____ C:\Users\Milospc\Downloads\Mindcraft - 43551.mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 002122983 _____ C:\Users\Milospc\Downloads\Man Walking - 21263.mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 000279295 _____ C:\Users\Milospc\Downloads\Greenscreen - 28143 (1).mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 000224951 _____ C:\Users\Milospc\Downloads\Greenscreen - 28143.mp4
2021-03-23 21:18 - 2021-03-23 21:19 - 016518924 _____ C:\Users\Milospc\Downloads\Smartphone_scrolling_for_Chroma_Key.mp4
2021-03-23 21:18 - 2021-03-23 21:18 - 061689257 _____ C:\Users\Milospc\Downloads\171003A_024_2K.mp4
2021-03-23 13:42 - 2021-03-23 13:45 - 000000000 ____D C:\Users\Milospc\Desktop\fotky sněhu iahivu
2021-03-23 09:15 - 2021-03-23 09:15 - 000189621 _____ C:\Users\Milospc\Downloads\PL 4 Násobení a dělení mocnin - výrazy.pdf
2021-03-22 19:30 - 2021-03-22 19:30 - 010833269 _____ C:\Users\Milospc\Downloads\MD7_SETUP.zip
2021-03-22 19:30 - 2021-03-22 19:30 - 000220392 _____ (AVAST Software) C:\Users\Milospc\Downloads\avast_free_antivirus_setup_online (1).exe
2021-03-22 19:25 - 2021-03-22 19:25 - 000300198 _____ C:\Users\Milospc\Downloads\fortnite_inj.zip
2021-03-22 18:32 - 2021-03-22 18:32 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\MAGIX Computer Products Intl. Co
2021-03-22 13:20 - 2021-03-22 13:55 - 000044131 _____ C:\Users\Milospc\Downloads\AutoKeyClicker v1.2.4.zip
2021-03-22 12:15 - 2021-03-22 12:15 - 000033280 ____H C:\Users\Milospc\Downloads\~WRL0006.tmp
2021-03-22 08:57 - 2021-03-22 08:57 - 000006656 _____ C:\Users\Milospc\Downloads\timer-resolution_softradar-com.zip
2021-03-21 22:21 - 2021-03-25 21:59 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\VEGAS
2021-03-21 22:21 - 2021-03-21 22:21 - 000001113 _____ C:\Users\Milospc\Desktop\VEGAS Pro 16.0.lnk
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\VEGAS Pro
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\Users\Milospc\AppData\Local\VEGAS Pro
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\Users\Milospc\AppData\Local\Plugin.VegasOfxStitch
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\ProgramData\VEGAS Pro
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\Users\Milospc\Desktop\Macro
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\proDAD
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\Program Files\proDAD
2021-03-21 22:19 - 2021-03-21 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX
2021-03-21 22:19 - 2021-03-21 22:19 - 000000000 ____D C:\Program Files\VEGAS
2021-03-21 22:18 - 2021-03-28 22:29 - 000000000 ____D C:\ProgramData\GenArts
2021-03-21 22:18 - 2021-03-21 22:18 - 000000000 ____D C:\ProgramData\FXHOME
2021-03-21 22:18 - 2021-03-21 22:18 - 000000000 ____D C:\Program Files\GenArts
2021-03-21 22:18 - 2021-03-21 22:18 - 000000000 ____D C:\Program Files\FXHOME
2021-03-21 22:18 - 2017-10-13 16:31 - 001664512 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libeay32.dll
2021-03-21 22:18 - 2017-10-13 16:31 - 000351744 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\ssleay32.dll
2021-03-21 22:13 - 2021-03-21 22:19 - 000000000 ____D C:\ProgramData\VEGAS
2021-03-21 22:13 - 2021-03-21 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2021-03-21 22:13 - 2021-03-21 22:13 - 000000000 ____D C:\Users\Milospc\AppData\Local\VEGAS
2021-03-21 22:13 - 2021-03-21 22:13 - 000000000 ____D C:\Program Files (x86)\VEGAS
2021-03-21 22:03 - 2021-03-21 22:03 - 000683008 _____ C:\Users\Milospc\Downloads\MacroGamer_v275_Setup.msi
2021-03-21 22:03 - 2021-03-21 22:03 - 000000000 ____D C:\Users\Milospc\Documents\MacroGamer
2021-03-21 22:03 - 2021-03-21 22:03 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MacroGamer
2021-03-21 22:00 - 2021-03-21 22:00 - 000146002 _____ C:\Users\Milospc\Downloads\MacroGamer_v275_Source.zip
2021-03-21 21:10 - 2021-03-22 19:45 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Smart Clock
2021-03-21 21:10 - 2021-03-21 21:10 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Uadeko
2021-03-21 21:10 - 2021-03-21 21:10 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Prince
2021-03-21 21:10 - 2021-03-21 21:10 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\imqEzpXFGAxwPtCBe
2021-03-21 21:08 - 2021-03-21 21:11 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\hjlubOchHIB
2021-03-21 21:07 - 2021-03-21 21:07 - 001752679 _____ C:\Users\Milospc\Downloads\Sony-Vegas-Pro-180-Build-434-Crack-With-Torrent-Full-Version-Download_51e909aa1fd47c98de550c.zip
2021-03-21 18:16 - 2021-04-05 19:14 - 000000000 _____ C:\Recovery.txt
2021-03-19 15:45 - 2021-03-19 15:47 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\StardewValley
2021-03-19 09:02 - 2021-03-19 09:02 - 000072065 _____ C:\Users\Milospc\Downloads\cadet.pdf
2021-03-18 21:38 - 2021-03-18 21:38 - 000000000 ____D C:\ProgramData\Google
2021-03-18 21:33 - 2021-03-18 21:33 - 017842176 _____ C:\Users\Milospc\Downloads\chromeremotedesktophost.msi
2021-03-18 20:05 - 2021-03-18 20:06 - 007570432 _____ (TODO: Extrim) C:\Users\Milospc\Downloads\extrimhack_free_18.03.2021_ (1).exe
2021-03-18 20:05 - 2021-03-18 20:05 - 000002624 _____ C:\Users\Milospc\Downloads\extrimhack_free_18.03.2021_.exe
2021-03-18 17:09 - 2021-03-18 17:09 - 000000000 _____ C:\WINDOWS\SysWOW64\unp156707654.tmp
2021-03-18 17:07 - 2021-03-30 20:47 - 000000000 ____D C:\Users\Milospc\AppData\Local\AVAST Software
2021-03-18 17:03 - 2021-03-18 17:03 - 000000000 _____ C:\WINDOWS\SysWOW64\unp267534847.tmp
2021-03-18 16:57 - 2021-03-18 16:57 - 000465656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys.161613700729601
2021-03-18 16:55 - 2021-03-18 16:55 - 000220392 _____ (AVAST Software) C:\Users\Milospc\Downloads\avast_free_antivirus_setup_online.exe
2021-03-17 08:16 - 2021-03-17 08:16 - 000000000 ____D C:\ProgramData\Riate
2021-03-17 08:16 - 2021-03-17 08:16 - 000000000 ____D C:\ProgramData\Posse
2021-03-17 08:15 - 2021-03-17 08:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Services
2021-03-16 22:35 - 2021-03-17 08:17 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\UgwIPUUWRxfZSNm
2021-03-16 22:35 - 2021-03-16 22:35 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Kasuoreo
2021-03-16 22:35 - 2021-03-16 22:35 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\dxpiaLbEQTovDGYYL
2021-03-16 22:34 - 2021-03-16 22:34 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Onagf
2021-03-16 22:08 - 2021-03-16 22:35 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\OIsXCbJHBYPenw
2021-03-16 22:07 - 2021-03-19 16:59 - 001819610 _____ C:\Users\Milospc\Downloads\Outbyte-PC-Repair-11662247-Crack---License-Key-Free-Download-2021_f814605c5d678f16fc637c.zip
2021-03-16 21:58 - 2021-03-16 21:59 - 020899048 _____ (Outbyte) C:\Users\Milospc\Downloads\0x80004002_repair-setup.exe
2021-03-16 09:41 - 2021-03-16 09:41 - 000001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2021-03-16 09:41 - 2021-03-16 09:41 - 000000000 ____D C:\Program Files\Streamlabs OBS
2021-03-16 09:04 - 2021-03-16 09:26 - 240957176 _____ (General Workings, Inc.) C:\Users\Milospc\Downloads\Streamlabs+OBS+Setup+0.27.1-mgNosYaFcbcxpZz.exe
2021-03-15 12:42 - 2021-03-15 12:42 - 000000000 ____D C:\Program Files\Common Files\OFX
2021-03-15 08:05 - 2021-03-15 08:05 - 000535304 _____ C:\Users\Milospc\Downloads\Homér 1 1.pdf
2021-03-15 08:05 - 2021-03-15 08:05 - 000342826 _____ C:\Users\Milospc\Downloads\Homér 2.pdf
2021-03-14 19:15 - 2021-03-14 19:15 - 003126371 _____ C:\Users\zimul\Desktop\ŽIVOT A DÍLO JOSEFA ŠÍMY S NÁVZAZNOSTÍ NA [Autosaved].pptm
2021-03-14 14:43 - 2021-03-14 14:43 - 000969321 _____ C:\Users\zimul\Desktop\ŽIVOT A DÍLO JOSEFA ŠÍMY S NÁVZAZNOSTÍ NA.pptm
2021-03-14 14:41 - 2021-03-14 14:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-1212909314-1353993095-2117482179-1002
2021-03-12 17:19 - 2021-03-12 17:19 - 000022448 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_5085696051546.dll
2021-03-10 12:07 - 2021-03-10 12:07 - 000150343 _____ C:\Users\Milospc\Downloads\ActionHealth.jar
2021-03-10 10:49 - 2021-03-10 10:49 - 001478187 _____ (Igor Pavlov) C:\Users\Milospc\Downloads\sevenzip-setup.exe
2021-03-10 10:49 - 2021-03-10 10:49 - 000001096 _____ C:\Users\Milospc\Downloads\extreme-injector-latest-version.exe.lnk
2021-03-10 10:49 - 2021-03-10 10:49 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\WoodedLawgiver
2021-03-10 10:28 - 2021-03-10 10:28 - 000001027 _____ C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LucidSwapper.lnk
2021-03-10 10:28 - 2021-03-10 10:28 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\LucidSwapper
2021-03-10 10:26 - 2021-03-10 10:28 - 036524611 _____ (Whey & darkshoz ) C:\Users\Milospc\Downloads\LucidSwapper[Setup] (1).exe
2021-03-10 09:54 - 2021-03-10 09:55 - 000000000 ____D C:\ProgramData\Skinchanger
2021-03-10 09:54 - 2021-03-10 09:54 - 007850224 _____ (Skinchanger.cc) C:\Users\Milospc\Downloads\Skinchanger.exe
2021-03-10 09:32 - 2021-03-10 09:32 - 000052722 _____ C:\Users\Milospc\Downloads\TabListPro.jar
2021-03-10 09:21 - 2021-03-10 09:21 - 000675986 _____ C:\Users\Milospc\Downloads\PexTC.zip
2021-03-09 18:28 - 2021-03-09 18:30 - 000000000 ____D C:\Users\Milospc\AppData\Local\paint.net
2021-03-09 18:28 - 2021-03-09 18:28 - 000001087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2021-03-09 18:28 - 2021-03-09 18:28 - 000000000 ____D C:\Program Files\paint.net
2021-03-09 18:27 - 2021-03-09 18:27 - 012712515 _____ C:\Users\Milospc\Downloads\paint.net.4.2.15.install.zip
2021-03-09 18:18 - 2021-03-09 21:45 - 000000000 ____D C:\Users\Milospc\Desktop\Tvoje_máma_pack
2021-03-09 09:11 - 2021-03-09 09:11 - 000602985 _____ C:\Users\Milospc\Downloads\WTF chroma key.mp4
2021-03-09 09:10 - 2021-03-09 09:10 - 000801960 _____ C:\Users\Milospc\Downloads\Gordinho Da Batata Dando um Joinha[1].mp4
2021-03-09 09:05 - 2021-03-09 09:07 - 025798147 _____ C:\Users\Milospc\Downloads\Gordão com Máscara de Cavalo #1 - Fat Guy with Horse Mask #1 Green Screen - Chroma Key.mp4
2021-03-09 09:04 - 2021-03-09 09:04 - 003736085 _____ C:\Users\Milospc\Downloads\Triggered Video Effect Green Screen With Sound.mp4
2021-03-09 09:03 - 2021-03-09 09:03 - 005487043 _____ C:\Users\Milospc\Downloads\Green Screen Thug life 2.mp4
2021-03-09 08:34 - 2021-03-18 16:08 - 000001123 _____ C:\WINDOWS\grap_hashrate.json
2021-03-08 21:56 - 2021-03-08 21:56 - 000000000 ____D C:\Users\Milospc\Documents\Audacity
2021-03-08 21:54 - 2021-03-08 21:55 - 028141904 _____ (Audacity Team ) C:\Users\Milospc\Downloads\audacity-win-2.4.2.exe
2021-03-08 18:34 - 2021-03-08 18:35 - 036524611 _____ (Whey & darkshoz ) C:\Users\Milospc\Downloads\LucidSwapper[Setup].exe
2021-03-08 18:33 - 2021-03-18 17:02 - 000000000 ____D C:\WINDOWS\data
2021-03-08 18:32 - 2021-03-08 18:33 - 002053658 _____ C:\Users\Milospc\Downloads\Nepotvrzeno 798309.crdownload
2021-03-08 18:29 - 2021-03-08 18:29 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\WinSomware
2021-03-08 17:57 - 2021-03-08 17:57 - 000689648 _____ (FortniteReplayDumper) C:\Users\Milospc\Downloads\FortniteReplayDumper.exe
2021-03-08 17:57 - 2021-03-08 17:57 - 000000000 ____D C:\Users\Milospc\AppData\Local\ProSwapperReplay
2021-03-08 17:56 - 2021-03-08 17:56 - 000911360 _____ () C:\Users\Milospc\Downloads\ProSwapperReplay.exe
2021-03-08 13:35 - 2021-03-08 13:35 - 000802755 _____ C:\Users\Milospc\Downloads\Subscribe - 51513.mp4
2021-03-08 13:35 - 2021-03-08 13:35 - 000540828 _____ C:\Users\Milospc\Downloads\Subscribe - 51513 (1).mp4
2021-03-08 13:29 - 2021-03-08 13:29 - 008537113 _____ C:\Users\Milospc\Downloads\EarTrumpet-master.zip
2021-03-08 12:59 - 2021-03-08 12:59 - 000016064 _____ C:\Users\Milospc\Downloads\Youtube - 27477.mp4.sfk
2021-03-08 12:57 - 2021-03-08 12:57 - 000544337 _____ C:\Users\Milospc\Downloads\Youtube - 27477 (1).mp4
2021-03-08 12:57 - 2021-03-08 12:57 - 000389148 _____ C:\Users\Milospc\Downloads\Youtube - 27477.mp4
2021-03-08 12:12 - 2021-03-22 19:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-03-08 10:29 - 2021-03-15 12:23 - 000000000 ____D C:\Users\Milospc\Desktop\fotky tobi do Serepes production
2021-03-07 19:25 - 2021-03-12 17:54 - 000000000 ____D C:\ProgramData\SCGO

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-04-06 15:27 - 2020-06-01 18:43 - 000000000 ____D C:\ProgramData\Origin
2021-04-06 15:25 - 2020-06-01 18:43 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Origin
2021-04-06 15:25 - 2020-06-01 18:43 - 000000000 ____D C:\Users\Milospc\AppData\Local\Origin
2021-04-06 15:25 - 2019-10-13 19:31 - 000000000 ____D C:\Users\Milospc\AppData\Local\D3DSCache
2021-04-06 15:24 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-06 15:22 - 2019-10-07 19:13 - 000000000 ____D C:\Users\Milospc
2021-04-06 13:17 - 2020-03-04 16:03 - 000000000 ____D C:\Users\Milospc\AppData\Local\CrashDumps
2021-04-06 12:31 - 2019-10-08 21:18 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\vlc
2021-04-06 12:25 - 2019-10-07 17:06 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-06 12:09 - 2019-11-22 10:57 - 000000000 ____D C:\Program Files (x86)\Steam
2021-04-06 11:42 - 2019-10-07 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-06 07:19 - 2021-02-01 18:13 - 000000000 ____D C:\Users\Milospc\AppData\Local\Secure File Deleter 6
2021-04-06 07:19 - 2020-11-21 18:10 - 000000000 ____D C:\Program Files (x86)\Auto Mouse Click (AMC)
2021-04-06 07:19 - 2020-09-30 10:50 - 000000000 ____D C:\ProgramData\SystemNetwork
2021-04-06 07:19 - 2020-09-30 10:49 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Wade
2021-04-05 20:38 - 2020-11-13 16:15 - 000000000 ____D C:\Users\postgres
2021-04-05 20:38 - 2019-10-07 19:14 - 000000000 ____D C:\Users\defaultuser0
2021-04-05 20:35 - 2019-10-07 19:22 - 001702344 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-05 20:35 - 2019-03-19 13:57 - 000720240 _____ C:\WINDOWS\system32\perfh005.dat
2021-04-05 20:35 - 2019-03-19 13:57 - 000146256 _____ C:\WINDOWS\system32\perfc005.dat
2021-04-05 20:35 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-04-05 20:32 - 2020-12-27 19:36 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-04-05 20:29 - 2019-10-20 19:59 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-04-05 20:29 - 2019-10-07 19:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-05 19:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-04-05 19:54 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-05 17:59 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-04-05 17:59 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-05 17:54 - 2020-03-04 09:50 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\AVAST Software
2021-04-05 17:54 - 2020-03-03 21:51 - 000000000 ____D C:\ProgramData\AVAST Software
2021-04-05 17:53 - 2020-12-03 23:16 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2021-04-05 17:39 - 2020-11-12 21:42 - 000000000 ____D C:\Users\Milospc\AppData\Local\LogMeIn Hamachi
2021-03-31 08:05 - 2020-05-18 21:10 - 000000000 ____D C:\Users\Milospc\Desktop\ŠkOlA
2021-03-30 16:31 - 2020-11-21 19:05 - 000000000 ____D C:\Users\Milospc\Desktop\MIX
2021-03-30 15:51 - 2020-10-10 14:07 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1212909314-1353993095-2117482179-1001
2021-03-30 15:51 - 2020-09-10 20:54 - 000003244 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2021-03-30 15:51 - 2020-08-26 14:37 - 000003486 _____ C:\WINDOWS\system32\Tasks\CryptoTabUpdateTaskMachineUA
2021-03-30 15:51 - 2020-08-26 14:37 - 000003262 _____ C:\WINDOWS\system32\Tasks\CryptoTabUpdateTaskMachineCore
2021-03-30 15:51 - 2020-05-05 17:43 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2019-10-22 15:25 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1212909314-1353993095-2117482179-1002
2021-03-30 15:29 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\IME
2021-03-30 15:25 - 2020-09-17 15:44 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\discord
2021-03-30 15:14 - 2020-03-03 21:29 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\uTorrent
2021-03-30 15:13 - 2020-03-04 09:41 - 000000000 ____D C:\Users\Milospc\AppData\Local\BitTorrentHelper
2021-03-30 12:27 - 2021-02-01 18:15 - 000000000 ____D C:\Users\Milospc\AppData\LocalLow\uTorrent
2021-03-30 12:07 - 2020-09-17 15:44 - 000000000 ____D C:\Users\Milospc\AppData\Local\Discord
2021-03-30 11:49 - 2020-03-10 16:27 - 000000000 ____D C:\Users\Milospc\AppData\Local\Ubisoft Game Launcher
2021-03-30 09:28 - 2020-09-10 20:53 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-03-29 21:35 - 2019-10-07 17:02 - 000000000 ____D C:\Users\Milospc\AppData\Local\Packages
2021-03-29 17:25 - 2019-10-22 15:12 - 000000000 ____D C:\Users\zimul
2021-03-29 17:21 - 2020-06-10 19:51 - 000000000 ____D C:\Program Files (x86)\Splashtop
2021-03-28 20:42 - 2020-10-09 15:27 - 000231872 _____ C:\WINDOWS\system32\spacedeskSrvLibConnectorUsb.dll
2021-03-26 14:49 - 2021-01-23 17:49 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\obs-studio
2021-03-26 13:55 - 2020-10-14 17:31 - 000001440 _____ C:\ProgramData\droidcam-client-options-v1
2021-03-26 13:55 - 2020-10-14 17:31 - 000000084 _____ C:\ProgramData\droidcam-settings
2021-03-26 13:08 - 2021-02-03 09:31 - 000000016 _____ C:\Users\Milospc\AppData\Roaming\obs-virtualcam.txt
2021-03-25 13:45 - 2020-12-26 16:19 - 000000000 ____D C:\Users\Milospc\Downloads\Terraria v.1.4.1.2 [GOG] (2011)
2021-03-24 12:26 - 2020-10-14 14:46 - 000002389 _____ C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-03-23 09:00 - 2021-02-08 20:16 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\audacity
2021-03-22 19:47 - 2019-12-19 14:51 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-03-22 13:57 - 2019-10-07 19:10 - 000501312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-21 22:21 - 2021-01-16 15:51 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\MAGIX
2021-03-21 22:19 - 2020-12-03 22:42 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Sony
2021-03-20 20:05 - 2020-12-21 14:15 - 000000000 ____D C:\Users\zimul\AppData\Roaming\Spotify
2021-03-20 16:17 - 2020-12-04 20:45 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\LGHUB
2021-03-19 22:15 - 2020-12-04 20:45 - 000000000 ____D C:\Users\Milospc\AppData\Local\LGHUB
2021-03-19 20:24 - 2020-12-21 14:17 - 000000000 ____D C:\Users\zimul\AppData\Local\Spotify
2021-03-19 17:07 - 2020-05-29 17:30 - 000000000 ____D C:\Users\Milospc\AppData\LocalLow\Mozilla
2021-03-19 12:52 - 2019-11-21 18:45 - 000000000 ____D C:\Program Files\Rockstar Games
2021-03-19 12:52 - 2019-11-21 18:45 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2021-03-19 09:37 - 2019-10-20 19:49 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-03-18 21:33 - 2021-02-01 20:07 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-03-18 21:33 - 2019-10-08 21:14 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-17 21:33 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-17 17:48 - 2020-08-26 14:06 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\extrimhack
2021-03-17 16:54 - 2020-11-09 13:02 - 000000000 ____D C:\Users\Milospc\Documents\Zvukové záznamy
2021-03-17 14:43 - 2019-10-07 21:23 - 000000000 ____D C:\Users\Milospc\AppData\Local\PlaceholderTileLogoFolder
2021-03-16 11:42 - 2019-10-13 19:28 - 000000000 ____D C:\ProgramData\Epic
2021-03-16 10:22 - 2020-08-11 14:03 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\slobs-client
2021-03-15 17:04 - 2020-10-10 14:07 - 000002382 _____ C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-15 17:04 - 2019-10-07 17:04 - 000000000 ___RD C:\Users\Milospc\OneDrive
2021-03-15 14:12 - 2019-10-22 15:25 - 000002376 _____ C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-15 14:12 - 2019-10-22 15:25 - 000000000 ___RD C:\Users\zimul\OneDrive
2021-03-15 08:06 - 2020-10-13 19:10 - 000002379 _____ C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-03-14 15:34 - 2021-01-23 14:17 - 000000000 ____D C:\Users\zimul\Desktop\šíma
2021-03-14 14:40 - 2020-03-24 18:51 - 000000000 ____D C:\Users\zimul\AppData\Local\CrashDumps
2021-03-13 14:51 - 2019-11-24 14:31 - 000000000 ____D C:\Users\Milospc\AppData\Local\ElevatedDiagnostics
2021-03-12 16:54 - 2021-03-02 12:58 - 000000000 ____D C:\Program Files\7-Zip
2021-03-10 12:08 - 2019-10-23 15:32 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\.minecraft
2021-03-10 11:50 - 2020-09-09 20:39 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\.tlauncher
2021-03-10 09:53 - 2019-12-19 14:50 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-09 21:41 - 2021-03-03 13:15 - 000000000 ____D C:\AdwCleaner
2021-03-09 21:41 - 2020-02-02 10:40 - 000000000 ____D C:\Users\zimul\AppData\Roaming\Lavasoft
2021-03-09 21:41 - 2020-02-02 10:40 - 000000000 ____D C:\Users\zimul\AppData\Local\Lavasoft
2021-03-09 21:41 - 2020-02-02 10:39 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2021-03-09 18:16 - 2021-02-11 10:28 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2021-03-09 08:35 - 2020-09-17 19:21 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2021-03-08 19:55 - 2019-12-19 14:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-03-08 18:34 - 2021-02-17 17:38 - 000000439 ____N C:\WINDOWS\parameters.ini

==================== Files in the root of some directories ========

2021-02-15 14:06 - 2021-02-15 14:06 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2021-02-01 18:17 - 2021-02-05 22:10 - 000000004 _____ () C:\ProgramData\lock.dat
2021-02-15 14:06 - 2021-02-15 14:06 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2021-02-15 14:06 - 2021-02-15 14:06 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2021-02-15 14:07 - 2021-02-15 14:07 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2021-02-01 18:18 - 2021-02-05 22:09 - 000000004 _____ () C:\ProgramData\rc.dat
2021-02-15 14:07 - 2021-02-15 14:07 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2021-02-01 18:17 - 2021-02-01 18:17 - 000000008 _____ () C:\ProgramData\ts.dat
2021-02-15 14:07 - 2021-02-15 14:07 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2021-02-16 19:43 - 2021-02-16 20:31 - 195852531 _____ (rocksdanister ) C:\Users\Milospc\lively_setup_x86_full_v1194.exe
2020-11-11 12:01 - 2020-11-11 12:01 - 000000068 _____ () C:\Users\Milospc\AppData\Roaming\changzhi_leidian.data
2021-02-03 09:31 - 2021-03-26 13:08 - 000000016 _____ () C:\Users\Milospc\AppData\Roaming\obs-virtualcam.txt
2020-06-18 00:06 - 2020-06-19 10:40 - 000000036 _____ () C:\Users\Milospc\AppData\Roaming\WB.CFG
2020-11-03 09:59 - 2020-11-03 09:59 - 000000218 _____ () C:\Users\Milospc\AppData\Local\recently-used.xbel
2020-06-18 12:30 - 2020-06-18 12:30 - 000007605 _____ () C:\Users\Milospc\AppData\Local\Resmon.ResmonCfg

==================== FLock ==============================

2021-04-06 15:15 C:\VTRoot
2021-01-26 07:06 C:\WINDOWS\system32\ntdll.dll
2021-01-26 07:07 C:\WINDOWS\SysWOW64\ntdll.dll

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe
[2021-01-26 07:06] - [2021-01-26 07:06] - 000845312 _____ (Microsoft Corporation) FD9AAD3EA144D4C893EB0CCBFF394A83

C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\SysWOW64\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll
[2021-01-26 07:06] - [2021-01-26 07:06] - 001260544 _____ (Microsoft Corporation) 98E76FA120294D28C4B02C257BCFB63C

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113807
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Někdo je v mém PC

#30 Příspěvek od Rudy »

Rozdělte do více postů.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět