VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Někdo je v mém PC

https://forum.viry.cz:443/viewtopic.php?t=158014

Stránka 2 z 4

Re: Někdo je v mém PC

Napsal: 06 dub 2021 17:50
od Rudy
Vždyť to tam píšu. Soubor otevřte, text zkopírujte a vložte sem. Pokud nezvládáte základní práci s PC, nechte si to udělat od někoho, kdo to umí.

Re: Někdo je v mém PC

Napsal: 06 dub 2021 18:53
od not_ketchupp
# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-04-01.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-06-2021
# Duration: 00:00:05
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 2


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

Not Deleted Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
Not Deleted Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1548 octets] - [06/04/2021 16:16:24]
AdwCleaner[S01].txt - [1609 octets] - [06/04/2021 18:16:09]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Re: Někdo je v mém PC

Napsal: 06 dub 2021 18:55
od not_ketchupp
Tak tohle je ono

Re: Někdo je v mém PC

Napsal: 06 dub 2021 20:18
od Rudy
Ano, to je ono. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-20\...\Policies\system: []
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {0a8c0ab8-f8d2-11e9-bb97-90b11c8dc496} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {37fb3f5a-5b62-11ea-bbb0-001a7dda7111} - "F:\setup.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {393bbffe-687f-11eb-bd62-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {cc47666b-0d5d-11eb-bccb-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {da0f45c8-aaf8-11ea-bc54-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-19\...\Policies\system: []
HKU\S-1-5-18\...\Policies\system: []
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
C:\WINDOWS\SysWOW64\unp156707654.tmp
C:\Users\Milospc\AppData\Roaming\UgwIPUUWRxfZSNm
C:\Users\Milospc\AppData\Roaming\Kasuoreo
C:\Users\Milospc\AppData\Roaming\dxpiaLbEQTovDGYYL
C:\Users\Milospc\AppData\Roaming\Onagf
C:\Users\Milospc\AppData\Roaming\OIsXCbJHBYPenw
C:\Users\Milospc\Downloads\Outbyte-PC-Repair-11662247-Crack---License-Key-Free-Download-2021_f814605c5d678f16fc637c.zip
C:\Users\Milospc\Downloads\Streamlabs+OBS+Setup+0.27.1-mgNosYaFcbcxpZz.exe
CustomCLSID: HKU\S-1-5-21-1212909314-1353993095-2117482179-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Milospc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Milospc\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
AlternateDataStreams: C:\Users\Milospc:Heroes & Generals [0]
AlternateDataStreams: C:\Users\Milospc\AppData\Local\Temp:$DATA​ [0]
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
FirewallRules: [TCP Query User{358A8AE0-28E7-412A-90EF-4E175E4ACA86}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe => No File
FirewallRules: [UDP Query User{7E36775F-A79B-42EC-A808-9EC9DCDE001B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe => No File
FirewallRules: [{9F2E6941-E215-4820-B609-8D060C0D95B3}] => (Allow) C:\Users\zimul\AppData\Local\Programs\Opera\68.0.3618.104\opera.exe => No File
FirewallRules: [{60254BAD-1547-45C8-BF58-19862F7E2003}] => (Allow) C:\Users\zimul\AppData\Local\Programs\Opera\68.0.3618.125\opera.exe => No File
FirewallRules: [{83CCC72F-05C7-44B0-8061-62263894C280}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe => No File
FirewallRules: [{5882A00B-22F9-42F6-9099-E508983DC7EB}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe => No File
FirewallRules: [TCP Query User{69BB3FBB-73C1-47EE-BAD4-C84646D5AEDA}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{C9BDB66D-8B73-4D45-859C-C152F016FF2C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{96365D89-101B-4944-9275-53BA1B85AE27}C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe] => (Allow) C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe => No File
FirewallRules: [UDP Query User{75684D88-4104-42CA-95CE-D75F8951B9D1}C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe] => (Allow) C:\users\milospc\appdata\local\programs\opera\70.0.3728.119\opera.exe => No File
FirewallRules: [TCP Query User{AED3B6CD-93C6-49FD-9DE9-13F44F4C8D6A}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [UDP Query User{E9608693-A0D2-4207-B6D7-BBD15D240B27}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [TCP Query User{0A99E0AA-1711-4546-849F-33F0B5080696}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2BF27D67-4FD8-47F5-80D1-D6110B3B943F}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe => No File
FirewallRules: [TCP Query User{25A62816-B8B7-464E-BE3A-DB05216D4636}C:\users\milospc\downloads\skate-3.exe] => (Allow) C:\users\milospc\downloads\skate-3.exe => No File
FirewallRules: [UDP Query User{772A50AB-0A51-49F8-ABD6-C1507CF18A53}C:\users\milospc\downloads\skate-3.exe] => (Allow) C:\users\milospc\downloads\skate-3.exe => No File
FirewallRules: [TCP Query User{BC075250-1BDD-4881-905D-2731537F3F3D}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe => No File
FirewallRules: [UDP Query User{FB3E2067-E892-4FBE-B52C-942AD55EC62C}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe => No File
FirewallRules: [TCP Query User{5DC1C3DE-0EB4-41C6-8F86-4095A125B60C}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{6730C93A-E8BF-4D62-9836-2E2DA48DAEC4}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{53214230-514D-4BE7-86F9-10E7FF9EE0E5}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{3FCD3698-EF99-4A33-8A62-16AABE5B9978}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{03CC29EA-9CE9-44BF-913A-449D60408935}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{C4CF68F7-B141-427E-A405-B869C450CD32}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{7A6B5208-CB8C-4B41-A776-839FB5728524}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{C197BE58-29D9-460F-9E7D-C5A3B7084327}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{3EC29D88-4A2F-4815-9C4E-C5B03F9D5D3B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{E00A498B-586E-467E-A7F2-8B50E49CCA70}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe => No File
FirewallRules: [{447E624C-84BE-441A-BF3D-53AC60250AA4}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe => No File
FirewallRules: [{97F40FB6-0DDA-4960-84AD-C36B03B4D84F}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe => No File
FirewallRules: [TCP Query User{3C974D6E-BA2E-4BB7-B00B-8819B3984C8A}C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{C6C56EF7-4519-46FD-80A7-5973667C6B60}C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20908.17982\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{46B484B1-77A6-476E-B4FA-B6AE5953B516}C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{26B717F4-F988-4E6F-B98D-D47DF2C6A632}C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa18740.39690\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{73C27503-ABD0-4612-8AF6-5F3DDE5AE8F7}C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{496EB067-1019-493E-8A19-AD98A392F96A}C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa20712.25099\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{837F76C2-FB1F-4805-BDFA-A9E5E310DC05}C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{AEF522F5-3763-425D-B7E6-D31C4AA85AD3}C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.42358\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{132F0FF0-457F-49EB-A8B7-35E530EB0E9A}C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{257A571E-10E9-46A1-AFCB-CC6E4072DB30}C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa25488.2409\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{4446389C-7B2E-4CB4-9551-2BC6B2B3A1E1}C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{02273402-D4F3-4CCD-804D-02137FCEF0D2}C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa16884.37665\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{FDD2AB8F-5216-4246-A646-FBC2FF161B9E}C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [UDP Query User{87FCD6AE-7389-4105-B4F8-C08D7ACB06C2}C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa584.35676\among.us.v2020.9.9s\among us.exe => No File
FirewallRules: [TCP Query User{C48A9B3A-2086-42BE-B939-FDAED0BAB28C}C:\users\milospc\appdata\local\fivem\fivem.exe] => (Allow) C:\users\milospc\appdata\local\fivem\fivem.exe => No File
FirewallRules: [UDP Query User{E6A4DE44-8012-4AA5-9A42-0188F39F8D04}C:\users\milospc\appdata\local\fivem\fivem.exe] => (Allow) C:\users\milospc\appdata\local\fivem\fivem.exe => No File
FirewallRules: [{D2B1C3EA-23D8-4D2B-8214-48D555A37554}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [{AD718F50-9BEE-4AAE-86B1-8C5BB04CEF5E}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [{4F6E51A6-B9EC-4ECE-84BD-A2C338145992}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [{50531C96-5632-40F3-99CD-57258FB896A2}] => (Block) C:\Games\Forza Horizon 4\FH4\Microsoft.SunriseBaseGame_1.332.904.2_x64__8wekyb3d8bbwe.exe => No File
FirewallRules: [TCP Query User{A01224B8-0BB5-485F-B82E-80951A77C915}C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe => No File
FirewallRules: [UDP Query User{9EA8B534-9CE4-4C9C-916E-7B4EE5ECBAAD}C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe] => (Allow) C:\users\milospc\appdata\local\temp\rar$exa4532.21716\among.us.v2020.11.17s\among.us.v2020.11.17s\among us.exe => No File
FirewallRules: [TCP Query User{4D70940C-3160-43BD-8E88-4E16A5A450D8}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Block) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe => No File
FirewallRules: [UDP Query User{7492C51B-84D9-439B-87BE-D86EF2593F8B}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Block) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe => No File
FirewallRules: [{C4044891-0EBD-478D-B539-AF6A4B9B1F02}] => (Allow) C:\Users\Milospc\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{8CCFB84D-F0D6-4CAC-B388-D10230CFC185}] => (Allow) C:\Users\Milospc\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{820B1EE6-A03E-419D-9068-51D2CE9EBA9A}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File
FirewallRules: [{68828B5A-2991-4683-94FA-93C454CB1864}] => (Allow) D:\Hry\2019.4.17f1\Editor\Unity.exe => No File
FirewallRules: [{6B55C12F-EFC7-436A-BC5F-285F9F7059EF}] => (Block) D:\Hry\2019.4.17f1\Editor\Unity.exe => No File
FirewallRules: [TCP Query User{5AD036C7-BBDF-431C-903D-6790BC71C6A2}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{2A7DFB4A-911D-444C-B9CF-8917CF10863A}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{ACA880B9-563E-4E1A-8244-AA3F7877C6E6}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{91443409-7158-440D-92AF-9543116CF36C}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{631757B0-E0AB-4755-A38D-08DF5AE18E32}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{D1334954-EE6D-403B-A265-F928DD74B3BE}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{E1954805-B9E7-4802-8BDC-018B3F0491C4}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{3257BC98-8A14-4FA6-86D4-A7AEB9C29A82}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{0CD2FE39-DC74-4B6A-87E0-24A77320025D}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{1DC37837-6EAE-448B-B3A1-2FE92EEEE3FE}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{40411A8E-D43F-46DC-80E2-B8CEE8E8F29F}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{BA604527-F345-4CDC-9AF0-295D870084A7}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{2E19A69E-7B3D-48FC-AB6D-2E1D07707F11}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{70CF0488-1AFA-4D27-BC1C-F9B5802C6DA7}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{6C0637D5-1363-4EDF-936B-DE7B2806EFC5}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{B4E40423-F0BD-47FE-8586-599FF0974766}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{E93FFC9F-EE0A-40BE-9282-6988F1DD2A97}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{6A56C4B8-3285-48A9-BCA7-AC6143AD799A}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{4172AA0E-03DC-459E-857F-978BA8F2A2C5}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{3C9AF9D4-1AC1-4C78-B616-C6D09C865C8D}] => (Allow) C:\WINDOWS\TEMP\nfyc577A.tmp\svchost.exe => No File
FirewallRules: [{73515F63-3676-4396-A7BA-4D32EFD6AEDA}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [{F7E2A10C-EACE-42B7-ACD3-1639D49E0C2B}] => (Allow) C:\WINDOWS\TEMP\flt354IS.tmp\lsass.exe => No File
FirewallRules: [TCP Query User{33594C29-E494-4D8E-ACD1-3E727712BBB7}C:\program files (x86)\cobian backup 11\cbremotemanager.exe] => (Block) C:\program files (x86)\cobian backup 11\cbremotemanager.exe => No File
FirewallRules: [UDP Query User{63A03A73-0FD4-48FC-AE3A-6277AD0F2381}C:\program files (x86)\cobian backup 11\cbremotemanager.exe] => (Block) C:\program files (x86)\cobian backup 11\cbremotemanager.exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Někdo je v mém PC

Napsal: 07 dub 2021 08:08
od not_ketchupp
Takže mám jít na plochu a založit nový text dokument a do něj zkopírovat tu zprávu co jste poslal. Potom mám jít do toho FRST64 a dát ,,FIX". To jsem dal a píše to co jse muložil do přílohy

Re: Někdo je v mém PC

Napsal: 07 dub 2021 09:35
od Rudy
Otevřete poznámkový blok, zkopírujete do něj text z mého postu, uložíte do stejného adresáře, v kterém je FRST jako fixlist.txt (nepřeklepnout se, nejčastější chyba je, že je vypsána přípona txt 2x - to nesmí být) a pak otevřít znovu FRST a kliknout na "Fix". Proběhne mazání a po něm restart PC. Při novém startu se zobrazí fixlog, který sem zkopírujete. Podle přiloženého obrázku máte fixlist buď někde jinde, nebo jste ho chybně uložil.

Re: Někdo je v mém PC

Napsal: 07 dub 2021 11:08
od not_ketchupp
Já právě nevím kde je to místo kde je ten adresář.

Re: Někdo je v mém PC

Napsal: 07 dub 2021 12:58
od Rudy
Bože můj! Když jste dával logy FRST+Addition, spouštěl jste FRST z plochy (C:\Users\Milospc\Desktop). Plocha je také adresář. Pokud jste FRST někam nepřemístil, musí tam být. Proto jsem vám dával do postu, abyste uložil fixlist na plochu. Proto do poznámkového bloku zkopírujte ten text z mého postu z z 6.4. 8:18pm hod a uložte ho na plochu (nebo tam, kde máte nyní FRST) podle návodu z mého postu ze 7.4. 9:35am hod.

Re: Někdo je v mém PC

Napsal: 08 dub 2021 08:50
od not_ketchupp
Už se mi to povedlo, ale po restartování se mi to neotevřelo. Co mám teď dělat???

Re: Někdo je v mém PC

Napsal: 08 dub 2021 09:30
od Rudy
To se někdy stává, oba logy najdete na ploše v souborech frst.txt a addition.txt. Soubory otevřte a text, který v nich najdete, zkopírujte sem.

Re: Někdo je v mém PC

Napsal: 08 dub 2021 11:23
od not_ketchupp
Nemůžu to sem poslat, protože to má moc slov. Co mám dělat??

Re: Někdo je v mém PC

Napsal: 08 dub 2021 11:24
od not_ketchupp
Tady je první půlka FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-04-2021
Ran by Milospc (administrator) on DESKTOP-HA2U350 (Dell Inc. OptiPlex 9010) (06-04-2021 15:26:24)
Running from C:\Users\Milospc\Desktop
Loaded Profiles: Milospc
Platform: Windows 10 Pro Version 1903 18362.1256 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
() [File not signed] C:\Program Files (x86)\Wondershare\dr.fone - Virtual Location (iOS)\Addins\VirtualLocation\ElevationService.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Comodo Security Solutions -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\COMODO Secure Shopping\csssrv64.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <4>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\CryptoTabCrashHandler.exe
(CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU) C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\CryptoTabCrashHandler64.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskService.exe
(Datronicsoft, Inc. -> datronicsoft) C:\Windows\System32\spacedeskServiceTray.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\89.0.4389.25\remoting_host.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <21>
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(libMPVPlayer) [File not signed] C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\plugins\libMPVPlayer\libMPVPlayer.exe
(livelySubProcess) [File not signed] C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\plugins\subproc\livelySubProcess.exe
(livelywpf) [File not signed] C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\livelywpf.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Milospc\AppData\Local\Microsoft\Teams\current\Teams.exe <10>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\CompPkgSrv.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\conhost.exe <3>
(Microsoft Corporation) [File not signed] C:\Windows\System32\ctfmon.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\dasHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\dwm.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\rundll32.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchFilterHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchIndexer.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchProtocolHost.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\System32\sihost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\spoolsv.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wbem\WmiPrvSE.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\System32\winlogon.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\WUDFHost.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.38.25003.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe <2>
(Pango Inc. -> Pango Inc.) C:\Program Files (x86)\Hotspot Shield\10.12.1\bin\cmw_srv.exe
(Pango Inc. -> Pango Inc.) C:\Program Files (x86)\Hotspot Shield\10.12.1\bin\hsscp.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(remotemouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
(RemoteMouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\WINDOWS\system32\SecurityHealthSystray.exe [84992 2020-02-12] (Microsoft Corporation) [File not signed]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353784 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [824240 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [10140904 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [CryptoTab Browser] => C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [2059304 2020-12-23] (CRYPTOCOMPANY OÜ -> The Chromium and CryptoTab Browser Authors)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [94898944 2020-08-04] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5035416 2019-09-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [441448 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [33792 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [27648 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-20\...\Policies\system: []
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33036768 2021-03-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-03-23] (Valve -> Valve Corporation)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [uTorrent] => C:\Users\Milospc\AppData\Roaming\uTorrent\uTorrent.exe [2133032 2021-03-17] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Milospc\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-03-24] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [VideoWallpaper] => C:\BioniX Video Wallpaper\VideoWallpaper.exe [3892224 2018-03-11] (CubicDesign) [File not signed]
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [GoogleChromeAutoLaunch_9BD91CCC5AEC38B40BE9587F2DA521BE] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Chromium] => "c:\users\milospc\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1747288 2021-03-18] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Discord] => C:\Users\Milospc\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [WallpaperEngine] => C:\Users\Milospc\Downloads\wallpaper engine 1.1.341\wallpaper_engine\wallpaper32.exe [2578936 2020-11-26] (Kristjan Skutta -> )
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792272 2021-01-13] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [livelywpf] => C:\Users\Milospc\AppData\Local\Programs\Lively Wallpaper\livelywpf.exe [195072 2021-01-11] (livelywpf) [File not signed]
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [Voicemod] => C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe [5682320 2021-02-25] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144760 2021-04-06] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Policies\system: []
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {0a8c0ab8-f8d2-11e9-bb97-90b11c8dc496} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {37fb3f5a-5b62-11ea-bbb0-001a7dda7111} - "F:\setup.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {393bbffe-687f-11eb-bd62-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {cc47666b-0d5d-11eb-bccb-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\...\MountPoints2: {da0f45c8-aaf8-11ea-bc54-90b11c8dc496} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-19\...\Policies\system: []
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session
HKU\S-1-5-18\...\Policies\system: []
HKLM\...\Providers\Internet Print Provider: C:\WINDOWS\system32\inetpp.dll [177664 2019-10-07] (Microsoft Corporation) [File not signed]
HKLM\...\Providers\LanMan Print Services: C:\WINDOWS\system32\win32spl.dll [863232 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [44544 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Appmon: C:\WINDOWS\system32\AppMon.dll [113152 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Local Port: C:\WINDOWS\system32\localspl.dll [1184256 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\WINDOWS\system32\FXSMON.DLL [46592 2019-03-19] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\WINDOWS\system32\tcpmon.dll [222720 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\USB Monitor: C:\WINDOWS\system32\usbmon.dll [862208 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\WSD Port: C:\WINDOWS\system32\APMon.dll [1375232 2021-01-26] (Microsoft Corporation) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-09-17]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk [2020-09-17]
ShortcutTarget: simplicheck.lnk -> C:\Program Files (x86)\simplitec\simplicheck\simplicheck.exe (simplitec GmbH -> simplitec)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Splashtop Wired XDisplay Agent.lnk [2021-03-29]
ShortcutTarget: Splashtop Wired XDisplay Agent.lnk -> C:\Program Files (x86)\Splashtop\Splashtop Wired XDisplay\Agent\SWXDAgent.exe (Splashtop Inc. -> Splashtop Inc.)
Startup: C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FuzeTV.lnk [2021-04-05]
ShortcutTarget: FuzeTV.lnk -> C:\Users\Milospc\AppData\Local\Overwolf\Extensions\dafpjodfmofenjonekfnkphpghegoekhfepmbmib\0.9.9.2368\plugins\agent\FuzeTV.exe (Quarterback Inc.) [File not signed]
Startup: C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HoneygainUpdater.lnk [2021-04-05]
ShortcutTarget: HoneygainUpdater.lnk -> C:\Users\Milospc\AppData\Roaming\Honeygain\HoneygainUpdater.exe (OOO "XMAC" -> Honeygain)
Startup: C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2020-09-01]
ShortcutTarget: Twitch.lnk -> C:\Users\Milospc\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
Startup: C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk [2020-06-17]
ShortcutTarget: IMVU.lnk -> C:\Users\Milospc\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe (No File)
Startup: C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-12-03]
ShortcutTarget: Twitch.lnk -> C:\Users\Milospc\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01C5B377-A7EB-4FF3-9C6C-86852FACB348} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\WINDOWS\system32\ProvTool.exe [84480 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {01E148B7-E844-409B-90A6-7BC643B92EF5} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047} C:\WINDOWS\System32\ReAgentTask.dll [13824 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {01F94132-A3BF-4AD3-BA30-D631FD3A67CA} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {027D2824-ECCD-438B-A4EA-D7A4EF86A06F} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-B242-4FA8-8C25-CAF695B88209} C:\Windows\System32\pnppolicy.dll [56832 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {04C10A9D-5360-47B2-9C96-2DDBCE8EC3F7} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [119296 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {058BE07E-575F-42CA-894B-6A8F9716F16E} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {CA767AA8-9157-4604-B64B-40747123D5F2} C:\WINDOWS\System32\regidle.dll [15872 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {066611CA-B68B-4C48-B3E6-E80FC0B7545E} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {C27F6B1D-FE0B-45E4-9257-38799FA69BC8} C:\WINDOWS\System32\usbceip.dll [123392 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {07B85E51-23DD-4E95-912E-62B91AA468FB} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {083F3813-82BC-4622-A1B0-070C619B7D11} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => C:\WINDOWS\system32\mitigationscanner.exe [58880 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {08AFBCF4-A922-42D7-AB8F-59B75BA130B4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22763912 2021-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {0903A339-04A3-4976-8F4E-DDDD3CD546FB} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\WINDOWS\system32\DFDWiz.exe [52736 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {0929591E-A4DD-41E2-8B92-DDA848EBDDC3} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\WINDOWS\system32\TimeSyncTask.dll [14848 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {0A2D0DE7-8550-4F4A-87DD-61785557564A} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\WINDOWS\system32\defrag.exe [186880 2020-02-12] (Microsoft Corp.) [File not signed]
Task: {0B76A047-5E0D-48D6-97E9-1CB6702F8832} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\WINDOWS\System32\wsqmcons.exe [92672 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {0C7D8A27-9B28-49F1-979C-AD37C4D290B1} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\WINDOWS\system32\appidcertstorecheck.exe [19456 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {0CB1E455-09EB-4AE0-8957-20C1CC45B289} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0D4254FC-C2E0-4C43-AAE5-DB986C14E087} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\WINDOWS\System32\dusmtask.exe [37888 2020-03-10] (Microsoft Corporation) [File not signed]
Task: {0F8187C2-B821-410E-95AE-9B5D0065CD06} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} C:\Windows\System32\WorkFoldersShell.dll [225792 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {105D676A-D551-4274-81E7-97AC52E4FD87} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\WINDOWS\system32\speech_onecore\common\SpeechRuntime.exe [284160 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {12B77A7C-1DDB-48D8-9A89-E91548474357} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications => {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} C:\Windows\System32\UsbTask.dll [54784 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {15975FEC-F71A-4FF3-9831-53024113DA95} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {18192CBE-3B5C-4E7A-92AD-368C4F8745EE} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\WINDOWS\system32\RAServer.exe [134144 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {18C07FF5-0EB8-4956-BE65-FF8BF2023095} - System32\Tasks\CryptoTabUpdateTaskMachineCore => C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
Task: {1B0C0498-944F-4BAA-A51E-1D4376253762} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\WINDOWS\system32\BthUdTask.exe [40448 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {1B813E0C-2BBF-4EFE-9108-D9D020D465F2} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97D47D56-3777-49FB-8E8F-90D7E30E1A1E} C:\Windows\System32\WorkFoldersShell.dll [225792 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {1C654285-C780-4C07-8D95-D950BB7A03E7} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {1FD82FBC-B8E1-4418-9252-DCB00E106E2E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {21AC9D73-9E12-493B-9E70-8446634E3E41} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3915216 2021-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {21ACA54C-4987-4CDC-AD8E-6929BFD41CD4} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync => {2AE64751-B728-4D6B-97A0-B2DA2E7D2A3B} C:\Windows\System32\srmclient.dll [1316352 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {220D3535-F0C2-4BE0-9FA8-341454F3B598} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {231CFD74-36FE-44CC-88F6-83B9704DFE93} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {2758C66F-29D7-40AD-9559-2825ED905C29} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [288768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {28DCC145-28F5-41E5-9506-ADDA91CD4966} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [288768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {29C0F4DC-19CC-4E6C-96FA-C910ECB14B49} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [270848 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {2F07DB8D-A9E5-462B-B97A-F0ACBF417792} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {C463A0FC-794F-4FDF-9201-01938CEACAFA} C:\WINDOWS\system32\rasmbmgr.dll [62464 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {30526E35-00F9-4BED-9846-7BBC937831E9} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} C:\Windows\System32\pstask.dll [15872 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {3066949F-5A76-4F4C-9C87-A14A649A6273} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3472D253-581F-4480-8539-784D74361402} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\WINDOWS\system32\dstokenclean.exe [13312 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {34E8CE7D-77E5-4405-AE3D-26816C4C69C8} - System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check => C:\WINDOWS\System32\dsregcmd.exe [1057280 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {35A41E3D-CFF5-4BAA-97C7-2C61FE6BAD5B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {37451B14-51B7-4CD1-8BAF-982132260ECB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3810C063-8759-4D54-A834-4BEA5D6BFBE4} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {3A1B0B58-9995-4BB3-8503-355FADC9B273} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118128 2021-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C45C6F0-0D32-4C27-9336-7B982C77F32E} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync => {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {3D8E83D8-967E-44AC-8896-42CDEC763404} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser => {DDAFAEA2-8842-4E96-BADE-D44A8D676FDB} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {3E7650E7-DBA3-4B90-8D84-4232AE8A029F} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh => {711001CD-CC1D-4470-9B7E-1EF73849C79E} C:\WINDOWS\System32\MitigationConfiguration.dll [83968 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {3EBAF09A-814C-4FB9-9F00-8BB931BFE845} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\WINDOWS\system32\bcdboot.exe [231424 2021-01-26] (Microsoft Corporation) [File not signed] -> %windir% /sysrepair
Task: {40378C7B-CE71-41E6-9B6F-EDE9D47789DE} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {416FBFEF-09C2-4D51-9358-72205B2F5ED3} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {417D2A3C-0AC4-4F5D-BF29-B0E233E5E9D3} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager => {DECA92E0-AF85-439E-9204-86679978DA08} C:\WINDOWS\System32\AppLockerCsp.dll [382464 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {41CA9CE0-97C5-41E7-8CA1-BE31A9724ED5} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\WINDOWS\System32\DeviceSetupManagerAPI.dll [157696 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe [116224 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {4611D11D-8D71-42E5-A255-6C9F03CFD64A} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927EA2AF-1C54-43D5-825E-0074CE028EEE} C:\WINDOWS\System32\energytask.dll [26112 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {4883F702-0BF0-4E53-8F23-A305A15F3E96} - System32\Tasks\NCH Software\VoxalDowngrade => C:\Program Files (x86)\NCH Software\Voxal\voxal.exe [2359856 2020-05-14] (NCH Software, Inc. -> NCH Software)
Task: {48F207D2-23BE-4F26-A115-B05B486F6CA6} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates => {D5A04D91-6FE6-4FE4-A98A-FEB4500C5AF7} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {4A61BCE1-02FC-4F8D-AD7D-06CC80F2C130} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {4B79A419-F671-47D7-B001-888A456864AE} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358B920-0AC7-461F-98F4-58E32CD89148} C:\WINDOWS\system32\wininet.dll [5041152 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {4D496758-CF92-424B-8FC7-E95278FD13F2} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask => {C844C79D-AED8-4DCE-AB25-4D359BED84F8} C:\WINDOWS\System32\WpcRefreshTask.dll [1127936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {4DDF305C-E963-45BE-A8F0-DB2A76C9E03C} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {517F026C-D476-4CF5-B42E-23D757B36DB5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51B7FB15-4DCB-400E-9A98-10E802F21FB3} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceScreenOnOff => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {52C1F2DA-58AA-494C-8D61-BFE8A0FC2285} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {52D32770-F5E2-485C-BFB6-D56C6A1F66A9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3915216 2021-02-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {54DE0277-1082-4A96-B69E-EA4580E78494} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {55412461-F053-4583-A6BF-19F36DAAD46D} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates => {A558C6A5-B42B-4C98-B610-BF9559143139} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {5679B6F1-0B05-4230-872B-BB64877ABA76} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\WINDOWS\system32\defrag.exe [186880 2020-02-12] (Microsoft Corp.) [File not signed]
Task: {574B26F9-094B-45B5-895D-C171342ABE5D} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} C:\WINDOWS\System32\wdi.dll [101888 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {58288CB7-4BC3-4408-B52F-202304CE9DCD} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {5C4B9292-73EC-4C99-9592-56E827AED280} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {6099772D-A604-4768-AE38-C3B7ED2BBFEE} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [203264 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {613A083C-17CD-47F4-AC35-96FC308E59CF} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [23040 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {626B896E-799D-4D32-855B-365F98ECB3C7} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => {59EECBFE-C2F5-4419-9B99-13FE05FF2675} C:\Windows\System32\fcon.dll [186880 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {62F10519-A66D-4FBA-86BD-78D0ED32E65D} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {641EC4E1-3857-4C7C-B363-15EE8CB31515} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization => {5C9AB547-345D-4175-9AF6-65133463A100} C:\Windows\System32\TieringEngineService.exe [316928 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {64BFE52D-B5D0-41D9-B3AF-EE6F0A81EC3C} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\WINDOWS\System32\WindowsActionDialog.exe [60928 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {653F27FF-7055-487F-B48C-8735F7653035} - System32\Tasks\Opera scheduled assistant Autoupdate 1580632950 => C:\Users\zimul\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-15] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\zimul\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {65733B1D-D145-4770-90BC-BF3772E1FAD8} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} C:\WINDOWS\system32\msdrm.dll [558592 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {66D2CBB0-974D-409B-9790-4A078497AB23} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask => {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} C:\WINDOWS\System32\mapsupdatetask.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {68560DFD-FC67-4EF8-BAA4-7F72211F3FD5} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\WINDOWS\system32\dxgiadaptercache.exe [221696 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {69900606-33B9-4502-A49E-9EE698C18CE6} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\WINDOWS\system32\WinSATAPI.dll [372224 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {6BB72D11-596C-469A-A80D-59204414F0CA} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask => {A4173A49-F373-4475-9A0F-2D615204DC20} C:\WINDOWS\system32\SettingSyncCore.dll [1068544 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {6CD70278-3C30-4E8E-A585-8D9E5CAB415F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {6DFFC692-7C61-4464-A3FE-FDCB4971D08E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {71BFB70C-91A5-41C9-B858-C9DACBEF4900} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {73CB9900-BD4D-4C69-9F68-6746AE3BB44B} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry => {F3A219C3-2698-4CBF-9C07-037EDB8E72E6} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {73FC8827-86B7-42C0-A8B2-9ED4B51C1DD8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {798DB582-30ED-4D82-974F-12178BC4D55A} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\WINDOWS\system32\speech_onecore\common\SpeechModelDownload.exe [199168 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {7AADA666-6F65-426C-A00E-8ED54D8CB243} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\WINDOWS\system32\lpremove.exe [71680 2020-03-10] (Microsoft Corporation) [File not signed]
Task: {7FBDDC9A-D7DB-4F90-B8CE-4973E5018DF5} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [270848 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {823F7188-5012-42FC-84D6-FA377D85C79C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateModelTask => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {860A8CAD-AFF2-457F-B775-969A8D6A5DF6} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {874EA78F-0006-477B-84BD-028C6BB0BB53} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {87AFF330-84D7-4F41-8C8B-8613DACE0F29} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22763912 2021-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {894C4E69-300D-4AAE-A37A-B8E3DBDA563B} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\WINDOWS\System32\PlaySndSrv.dll [88576 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {8C98D672-4609-44AB-A110-C69A24302A66} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {8CE419DE-4815-423C-8287-51CEF62C7937} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync => {B0D2B535-12E1-439F-86B3-BADA289510F0} C:\Windows\System32\WiFiCloudStore.dll [274432 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {8F8CC6BA-5AA5-49F4-A5AD-49AE3816F0FC} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {8F8F5002-8ACA-43DD-A747-2F4CA7E36AF8} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\WINDOWS\System32\dsregcmd.exe [1057280 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {90CE3D49-DC7D-423D-B25E-68AD4719F489} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {94C7344C-6979-41EC-B85B-18A45F2F5A7B} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {95AC8E0E-8CCC-4E40-B94F-BBE3BC6E67BF} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
Task: {99F8855E-6B59-43EA-B38C-9033B396C776} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6A1F-47B9-BD52-1D5F95D49C1B} C:\Windows\System32\pnpui.dll [41984 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {9A2316CF-1A8D-46AB-931E-C6471643E44F} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [29696 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {9C96CA27-ED37-49E6-A1BF-90E35E900502} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\AC Power Download => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {9CB9760E-A5CF-40B2-AA8B-66B3D69315E7} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\WINDOWS\system32\ProvTool.exe [84480 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {9E42E54A-6BB4-4F7E-892C-2C5183F55B20} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\WINDOWS\system32\eduprintprov.exe [97280 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {A1A4F90B-9598-45B7-85D2-AE21B341085D} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [32768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {A28C777F-CE3B-4DD2-BE34-70D4EC7AF28F} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {A3B63C25-FB73-4449-B359-BE1BF54BF94B} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1212909314-1353993095-2117482179-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2021-01-26] () [File not signed]
Task: {A6165C74-12A1-4101-91D5-5A8DA8F17062} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A6432082-89BD-434D-9C61-D7FE6D91CCB9} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [525824 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {A806A8FA-C7FE-4770-BFDF-90F6A40E3DEF} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {A8E26236-4D4B-46F7-AAF3-75902A32BB15} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {AFEDA958-2E8D-446F-AF75-73FE5A229E67} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\WINDOWS\System32\fhtask.dll [59392 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {B0D31043-BAFF-492E-9529-80DA1BA753BE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B1F05AAE-0807-4546-A86E-6C5DE167E635} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {B241FCBE-C6B6-4F12-9A5C-DD58A9D6CE18} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {B320E058-C6FA-413F-876B-0C9B4428AE66} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic6 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {B4BD993A-BFA8-4F52-8682-6F2E90185FE9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {B54A4AF8-4B81-482A-A3B6-3D2E479F5A6C} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\WINDOWS\system32\tzsync.exe [62464 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {B75AF762-3C5C-4C74-ADB1-B99F98FDE0E5} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [43520 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {B8F0DEC7-8392-4F57-9990-74FCB934033F} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [505856 2021-01-26] () [File not signed]
Task: {BAA487E1-378C-45A5-B980-69A7EB04C773} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855FEC53-D2E4-4999-9E87-3414E9CF0FF4} C:\WINDOWS\system32\wdc.dll [712192 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {BAF24219-FE08-415A-971A-634E210595D1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {BB08CB1A-B958-4F06-B318-F618C2015A83} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {BB5C9F82-7A27-4979-82BD-45739449A876} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\WINDOWS\system32\disksnapshot.exe [92160 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {BC927B45-3B28-42C1-A010-9332469BF93A} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\WINDOWS\system32\appidpolicyconverter.exe [158720 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {BD3E4945-8C27-4F29-A3B4-B7B6D208AC6A} - System32\Tasks\Opera scheduled Autoupdate 1580632930 => C:\Users\zimul\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-15] (Opera Software AS -> Opera Software)
Task: {BEF19949-EFA3-412C-8B8E-BC3B749C325D} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange => {77646A68-AD14-4D53-897D-7BE4DDE5F929} C:\Windows\System32\TempSignedLicenseExchangeTask.dll [73728 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C0B065A7-75E9-4CF8-B9D3-54E630EA447A} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\WINDOWS\System32\srchadmin.dll [207872 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C1DC52D1-949D-4DE7-BD2F-FF91C6A0C4BF} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\WINDOWS\system32\srtasks.exe [57856 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {C1E433E6-9861-4183-BE6F-ABC6F79B37D3} - System32\Tasks\Microsoft\Windows\Offline Files\Logon Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [805888 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {C27B0967-C9D0-4B0B-9095-FC1ED785BEB6} - System32\Tasks\CryptoTabUpdateTaskMachineUA => C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
Task: {C391351C-0F98-447E-B3F3-F932910C72FD} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\WINDOWS\system32\dmclient.exe [120320 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C3FCA668-3E80-4CE7-BF22-923EF0E3331B} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C6B2579B-4962-4D12-883D-BBD420573A6C} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic1 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {C7BEACF3-363F-42F9-A68C-203392B534AA} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask => {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} C:\WINDOWS\system32\SettingSyncCore.dll [1068544 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {C7FCDE46-F8B6-4BB7-AA32-DFF92C6B74DC} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\WINDOWS\System32\LocationNotificationWindows.exe [67584 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {C839CDAC-DF3D-4246-BE87-8BE6864A9971} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\WINDOWS\system32\SpaceAgent.exe [137728 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {CAA8BA80-3E72-4BC5-AA78-9F8151EF7C12} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\WINDOWS\system32\directxdatabaseupdater.exe [285696 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {CD19BC8A-E9FE-49ED-92A5-0E1194F69F00} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\WINDOWS\System32\XblGameSaveTask.exe [32768 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {CDF00375-8FBD-4B07-8CE2-623C538E9885} - System32\Tasks\Microsoft\Windows\Offline Files\Background Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [805888 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {D060ACCC-E8C3-4CC7-8505-42F7595F510D} - System32\Tasks\S-1-5-21-1212909314-1353993095-2117482179-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [134656 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {D19A2726-897E-4F7D-9CE4-0773B449CE9E} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceConnectedToNetwork => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {D1D7A402-E8A4-4666-8CD3-8F4EE447CB15} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {D526F1B7-E23F-4247-BCCF-702C809AC81A} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {D6B6B3B0-5971-46A3-932B-CEAD3576353C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task => C:\WINDOWS\system32\usoclient.exe [72192 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {D7603DFD-C214-4EA9-AED2-7A9EF224A164} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {C1F85EF8-BCC2-4606-BB39-70C523715EB3} C:\WINDOWS\System32\sdiagschd.dll [52224 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {D838E882-FEE4-4C1F-B148-90A12DFCC669} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [525824 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {DAE12BEE-AF8C-4826-8A2D-E22471168A4D} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [119296 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {DD2DA744-02CE-47EC-A045-836D4197D1ED} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [70144 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {DF8ABE54-47C9-4567-8DD0-36F92A2CC529} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates => {0DC331EE-8438-49D5-A721-E10B937CE459} C:\Windows\System32\InstallServiceTasks.dll [231936 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E215B699-95A9-44CD-A30F-ECEEDA4BFAE6} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\WINDOWS\system32\dmclient.exe [120320 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {E2D2FD73-2DBE-49C3-BFE1-60E31CE6B324} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {E341CA12-CA83-4931-BB01-FCCA79E7FEA6} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\WINDOWS\system32\sdclt.exe [1214976 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E4AE0786-E39C-4622-97A1-66FE512A2D02} - System32\Tasks\ebtools => C:\Program Files (x86)\EUROBYTE TOOLS\vp4.exe [298016 2020-04-21] (EUROBYTE SOFTWARE s.r.o. -> OEM) [File not signed]
Task: {E4AEB720-7F18-419F-A20E-6E0B5C4ED968} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E609D366-10F0-4EC1-96C8-1F8161C673C5} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\WINDOWS\system32\MDMAgent.exe [116224 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {E9584198-7911-470F-A652-045B6281107C} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\WINDOWS\system32\cleanmgr.exe [71168 2019-03-19] (Microsoft Corporation) [File not signed] -> /autoclean /d %systemdrive%
Task: {E9A46D73-1D61-4419-90FD-B0B371A44777} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {EA814992-5134-4103-96EC-7B52403B2906} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\WINDOWS\System32\drvinst.exe [173568 2019-10-08] (Microsoft Corporation) [File not signed]
Task: {EBAEFAE2-A347-4F0A-89A9-82871C110AAD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDBDB6CB-814E-4646-938E-ABC65706505A} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [270848 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {EFAB0670-5690-4709-9131-565A99AE53D6} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
Task: {F02B389F-2CC0-47DE-B0A6-F99BA3FCC5F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [525824 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F06683BC-B272-42F2-A7ED-D41A4491FEFD} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\WINDOWS\system32\msdrm.dll [558592 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {F200B6AE-7AD3-4DF7-B3EB-F1356CA5D011} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe [621056 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F2E8AA59-252D-4EA4-AF79-32DB90AB50D6} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\WINDOWS\System32\XblGameSaveTask.exe [32768 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F3256766-85DF-42A9-81FD-A1BAD3C4791C} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache => {E07647F7-AED2-48D9-9720-939BC24A8A3C} C:\Windows\System32\wosc.dll [245248 2019-10-07] (Microsoft Corporation) [File not signed]
Task: {F369958F-78A7-4AF3-9208-D840060ECE2F} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense => {AB2A519B-03B0-43CE-940A-A73DF850B49A} C:\WINDOWS\system32\StorageUsage.dll [130560 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {F380C283-F2BA-4E42-95DB-2BC0C6CFFF86} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [32768 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {F4DA128A-8466-4406-8794-0387F6912827} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [29696 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {F71BF14A-F1A9-4341-B2BD-03245185E2A2} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [108032 2019-11-15] (Microsoft Corporation) [File not signed]
Task: {F9239244-50E0-43C1-9235-39D5254C1404} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {F983E937-6426-4EB2-BBC3-9E94E3752925} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask => {9885AEF2-BD9F-41E0-B15E-B3141395E803} C:\WINDOWS\System32\mapstoasttask.dll [53760 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {FA103B2E-5EB2-499F-9443-9765F29C7B5B} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [203264 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {FB215B8A-3318-456D-8280-2EF10CF64C2A} - System32\Tasks\Services\Diagnostic => C:\Users\Milospc\AppData\Local\Disk\AutoIt3\AutoIt3_x64.exe -> "C:\Users\Milospc\AppData\Local\Disk\AutoIt3\Settings.au3"
Task: {FD261B7D-CF4B-4CFD-BA92-42D7565A51D6} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} C:\WINDOWS\system32\MsCtfMonitor.dll [89600 2019-03-19] (Microsoft Corporation) [File not signed]
Task: {FD99B9AA-26F4-41C8-A511-227192E65CF5} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [291328 2021-01-26] (Microsoft Corporation) [File not signed]
Task: {FED6F514-FB19-4DDC-983D-22A587403459} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118128 2021-03-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

Re: Někdo je v mém PC

Napsal: 08 dub 2021 11:28
od not_ketchupp
Druhá část souboru FRST.txt
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-20] => Proxy is enabled.
ProxyServer: [S-1-5-20] => 127.0.0.1:8080
ProxyServer: [S-1-5-21-1212909314-1353993095-2117482179-1001] => 127.0.0.1:8080
ProxyEnable: [S-1-5-19] => Proxy is enabled.
ProxyServer: [S-1-5-19] => 127.0.0.1:8080
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\winrnr.dll [23552 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\NLAapi.dll [70144 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [50688 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [68096 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [86528 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [86528 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 05 C:\Windows\System32\winrnr.dll [31232 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 06 C:\Windows\system32\NLAapi.dll [93184 2021-01-26] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 07 C:\Windows\system32\wshbth.dll [64000 2019-03-19] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{39e13112-3809-4051-a0fd-994ebc0e82cc}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{c08b1ae4-b2c1-43dc-b62d-bf54a1d0efe5}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{c08b1ae4-b2c1-43dc-b62d-bf54a1d0efe5}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{debc0501-d7a1-4e10-ad4b-7e7d52c1667f}: [DhcpNameServer] 8.8.8.8
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
DownloadDir: C:\Users\Milospc\Downloads

FireFox:
========
FF DefaultProfile: zpb0iizu.default
FF ProfilePath: C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\zpb0iizu.default [2021-01-16]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\zpb0iizu.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-12-05]
FF Extension: (Seznam doplněk - Email) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\zpb0iizu.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-12-05]
FF ProfilePath: C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\8wejbjcc.default-release [2021-03-16]
FF Extension: (Mozilla Official) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\8wejbjcc.default-release\Extensions\{14553439-2741-4e9d-b474-784f336f58c9} [2020-08-31] [not signed]
FF Extension: (Greasemonkey) - C:\Users\Milospc\AppData\Roaming\Mozilla\Firefox\Profiles\8wejbjcc.default-release\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2021-03-08]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-01-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.CryptoTab.com/CryptoTab Update;version=3 -> C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\npCryptoTabUpdate3.dll [2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
FF Plugin-x32: @tools.CryptoTab.com/CryptoTab Update;version=9 -> C:\Program Files (x86)\CryptoCompany\Update\1.3.99.31\npCryptoTabUpdate3.dll [2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default [2021-04-06]
CHR Notifications: Default -> hxxps://meet.google.com
CHR Extension: (Prezentace) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-08]
CHR Extension: (Dokumenty) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-08]
CHR Extension: (Disk Google) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-19]
CHR Extension: (YouTube) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-08]
CHR Extension: (uBlock Origin) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-03-29]
CHR Extension: (Adblock na Youtube™) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2021-02-01]
CHR Extension: (Deadpool Full Screen Theme) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\echjomhoplepodjjaaohelfnlnoelhgd [2021-03-22]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2021-03-18]
CHR Extension: (Tabulky) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-08]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-04-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-09]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-03-18]
CHR Extension: (Avast Online Security) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-03-22]
CHR Extension: (Cyrilometodějská církevní ZŠ (Pro rodiče a žáky)) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpdiodnkhijjlncmmhpjdkgpihchjdap [2021-02-01]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-03-18]
CHR Extension: (Swift Select) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\molponhobmbbinjnghgafbfampcgamln [2021-03-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Antivirus Totall Protection) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\npegaambembapehhcojbmdalajagajio [2021-02-07]
CHR Extension: (N-bot - Microsoft Teams Online class Attender) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\onbankppjhoeccfkpnhogojjllbefglb [2021-02-01]
CHR Extension: (Gmail) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-31]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-26]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-02-01]
CHR Extension: (Prezentace) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-17]
CHR Extension: (Dokumenty) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-17]
CHR Extension: (Disk Google) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-17]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2021-02-01]
CHR Extension: (YouTube) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-17]
CHR Extension: (Tabulky) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-17]
CHR Extension: (Chrome Media Router) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-01]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-03]
CHR Profile: C:\Users\Milospc\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-26]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1212909314-1353993095-2117482179-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\Milospc\AppData\Roaming\Opera Software\Opera Stable [2020-12-19]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1271808 2021-01-26] (Microsoft Corporation) [File not signed]
R2 nsi; C:\WINDOWS\System32\nsisvc.dll [30720 2019-11-15] (Microsoft Corporation) [File not signed]
U3 AarSvc; C:\WINDOWS\System32\AarSvc.dll [195584 2021-01-26] (Microsoft Corporation) [File not signed]
U4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [10316304 2019-09-23] (Acronis International GmbH -> )
U2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1254784 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6399680 2021-01-03] (Acronis International GmbH -> )
U3 AJRouter; C:\WINDOWS\System32\AJRouter.dll [25088 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ALG; C:\WINDOWS\System32\alg.exe [94720 2019-03-19] (Microsoft Corporation) [File not signed]
U2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3743464 2021-03-09] (philandro Software GmbH -> philandro Software GmbH)
U3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [82944 2021-01-26] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [162304 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [198656 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppMgmt; C:\WINDOWS\SysWOW64\appmgmts.dll [160768 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [710144 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [3735552 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AssignedAccessManagerSvc; C:\WINDOWS\System32\assignedaccessmanagersvc.dll [944640 2021-01-26] (Microsoft Corporation) [File not signed]
U2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [737792 2021-01-26] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [1943552 2021-01-26] (Microsoft Corporation) [File not signed]
U3 autotimesvc; C:\WINDOWS\System32\autotimesvc.dll [116224 2019-03-19] (Microsoft Corporation) [File not signed]
U3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [112128 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1393664 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [526336 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-03-07] (BattlEye Innovations e.K. -> )
U2 BFE; C:\WINDOWS\System32\bfe.dll [878080 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BITS; C:\WINDOWS\System32\qmgr.dll [1588224 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [534528 2021-01-26] (Microsoft Corporation) [File not signed]
U2 BrokerInfrastructure; C:\WINDOWS\System32\psmsrv.dll [237056 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Browser; C:\WINDOWS\System32\browser.dll [134656 2019-10-07] (Microsoft Corporation) [File not signed]
U3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [1077248 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BTAGService; C:\WINDOWS\SysWOW64\BTAGService.dll [705536 2021-01-26] (Microsoft Corporation) [File not signed]
U3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [382976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 bthserv; C:\WINDOWS\system32\bthserv.dll [223744 2021-01-26] (Microsoft Corporation) [File not signed]
U3 camsvc; C:\WINDOWS\system32\CapabilityAccessManager.dll [368640 2021-01-26] (Microsoft Corporation) [File not signed]
U3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [128512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 cbdhsvc; C:\WINDOWS\System32\cbdhsvc.dll [1125376 2021-01-26] (Microsoft Corporation) [File not signed]
U2 CDPSvc; C:\WINDOWS\System32\CDPSvc.dll [648192 2021-01-26] (Microsoft Corporation) [File not signed]
U2 CDPUserSvc; C:\WINDOWS\System32\CDPUserSvc.dll [521728 2021-01-26] (Microsoft Corporation) [File not signed]
U3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [192512 2021-01-26] (Microsoft Corporation) [File not signed]
U2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\89.0.4389.25\remoting_host.exe [72808 2021-01-27] (Google LLC -> Google LLC)
U2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8854920 2021-02-06] (Microsoft Corporation -> Microsoft Corporation)
U2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [21304 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U3 COMSysApp; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [19256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U3 ConsentUxUserSvc; C:\WINDOWS\System32\ConsentUxClient.dll [177664 2021-01-26] (Microsoft Corporation) [File not signed]
U2 cryptobrowser; C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
U3 cryptobrowserm; C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [181288 2020-08-26] (CRYPTOCOMPANY OÜ -> CRYPTOCOMPANY OU)
R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [96256 2019-03-19] (Microsoft Corporation) [File not signed]
U3 CscService; C:\WINDOWS\System32\cscsvc.dll [739840 2021-01-26] (Microsoft Corporation) [File not signed]
U2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [4054248 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [1260544 2021-01-26] (Microsoft Corporation) [File not signed]
U3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [494080 2020-02-12] (Microsoft Corporation) [File not signed]
U2 DeviceAssociationService; C:\WINDOWS\system32\das.dll [482816 2019-03-19] (Microsoft Corporation) [File not signed]
U3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [126976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [467456 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [338944 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [651264 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DevQueryBroker; C:\WINDOWS\system32\DevQueryBroker.dll [34816 2019-12-11] (Microsoft Corporation) [File not signed]
U2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [388608 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Dhcp; C:\WINDOWS\SysWOW64\dhcpcore.dll [321536 2021-01-26] (Microsoft Corporation) [File not signed]
U3 diagnosticshub.standardcollector.service; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [97792 2021-01-26] (Microsoft Corporation) [File not signed]
U3 diagsvc; C:\WINDOWS\system32\DiagSvc.dll [215040 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [3811328 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DispBrokerDesktopSvc; C:\WINDOWS\System32\DispBroker.Desktop.dll [405504 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DisplayEnhancementService; C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1190912 2020-03-10] (Microsoft Corporation) [File not signed]
U3 DmEnrollmentSvc; C:\WINDOWS\system32\Windows.Internal.Management.dll [935936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DmEnrollmentSvc; C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll [656896 2021-01-26] (Microsoft Corporation) [File not signed]
U3 dmwappushservice; C:\WINDOWS\system32\dmwappushsvc.dll [58368 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [350208 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DoSvc; C:\WINDOWS\system32\dosvc.dll [1607680 2021-01-26] (Microsoft Corporation) [File not signed]
U3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [268288 2021-01-26] (Microsoft Corporation) [File not signed]
U2 DPS; C:\WINDOWS\system32\dps.dll [169984 2019-03-19] (Microsoft Corporation) [File not signed]
U2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2259768 2021-03-10] (Comodo Security Solutions -> Comodo)
U3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [271872 2021-01-26] (Microsoft Corporation) [File not signed]
U3 DsSvc; C:\WINDOWS\System32\DsSvc.dll [157696 2020-02-12] (Microsoft Corporation) [File not signed]
U2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [358912 2020-03-10] (Microsoft Corporation) [File not signed]
U3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [110080 2019-03-19] (Microsoft Corporation) [File not signed]
U3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-09-15] (EasyAntiCheat Oy -> Epic Games, Inc)
U3 EFS; C:\WINDOWS\system32\efssvc.dll [79872 2019-03-19] (Microsoft Corporation) [File not signed]
U2 ElevationService; C:\Program Files (x86)\Wondershare\dr.fone - Virtual Location (iOS)\Addins\VirtualLocation\ElevationService.exe [960512 2020-07-31] () [File not signed]
U3 embeddedmode; C:\WINDOWS\System32\embeddedmodesvc.dll [172032 2019-03-19] (Microsoft Corporation) [File not signed]
U3 EntAppSvc; C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll [554496 2021-01-26] (Microsoft Corporation) [File not signed]
U2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1952768 2021-01-26] (Microsoft Corporation) [File not signed]
U2 EventSystem; C:\WINDOWS\system32\es.dll [401408 2021-01-26] (Microsoft Corporation) [File not signed]
U2 EventSystem; C:\WINDOWS\SysWOW64\es.dll [336384 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Fax; C:\WINDOWS\system32\fxssvc.exe [636416 2019-03-19] (Microsoft Corporation) [File not signed]
U3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [21504 2019-03-19] (Microsoft Corporation) [File not signed]
U3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [35328 2019-03-19] (Microsoft Corporation) [File not signed]
U2 fhsvc; C:\WINDOWS\system32\fhsvc.dll [120832 2019-03-19] (Microsoft Corporation) [File not signed]
U2 FontCache; C:\WINDOWS\system32\FntCache.dll [1885184 2021-01-26] (Microsoft Corporation) [File not signed]
U3 FrameServer; C:\WINDOWS\system32\FrameServer.dll [743936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-12-12] (NVIDIA Corporation -> NVIDIA)
U3 GraphicsPerfSvc; C:\WINDOWS\System32\GraphicsPerfSvc.dll [97792 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
U3 hidserv; C:\WINDOWS\system32\hidserv.dll [34816 2019-03-19] (Microsoft Corporation) [File not signed]
U3 hidserv; C:\WINDOWS\SysWOW64\hidserv.dll [29696 2019-03-19] (Microsoft Corporation) [File not signed]
U2 hshld_10.12.1; C:\Program Files (x86)\Hotspot Shield\10.12.1\bin\cmw_srv.exe [224368 2021-01-08] (Pango Inc. -> Pango Inc.)
U2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> )
U3 icssvc; C:\WINDOWS\System32\tetheringservice.dll [236032 2019-10-08] (Microsoft Corporation) [File not signed]
U2 IKEEXT; C:\WINDOWS\System32\ikeext.dll [1047040 2021-01-26] (Microsoft Corporation) [File not signed]
U3 InstallService; C:\WINDOWS\system32\InstallService.dll [2481664 2021-01-26] (Microsoft Corporation) [File not signed]
U3 InstallService; C:\WINDOWS\SysWOW64\InstallService.dll [1748480 2021-01-26] (Microsoft Corporation) [File not signed]
U2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [832000 2019-11-15] (Microsoft Corporation) [File not signed]
U3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [64512 2019-03-19] (Microsoft Corporation) [File not signed]
U2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
U3 KeyIso; C:\WINDOWS\system32\keyiso.dll [90624 2021-01-26] (Microsoft Corporation) [File not signed]
U3 KeyIso; C:\WINDOWS\SysWOW64\keyiso.dll [66560 2021-01-26] (Microsoft Corporation) [File not signed]
U3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [372224 2019-03-19] (Microsoft Corporation) [File not signed]
U2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [280064 2019-03-19] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [295936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 lfsvc; C:\WINDOWS\System32\lfsvc.dll [47104 2019-03-19] (Microsoft Corporation) [File not signed]
U3 LicenseManager; C:\WINDOWS\system32\LicenseManagerSvc.dll [50176 2019-03-19] (Microsoft Corporation) [File not signed]
U3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [265728 2019-03-19] (Microsoft Corporation) [File not signed]
U3 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [27136 2019-03-19] (Microsoft Corporation) [File not signed]
U2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
U2 LSM; C:\WINDOWS\System32\lsm.dll [676864 2021-01-26] (Microsoft Corporation) [File not signed]
U3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [340992 2021-01-26] (Microsoft Corporation) [File not signed]
U2 MapsBroker; C:\WINDOWS\System32\moshost.dll [92160 2019-03-19] (Microsoft Corporation) [File not signed]
U2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [952992 2021-03-26] (McAfee, LLC -> McAfee, LLC)
U3 MessagingService; C:\WINDOWS\System32\MessagingService.dll [88064 2019-03-19] (Microsoft Corporation) [File not signed]
U2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1912488 2019-09-23] (Acronis International GmbH -> )
U2 mpssvc; C:\WINDOWS\system32\mpssvc.dll [1062912 2021-01-26] (Microsoft Corporation) [File not signed]
U3 MSDTC; C:\WINDOWS\System32\msdtc.exe [148480 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [151040 2019-03-19] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\WINDOWS\system32\msiexec.exe /V [67072 2019-03-19] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\WINDOWS\SysWOW64\msiexec.exe /V [59904 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [831488 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [170496 2019-10-07] (Microsoft Corporation) [File not signed]
U3 NcbService; C:\WINDOWS\System32\ncbservice.dll [374784 2021-01-26] (Microsoft Corporation) [File not signed]
U3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [89600 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Netlogon; C:\WINDOWS\system32\netlogon.dll [867840 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Netlogon; C:\WINDOWS\SysWOW64\netlogon.dll [672256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Netman; C:\WINDOWS\System32\netman.dll [266240 2021-01-26] (Microsoft Corporation) [File not signed]
U3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [614912 2021-01-26] (Microsoft Corporation) [File not signed]
U3 NetSetupSvc; C:\WINDOWS\System32\NetSetupSvc.dll [336896 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NgcCtnrSvc; C:\WINDOWS\System32\NgcCtnrSvc.dll [810496 2019-10-07] (Microsoft Corporation) [File not signed]
U3 NgcSvc; C:\WINDOWS\system32\ngcsvc.dll [957952 2019-10-07] (Microsoft Corporation) [File not signed]
U2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [382976 2021-01-26] (Microsoft Corporation) [File not signed]
U2 OneSyncSvc; C:\WINDOWS\System32\APHostService.dll [352256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-04-06] (Electronic Arts, Inc. -> Electronic Arts)
U2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479640 2021-04-06] (Electronic Arts, Inc. -> Electronic Arts)
U3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
U3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [353280 2021-01-26] (Microsoft Corporation) [File not signed]
U3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [428544 2019-10-07] (Microsoft Corporation) [File not signed]
U3 PeerDistSvc; C:\WINDOWS\system32\peerdistsvc.dll [1965568 2019-03-19] (Microsoft Corporation) [File not signed]
U3 perceptionsimulation; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [103424 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PerfHost; C:\WINDOWS\SysWow64\perfhost.exe [21504 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PhoneSvc; C:\WINDOWS\System32\PhoneService.dll [943616 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PimIndexMaintenanceSvc; C:\WINDOWS\System32\PimIndexMaintenance.dll [190464 2019-03-19] (Microsoft Corporation) [File not signed]
U3 pla; C:\WINDOWS\system32\pla.dll [1507328 2021-01-26] (Microsoft Corporation) [File not signed]
U3 pla; C:\WINDOWS\SysWOW64\pla.dll [1559040 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [126976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [27136 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [353280 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [447488 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Power; C:\WINDOWS\system32\umpo.dll [158720 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [3552256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PrintWorkflowUserSvc; C:\WINDOWS\System32\PrintWorkflowService.dll [179200 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PrintWorkflowUserSvc; C:\WINDOWS\SysWOW64\PrintWorkflowService.dll [141312 2021-01-26] (Microsoft Corporation) [File not signed]
U2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [492032 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PushToInstall; C:\WINDOWS\system32\PushToInstall.dll [284672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 QWAVE; C:\WINDOWS\system32\qwave.dll [288768 2019-03-19] (Microsoft Corporation) [File not signed]
U3 QWAVE; C:\WINDOWS\SysWOW64\qwave.dll [227328 2019-03-19] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [104448 2019-03-19] (Microsoft Corporation) [File not signed]
R2 RasMan; C:\WINDOWS\System32\rasmans.dll [952320 2021-01-26] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [500224 2021-01-26] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\WINDOWS\SysWOW64\mprdim.dll [403456 2021-01-26] (Microsoft Corporation) [File not signed]
U2 RemoteMouseService; C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe [11264 2019-07-25] () [File not signed]
U4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [160768 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RetailDemo; C:\WINDOWS\system32\RDXService.dll [736768 2021-01-26] (Microsoft Corporation) [File not signed]
U3 RmSvc; C:\WINDOWS\System32\RMapi.dll [157184 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1676696 2021-03-09] (Rockstar Games, Inc. -> Rockstar Games)
R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [80384 2021-01-26] (Microsoft Corporation) [File not signed]
U3 RpcLocator; C:\WINDOWS\system32\locator.exe [11264 2019-03-19] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [1260544 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [282624 2021-01-26] (Microsoft Corporation) [File not signed]
U3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [200192 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Schedule; C:\WINDOWS\system32\schedsvc.dll [894976 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [192512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SDRSVC; C:\WINDOWS\System32\SDRSVC.dll [148992 2021-01-26] (Microsoft Corporation) [File not signed]
U3 seclogon; C:\WINDOWS\system32\seclogon.dll [31232 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1271296 2021-01-26] (Microsoft Corporation) [File not signed]
R2 SENS; C:\WINDOWS\System32\sens.dll [73728 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SensorDataService; C:\WINDOWS\System32\SensorDataService.exe [1264128 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SensorService; C:\WINDOWS\system32\SensorService.dll [487424 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [176640 2019-03-19] (Microsoft Corporation) [File not signed]
U3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [483328 2019-10-08] (Microsoft Corporation) [File not signed]
U3 SessionEnv; C:\WINDOWS\SysWOW64\sessenv.dll [417280 2019-10-08] (Microsoft Corporation) [File not signed]
U3 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [629760 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SharedRealitySvc; C:\WINDOWS\System32\SharedRealitySvc.dll [477184 2021-01-26] (Microsoft Corporation) [File not signed]
U2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [252928 2019-03-19] (Microsoft Corporation) [File not signed]
U2 ShellHWDetection; C:\WINDOWS\SysWOW64\shsvcs.dll [197120 2019-03-19] (Microsoft Corporation) [File not signed]
U4 shpamsvc; C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [239104 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SmsRouter; C:\WINDOWS\system32\SmsRouterSvc.dll [599552 2019-10-08] (Microsoft Corporation) [File not signed]
U3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [15872 2019-03-19] (Microsoft Corporation) [File not signed]
U2 spacedeskService; C:\WINDOWS\System32\spacedeskService.exe [1204152 2021-03-28] (Datronicsoft, Inc. -> )
U3 spectrum; C:\WINDOWS\system32\spectrum.exe [987136 2021-01-26] (Microsoft Corporation) [File not signed]
R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [765440 2021-01-26] (Microsoft Corporation) [File not signed]
U3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [240128 2021-01-26] (Microsoft Corporation) [File not signed]
U4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2019-03-19] () [File not signed]
U3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [206336 2019-03-19] (Microsoft Corporation) [File not signed]
U2 stisvc; C:\WINDOWS\System32\wiaservc.dll [671744 2021-01-26] (Microsoft Corporation) [File not signed]
U3 StorSvc; C:\WINDOWS\system32\storsvc.dll [1009664 2021-01-26] (Microsoft Corporation) [File not signed]
U3 svsvc; C:\WINDOWS\system32\svsvc.dll [13824 2019-03-19] (Microsoft Corporation) [File not signed]
U3 swprv; C:\WINDOWS\System32\swprv.dll [457216 2021-01-26] (Microsoft Corporation) [File not signed]
U2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7395256 2019-09-23] (Acronis International GmbH -> )
U2 SysMain; C:\WINDOWS\system32\sysmain.dll [996352 2020-02-12] (Microsoft Corporation) [File not signed]
U2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [243200 2021-01-26] (Microsoft Corporation) [File not signed]
U2 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [223744 2021-01-26] (Microsoft Corporation) [File not signed]
U3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [309248 2021-01-26] (Microsoft Corporation) [File not signed]
U3 TapiSrv; C:\WINDOWS\SysWOW64\tapisrv.dll [252928 2021-01-26] (Microsoft Corporation) [File not signed]
U2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 TermService; C:\WINDOWS\System32\termsrv.dll [1060352 2021-01-26] (Microsoft Corporation) [File not signed]
R2 Themes; C:\WINDOWS\system32\themeservice.dll [67072 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [7095824 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
U3 TieringEngineService; C:\WINDOWS\system32\TieringEngineService.exe [316928 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TimeBrokerSvc; C:\WINDOWS\System32\TimeBrokerServer.dll [172032 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1499136 2021-01-26] (Microsoft Corporation) [File not signed]
U3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [1246208 2021-01-26] (Microsoft Corporation) [File not signed]
U2 TrkWks; C:\WINDOWS\System32\trkwks.dll [112128 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TroubleshootingSvc; C:\WINDOWS\system32\MitigationClient.dll [394752 2019-03-19] (Microsoft Corporation) [File not signed]
S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [177152 2021-01-26] (Microsoft Corporation) [File not signed]
U3 tzautoupdate; C:\WINDOWS\system32\tzautoupdate.dll [96768 2019-10-07] (Microsoft Corporation) [File not signed]
U3 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [72704 2019-10-07] (Microsoft Corporation) [File not signed]
U4 UevAgentService; C:\WINDOWS\system32\AgentService.exe [1185792 2019-11-15] (Microsoft Corporation) [File not signed]
U3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [395776 2021-01-26] (Microsoft Corporation) [File not signed]
U3 UnistoreSvc; C:\WINDOWS\System32\unistore.dll [1158656 2019-10-07] (Microsoft Corporation) [File not signed]
U3 UnistoreSvc; C:\WINDOWS\SysWOW64\unistore.dll [957952 2019-10-07] (Microsoft Corporation) [File not signed]
U3 upnphost; C:\WINDOWS\System32\upnphost.dll [457216 2021-01-26] (Microsoft Corporation) [File not signed]
U3 upnphost; C:\WINDOWS\SysWOW64\upnphost.dll [330752 2021-01-26] (Microsoft Corporation) [File not signed]
U3 UserDataSvc; C:\WINDOWS\System32\userdataservice.dll [1536512 2021-01-26] (Microsoft Corporation) [File not signed]
U2 UserManager; C:\WINDOWS\System32\usermgr.dll [1285120 2021-01-26] (Microsoft Corporation) [File not signed]
U2 UsoSvc; C:\WINDOWS\system32\usosvc.dll [544256 2021-01-26] (Microsoft Corporation) [File not signed]
U3 VaultSvc; C:\Windows\System32\vaultsvc.dll [361472 2021-01-26] (Microsoft Corporation) [File not signed]
U3 vds; C:\WINDOWS\System32\vds.exe [640512 2019-10-07] (Microsoft Corporation) [File not signed]
U3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10069120 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
U3 vmicrdv; C:\WINDOWS\System32\icsvcext.dll [311808 2019-03-19] (Microsoft Corporation) [File not signed]
U3 vmicvss; C:\WINDOWS\System32\icsvcext.dll [311808 2019-03-19] (Microsoft Corporation) [File not signed]
U3 VSS; C:\WINDOWS\system32\vssvc.exe [1447424 2021-01-26] (Microsoft Corporation) [File not signed]
U3 W32Time; C:\WINDOWS\system32\w32time.dll [495616 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [406528 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WalletService; C:\WINDOWS\system32\WalletService.dll [432640 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WarpJITSvc; C:\WINDOWS\System32\Windows.WARP.JITService.dll [61952 2019-03-19] (Microsoft Corporation) [File not signed]
U3 wbengine; C:\WINDOWS\system32\wbengine.exe [1539072 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [963072 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [1059328 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [478208 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [101888 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiServiceHost; C:\WINDOWS\SysWOW64\wdi.dll [88064 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [101888 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdiSystemHost; C:\WINDOWS\SysWOW64\wdi.dll [88064 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
U3 WebClient; C:\WINDOWS\System32\webclnt.dll [219136 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WebClient; C:\WINDOWS\SysWOW64\webclnt.dll [190976 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [199680 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [27648 2019-03-19] (Microsoft Corporation) [File not signed]
U3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [125440 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [229888 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [740352 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [83968 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [233472 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2808832 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WinRM; C:\WINDOWS\SysWOW64\WsmSvc.dll [2307584 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wisvc; C:\WINDOWS\system32\flightsettings.dll [893952 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [729600 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WlanSvc; C:\WINDOWS\System32\wlansvc.dll [2656768 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [2157056 2020-03-10] (Microsoft Corporation) [File not signed]
U3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1390080 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WManSvc; C:\WINDOWS\system32\Windows.Management.Service.dll [924160 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [204288 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1105408 2019-03-19] (Microsoft Corporation) [File not signed]
U2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-10-16] (Wondershare Technology Co.,Ltd -> Wondershare)
U3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [2138112 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [83456 2019-10-08] (Microsoft Corporation) [File not signed]
U2 WpnService; C:\WINDOWS\system32\WpnService.dll [255488 2021-01-26] (Microsoft Corporation) [File not signed]
U2 WpnUserService; C:\WINDOWS\System32\WpnUserService.dll [90624 2021-01-26] (Microsoft Corporation) [File not signed]
U2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [851968 2021-01-26] (Microsoft Corporation) [File not signed]
U2 WSearch; C:\WINDOWS\SysWOW64\SearchIndexer.exe [670720 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [1766400 2021-01-26] (Microsoft Corporation) [File not signed]
U3 XblAuthManager; C:\WINDOWS\System32\XblAuthManager.dll [1063936 2019-03-19] (Microsoft Corporation) [File not signed]
U3 XblGameSave; C:\WINDOWS\System32\XblGameSave.dll [1263616 2021-01-26] (Microsoft Corporation) [File not signed]
U3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [72704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 XboxNetApiSvc; C:\WINDOWS\system32\XboxNetApiSvc.dll [1268224 2019-03-19] (Microsoft Corporation) [File not signed]
U3 HnGEpicService; C:\Program Files\Epic Games\HeroesGeneralsWWII\hngservice.exe [X]
U2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

Re: Někdo je v mém PC

Napsal: 08 dub 2021 11:29
od not_ketchupp
A poslední část FRST.txt
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U3 1394ohci; C:\WINDOWS\System32\drivers\1394ohci.sys [264704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 AcpiDev; C:\WINDOWS\System32\drivers\AcpiDev.sys [20992 2019-03-19] (Microsoft Corporation) [File not signed]
U3 acpipagr; C:\WINDOWS\System32\drivers\acpipagr.sys [12800 2019-03-19] (Microsoft Corporation) [File not signed]
U3 AcpiPmi; C:\WINDOWS\System32\drivers\acpipmi.sys [16896 2019-03-19] (Microsoft Corporation) [File not signed]
U3 acpitime; C:\WINDOWS\System32\drivers\acpitime.sys [13824 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Acx01000; C:\WINDOWS\System32\drivers\Acx01000.sys [337920 2020-03-10] (Microsoft Corporation) [File not signed]
U1 afunix; C:\WINDOWS\system32\drivers\afunix.sys [40960 2021-01-26] (Microsoft Corporation) [File not signed]
U1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2021-01-26] (Microsoft Corporation) [File not signed]
U1 ahcache; C:\WINDOWS\System32\DRIVERS\ahcache.sys [291840 2021-01-26] (Microsoft Corporation) [File not signed]
U3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [18432 2019-03-19] (Advanced Micro Devices, Inc) [File not signed]
U3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [37888 2019-03-19] (Advanced Micro Devices, Inc) [File not signed]
U3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
U3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
U3 applockerfltr; C:\WINDOWS\System32\drivers\applockerfltr.sys [18432 2021-01-26] (Microsoft Corporation) [File not signed]
U3 AsyncMac; C:\WINDOWS\System32\drivers\asyncmac.sys [31232 2019-03-19] (Microsoft Corporation) [File not signed]
U3 athur; C:\WINDOWS\System32\drivers\athuwbx.sys [2702336 2017-11-28] (Qualcomm Atheros Communications, Inc.) [File not signed]
U1 BasicDisplay; C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys [68096 2019-10-07] (Microsoft Corporation) [File not signed]
U1 BasicRender; C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys [37888 2019-10-07] (Microsoft Corporation) [File not signed]
U3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [9728 2019-03-19] (Windows (R) Win 7 DDK provider) [File not signed]
U1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-03-19] (Microsoft Corporation) [File not signed]
U3 bowser; C:\WINDOWS\System32\DRIVERS\bowser.sys [117248 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [File not signed]
U3 BthEnum; C:\WINDOWS\System32\drivers\BthEnum.sys [114688 2020-03-10] (Microsoft Corporation) [File not signed]
U3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [131072 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthLEEnum; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [97280 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [36864 2020-03-10] (Microsoft Corporation) [File not signed]
U3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76288 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BthPan; C:\WINDOWS\System32\drivers\bthpan.sys [133120 2019-03-19] (Microsoft Corporation) [File not signed]
U3 BTHPORT; C:\WINDOWS\System32\drivers\BTHport.sys [1428992 2020-03-10] (Microsoft Corporation) [File not signed]
U3 BTHUSB; C:\WINDOWS\System32\drivers\BTHUSB.sys [99328 2020-03-10] (Microsoft Corporation) [File not signed]
U3 buttonconverter; C:\WINDOWS\System32\drivers\buttonconverter.sys [43008 2019-03-19] (Microsoft Corporation) [File not signed]
U4 cdfs; C:\WINDOWS\System32\DRIVERS\cdfs.sys [100352 2019-12-11] (Microsoft Corporation) [File not signed]
U1 cdrom; C:\WINDOWS\System32\drivers\cdrom.sys [173056 2019-03-19] (Microsoft Corporation) [File not signed]
U3 circlass; C:\WINDOWS\System32\drivers\circlass.sys [51200 2019-03-19] (Microsoft Corporation) [File not signed]
U2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [457216 2021-01-26] (Microsoft Corporation) [File not signed]
U3 CmBatt; C:\WINDOWS\System32\drivers\CmBatt.sys [36864 2019-03-19] (Microsoft Corporation) [File not signed]
U0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2019-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
U1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U3 CompositeBus; C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys [40960 2019-10-07] (Microsoft Corporation) [File not signed]
U1 CSC; C:\WINDOWS\System32\drivers\csc.sys [576512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 dc1-controller; C:\WINDOWS\System32\drivers\dc1-controller.sys [56320 2019-03-19] (Microsoft Corp.) [File not signed]
U1 Dfsc; C:\WINDOWS\System32\Drivers\dfsc.sys [151040 2019-03-19] (Microsoft Corporation) [File not signed]
U3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
U3 DroidCamVideo; C:\WINDOWS\System32\drivers\droidcamvideo.sys [33784 2020-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
U3 ErrDev; C:\WINDOWS\System32\drivers\errdev.sys [14336 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Huawei Technologies Co., Ltd.) [File not signed]
U3 exfat; C:\Windows\System32\Drivers\exfat.sys [404480 2019-12-11] (Microsoft Corporation) [File not signed]
U3 fdc; C:\WINDOWS\System32\drivers\fdc.sys [35328 2019-03-19] (Microsoft Corporation) [File not signed]
U1 FileCrypt; C:\WINDOWS\System32\drivers\filecrypt.sys [59392 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Filetrace; C:\WINDOWS\System32\drivers\filetrace.sys [40960 2019-03-19] (Microsoft Corporation) [File not signed]
U2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [687768 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2021-01-03] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U3 flpydisk; C:\WINDOWS\System32\drivers\flpydisk.sys [28160 2021-01-26] (Microsoft Corporation) [File not signed]
U3 genericusbfn; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [20992 2019-10-07] (Microsoft Corporation) [File not signed]
U1 GpuEnergyDrv; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [8704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
U3 HdAudAddService; C:\WINDOWS\System32\drivers\HdAudio.sys [425472 2019-10-07] (Microsoft Corporation) [File not signed]
U3 HDAudBus; C:\WINDOWS\System32\drivers\HDAudBus.sys [114688 2020-03-10] (Microsoft Corporation) [File not signed]
U3 HidBth; C:\WINDOWS\System32\drivers\hidbth.sys [121344 2021-01-26] (Microsoft Corporation) [File not signed]
U3 hidi2c; C:\WINDOWS\System32\drivers\hidi2c.sys [54784 2019-03-19] (Microsoft Corporation) [File not signed]
U3 HidIr; C:\WINDOWS\System32\drivers\hidir.sys [48640 2019-03-19] (Microsoft Corporation) [File not signed]
U3 hidspi; C:\WINDOWS\System32\drivers\hidspi.sys [64512 2021-01-26] (Microsoft Corporation) [File not signed]
U3 HidUsb; C:\WINDOWS\System32\drivers\hidusb.sys [45568 2019-10-07] (Microsoft Corporation) [File not signed]
U3 hsstap; C:\WINDOWS\System32\drivers\hsstap.sys [39424 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Pango)
U3 HwNClx0101; C:\WINDOWS\System32\Drivers\mshwnclx.sys [28672 2019-03-19] (Microsoft Corporation) [File not signed]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Huawei Technologies Co., Ltd.) [File not signed]
U3 i8042prt; C:\WINDOWS\System32\drivers\i8042prt.sys [119296 2019-03-19] (Microsoft Corporation) [File not signed]
U3 iagpio; C:\WINDOWS\System32\drivers\iagpio.sys [36352 2019-03-19] (Intel(R) Corporation) [File not signed]
U3 iai2c; C:\WINDOWS\System32\drivers\iai2c.sys [91136 2019-03-19] (Intel(R) Corporation) [File not signed]
U3 iaLPSS2i_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_GPIO2_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_GPIO2_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [180736 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSS2i_I2C_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2019-03-19] (Intel Corporation) [File not signed]
U3 iaLPSSi_I2C; C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152 2019-03-19] (Intel Corporation) [File not signed]
U3 IndirectKmd; C:\WINDOWS\System32\drivers\IndirectKmd.sys [46592 2019-03-19] (Microsoft Corporation) [File not signed]
U1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [129232 2020-12-23] (Comodo Security Solutions, Inc. -> COMODO)
U3 intelpmax; C:\WINDOWS\System32\drivers\intelpmax.sys [28672 2019-03-19] (Microsoft Corporation) [File not signed]
U3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [90624 2019-03-19] (Microsoft Corporation) [File not signed]
U3 IPNAT; C:\WINDOWS\System32\drivers\ipnat.sys [224768 2019-03-19] (Microsoft Corporation) [File not signed]
U1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO)
U3 kbdhid; C:\WINDOWS\System32\drivers\kbdhid.sys [46592 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ksthunk; C:\WINDOWS\system32\drivers\ksthunk.sys [29184 2019-03-19] (Microsoft Corporation) [File not signed]
U0 lci_proxywddm; C:\WINDOWS\System32\drivers\lci_proxywddm.sys [122576 2019-11-06] (Splashtop Inc. -> LuminonCore)
U2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\73248\driver_cpu_temperature\logi_core_temp.sys [25448 2021-01-13] (Logitech Inc. -> Logitech)
U2 lltdio; C:\WINDOWS\System32\drivers\lltdio.sys [72192 2019-03-19] (Microsoft Corporation) [File not signed]
U3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-12-04] (Logitech Inc -> Logitech)
U3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-12-04] (Logitech Inc -> Logitech)
U3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-12-04] (Logitech Inc -> Logitech)
U2 luafv; C:\WINDOWS\system32\drivers\luafv.sys [141312 2019-10-07] (Microsoft Corporation) [File not signed]
U3 MbbCx; C:\WINDOWS\System32\drivers\MbbCx.sys [359424 2019-11-15] (Microsoft Corporation) [File not signed]
U3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [64512 2019-03-19] (Microsoft Corporation) [File not signed]
U2 MMCSS; C:\WINDOWS\system32\drivers\mmcss.sys [53760 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Modem; C:\WINDOWS\System32\drivers\modem.sys [46592 2019-03-19] (Microsoft Corporation) [File not signed]
U3 monitor; C:\WINDOWS\System32\drivers\monitor.sys [69632 2020-03-10] (Microsoft Corporation) [File not signed]
U3 mouhid; C:\WINDOWS\System32\drivers\mouhid.sys [35840 2019-03-19] (Microsoft Corporation) [File not signed]
U3 mpsdrv; C:\WINDOWS\System32\drivers\mpsdrv.sys [80384 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MRxDAV; C:\WINDOWS\system32\drivers\mrxdav.sys [158208 2019-10-08] (Microsoft Corporation) [File not signed]
U2 mrxsmb10; C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys [306176 2021-01-26] (Microsoft Corporation) [File not signed]
U3 MsBridge; C:\WINDOWS\System32\drivers\bridge.sys [127488 2019-03-19] (Microsoft Corporation) [File not signed]
U3 mshidkmdf; C:\WINDOWS\System32\drivers\mshidkmdf.sys [8704 2019-03-19] (Microsoft Corporation) [File not signed]
U3 mshidumdf; C:\WINDOWS\System32\drivers\mshidumdf.sys [12288 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [34816 2021-01-26] (Microsoft Corporation) [File not signed]
U2 MsLldp; C:\WINDOWS\System32\drivers\mslldp.sys [78848 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [11264 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [11264 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MSTEE; C:\WINDOWS\System32\drivers\MSTEE.sys [12800 2019-03-19] (Microsoft Corporation) [File not signed]
U3 MTConfig; C:\WINDOWS\System32\drivers\MTConfig.sys [16384 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NativeWifiP; C:\WINDOWS\System32\DRIVERS\nwifi.sys [702464 2019-10-08] (Microsoft Corporation) [File not signed]
U3 NdisCap; C:\WINDOWS\System32\drivers\ndiscap.sys [56320 2021-01-26] (Microsoft Corporation) [File not signed]
U3 NdisImPlatform; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [135168 2020-03-10] (Microsoft Corporation) [File not signed]
U3 NdisTapi; C:\WINDOWS\System32\DRIVERS\ndistapi.sys [28672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Ndisuio; C:\WINDOWS\System32\drivers\ndisuio.sys [70656 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NdisVirtualBus; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [22016 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NdisWan; C:\WINDOWS\System32\drivers\ndiswan.sys [206336 2020-03-10] (Microsoft Corporation) [File not signed]
U3 ndiswanlegacy; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [206336 2020-03-10] (Microsoft Corporation) [File not signed]
U3 NDKPing; C:\WINDOWS\System32\drivers\NDKPing.sys [63488 2019-03-19] (Microsoft Corporation) [File not signed]
U3 ndproxy; C:\WINDOWS\System32\DRIVERS\NDProxy.sys [244736 2021-01-26] (Microsoft Corporation) [File not signed]
U2 Ndu; C:\WINDOWS\System32\drivers\Ndu.sys [132096 2019-03-19] (Microsoft Corporation) [File not signed]
U3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [187904 2019-03-19] (Microsoft Corporation) [File not signed]
U1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [337408 2021-01-26] (Microsoft Corporation) [File not signed]
U1 npsvctrig; C:\WINDOWS\System32\drivers\npsvctrig.sys [27136 2019-03-19] (Microsoft Corporation) [File not signed]
U1 nsiproxy; C:\WINDOWS\System32\drivers\nsiproxy.sys [48128 2019-11-15] (Microsoft Corporation) [File not signed]
U1 Null; C:\Windows\System32\Drivers\Null.sys [7680 2019-03-19] (Microsoft Corporation) [File not signed]
U1 pango_netfilter2; C:\WINDOWS\System32\drivers\pango_netfilter2.sys [94600 2021-01-08] (Pango Inc. -> Pango Inc)
U3 Parport; C:\WINDOWS\System32\drivers\parport.sys [108032 2019-03-19] (Microsoft Corporation) [File not signed]
U2 PEAUTH; C:\WINDOWS\System32\drivers\peauth.sys [817152 2021-01-26] (Microsoft Corporation) [File not signed]
U3 PNPMEM; C:\WINDOWS\System32\drivers\pnpmem.sys [17408 2019-03-19] (Microsoft Corporation) [File not signed]
U3 portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [25600 2019-03-19] (Microsoft Corporation) [File not signed]
U3 PptpMiniport; C:\WINDOWS\System32\drivers\raspptp.sys [103424 2019-03-19] (Microsoft Corporation) [File not signed]
U3 QWAVEdrv; C:\WINDOWS\system32\drivers\qwavedrv.sys [53760 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [19968 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasAgileVpn; C:\WINDOWS\System32\drivers\AgileVpn.sys [114176 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Rasl2tp; C:\WINDOWS\System32\drivers\rasl2tp.sys [112128 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [87552 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RasSstp; C:\WINDOWS\System32\drivers\rassstp.sys [85504 2019-03-19] (Microsoft Corporation) [File not signed]
U3 rdpbus; C:\WINDOWS\System32\drivers\rdpbus.sys [28672 2019-03-19] (Microsoft Corporation) [File not signed]
U3 RDPDR; C:\WINDOWS\System32\drivers\rdpdr.sys [167936 2021-01-26] (Microsoft Corporation) [File not signed]
U3 RFCOMM; C:\WINDOWS\System32\drivers\rfcomm.sys [211456 2019-03-19] (Microsoft Corporation) [File not signed]
U3 rhproxy; C:\WINDOWS\System32\drivers\rhproxy.sys [113152 2019-03-19] (Microsoft Corporation) [File not signed]
U2 rspndr; C:\WINDOWS\System32\drivers\rspndr.sys [89088 2019-03-19] (Microsoft Corporation) [File not signed]
U3 scfilter; C:\WINDOWS\System32\DRIVERS\scfilter.sys [45056 2021-01-26] (Microsoft Corporation) [File not signed]
U3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
U3 Serenum; C:\WINDOWS\System32\drivers\serenum.sys [27648 2019-03-19] (Microsoft Corporation) [File not signed]
U3 Serial; C:\WINDOWS\System32\drivers\serial.sys [89600 2019-03-19] (Microsoft Corporation) [File not signed]
U3 sermouse; C:\WINDOWS\System32\drivers\sermouse.sys [29696 2019-03-19] (Microsoft Corporation) [File not signed]
U3 sfloppy; C:\WINDOWS\System32\drivers\sfloppy.sys [18944 2021-01-26] (Microsoft Corporation) [File not signed]
U3 spacedeskDriverBus; C:\WINDOWS\System32\drivers\spacedeskDriverBus.sys [86448 2021-03-28] (Datronicsoft, Inc. -> datronicsoft Inc.)
U3 spacedeskKtmInputMouse; C:\WINDOWS\System32\drivers\spacedeskKtmInputMouse.sys [35240 2021-02-19] (Datronicsoft, Inc. -> )
U3 srv2; C:\WINDOWS\System32\DRIVERS\srv2.sys [772096 2021-01-26] (Microsoft Corporation) [File not signed]
U3 srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [309248 2021-01-26] (Microsoft Corporation) [File not signed]
U3 Synth3dVsc; C:\WINDOWS\System32\drivers\Synth3dVsc.sys [66560 2019-03-19] (Microsoft Corporation) [File not signed]
U3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
U3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
U3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
U2 tcpipreg; C:\WINDOWS\System32\drivers\tcpipreg.sys [54784 2019-03-19] (Microsoft Corporation) [File not signed]
U3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [883256 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171968 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [693768 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U3 TsUsbFlt; C:\WINDOWS\System32\drivers\tsusbflt.sys [65024 2019-03-19] (Microsoft Corporation) [File not signed]
U3 TsUsbGD; C:\WINDOWS\System32\drivers\TsUsbGD.sys [35328 2021-01-26] (Microsoft Corporation) [File not signed]
U3 tsusbhub; C:\WINDOWS\System32\drivers\tsusbhub.sys [132096 2020-01-27] (Microsoft Corporation) [File not signed]
U3 tunnel; C:\WINDOWS\System32\drivers\tunnel.sys [128512 2019-11-15] (Microsoft Corporation) [File not signed]
U3 UcmCx0101; C:\WINDOWS\System32\Drivers\UcmCx.sys [160256 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UcmTcpciCx0101; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [186368 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UcmUcsiAcpiClient; C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys [34816 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UcmUcsiCx0101; C:\WINDOWS\System32\Drivers\UcmUcsiCx.sys [111104 2019-03-19] (Microsoft Corporation) [File not signed]
U3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [51200 2019-03-19] (Microsoft Corporation) [File not signed]
U4 udfs; C:\WINDOWS\System32\DRIVERS\udfs.sys [342528 2019-12-11] (Microsoft Corporation) [File not signed]
U3 umbus; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys [57856 2019-10-07] (Microsoft Corporation) [File not signed]
U3 UmPass; C:\WINDOWS\System32\drivers\umpass.sys [13312 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbaudio; C:\WINDOWS\system32\drivers\usbaudio.sys [198656 2021-01-26] (Microsoft Corporation) [File not signed]
U3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [257536 2019-10-07] (Microsoft Corporation) [File not signed]
U3 usbcir; C:\WINDOWS\System32\drivers\usbcir.sys [107008 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbohci; C:\WINDOWS\System32\drivers\usbohci.sys [30208 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbprint; C:\WINDOWS\System32\drivers\usbprint.sys [34304 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbser; C:\WINDOWS\System32\drivers\usbser.sys [79360 2019-03-19] (Microsoft Corporation) [File not signed]
U3 usbuhci; C:\WINDOWS\System32\drivers\usbuhci.sys [39936 2019-03-19] (Microsoft Corporation) [File not signed]
U1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5811160 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
U3 vhf; C:\WINDOWS\System32\drivers\vhf.sys [39936 2019-03-19] (Microsoft Corporation) [File not signed]
U2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [330176 2021-01-03] (Acronis International GmbH -> Acronis International GmbH)
U3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [48136 2021-01-27] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
U0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2021-01-03] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [55976 2020-05-27] (NCH Software, Inc. -> )
U3 vwifibus; C:\WINDOWS\System32\drivers\vwifibus.sys [27648 2019-03-19] (Microsoft Corporation) [File not signed]
U1 vwififlt; C:\WINDOWS\System32\drivers\vwififlt.sys [77312 2019-03-19] (Microsoft Corporation) [File not signed]
U3 vwifimp; C:\WINDOWS\System32\drivers\vwifimp.sys [50176 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WacomPen; C:\WINDOWS\System32\drivers\wacompen.sys [31744 2019-03-19] (Microsoft Corporation) [File not signed]
U2 wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [92672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wanarpv6; C:\WINDOWS\System32\DRIVERS\wanarp.sys [92672 2021-01-26] (Microsoft Corporation) [File not signed]
U3 wcnfs; C:\WINDOWS\system32\drivers\wcnfs.sys [92672 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
U3 wdiwifi; C:\WINDOWS\System32\DRIVERS\wdiwifi.sys [931840 2019-10-08] (Microsoft Corporation) [File not signed]
U3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
U3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [251904 2021-01-26] (Microsoft Corporation) [File not signed]
U3 WINUSB; C:\WINDOWS\System32\drivers\WinUsb.sys [105472 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WmiAcpi; C:\WINDOWS\System32\drivers\wmiacpi.sys [19456 2019-03-19] (Microsoft Corporation) [File not signed]
U4 ws2ifsl; C:\WINDOWS\system32\drivers\ws2ifsl.sys [25088 2019-10-07] (Microsoft Corporation) [File not signed]
U3 WSDPrintDevice; C:\WINDOWS\System32\drivers\WSDPrint.sys [24576 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WSDScan; C:\WINDOWS\System32\drivers\WSDScan.sys [26112 2020-01-27] (Microsoft Corporation) [File not signed]
U3 WudfPf; C:\WINDOWS\System32\drivers\WudfPf.sys [134656 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WUDFRd; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WUDFWpdFs; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) [File not signed]
U3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) [File not signed]
U3 xboxgip; C:\WINDOWS\System32\drivers\xboxgip.sys [325120 2021-01-26] (Microsoft Corporation) [File not signed]
U3 xinputhid; C:\WINDOWS\System32\drivers\xinputhid.sys [48640 2021-01-26] (Microsoft Corporation) [File not signed]
U3 xusb22; C:\WINDOWS\System32\drivers\xusb22.sys [102400 2019-03-19] (Microsoft Corporation) [File not signed]
U1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [312776 2020-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Nox Limited Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\ProgramData\Electronic Arts
2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-04-06 15:25 - 2021-04-06 15:25 - 000000000 ____D C:\Program Files (x86)\Origin
2021-04-06 15:22 - 2021-04-06 15:22 - 000000000 ____D C:\Users\Milospc\.QtWebEngineProcess
2021-04-06 15:21 - 2021-04-06 15:21 - 069192266 _____ (Electronic Arts) C:\Users\Milospc\Downloads\ApexLegendsInstaller.exe
2021-04-06 15:20 - 2021-04-06 15:24 - 000208276 _____ C:\Users\Milospc\Desktop\Addition.txt
2021-04-06 15:15 - 2021-04-06 15:28 - 000136744 _____ C:\Users\Milospc\Desktop\FRST.txt
2021-04-06 15:15 - 2021-04-06 15:27 - 000000000 ____D C:\FRST
2021-04-06 15:15 - 2021-04-06 15:15 - 000004176 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2021-04-06 15:15 - 2021-04-06 15:15 - 000000000 ___HD C:\VTRoot
2021-04-06 15:14 - 2021-04-06 15:14 - 002298368 _____ (Farbar) C:\Users\Milospc\Downloads\FRST64.exe
2021-04-06 15:14 - 2021-04-06 15:14 - 002298368 _____ (Farbar) C:\Users\Milospc\Desktop\FRST64.exe
2021-04-06 13:08 - 2021-04-06 13:08 - 000000000 ____H C:\Users\Milospc\Desktop\~WRL0003.tmp
2021-04-06 07:31 - 2021-04-06 07:31 - 000320601 _____ C:\Users\Milospc\Downloads\3 Změna vnitřní energie tělesa - pracovní list (2).pdf
2021-04-06 07:08 - 2021-04-06 07:08 - 000320601 _____ C:\Users\Milospc\Downloads\3 Změna vnitřní energie tělesa - pracovní list (1).pdf
2021-04-06 07:06 - 2021-04-06 07:06 - 000494478 _____ C:\Users\Milospc\Downloads\4 Šíření tepla (1).pdf
2021-04-05 20:29 - 2021-04-05 20:29 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Comodo
2021-04-05 20:10 - 2021-04-05 20:11 - 000000000 ____D C:\$Windows.~BT
2021-04-05 19:54 - 2021-04-06 15:24 - 001301697 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2021-04-05 19:54 - 2021-04-05 19:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\COMODO
2021-04-05 19:54 - 2021-04-05 19:54 - 000000000 ____D C:\Program Files\COMODO
2021-04-05 19:54 - 2019-10-22 18:02 - 000017576 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdboot.sys
2021-04-05 19:54 - 2019-01-29 10:42 - 000254440 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2021-04-05 19:54 - 2019-01-29 10:42 - 000205024 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2021-04-05 19:54 - 2018-08-30 00:55 - 000063256 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2021-04-05 19:53 - 2021-04-05 20:31 - 000000000 ____D C:\Program Files (x86)\Comodo
2021-04-05 19:53 - 2021-04-05 19:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2021-04-05 19:53 - 2021-04-05 19:53 - 000000000 ____D C:\Users\Milospc\AppData\Local\Comodo
2021-04-05 19:53 - 2019-08-21 08:02 - 000454616 _____ (COMODO) C:\WINDOWS\system32\cssguard64.dll
2021-04-05 19:53 - 2019-08-21 08:02 - 000341224 _____ (COMODO) C:\WINDOWS\system32\cmdkbdcss64.dll
2021-04-05 19:53 - 2019-08-21 08:02 - 000337856 _____ (COMODO) C:\WINDOWS\SysWOW64\cssguard32.dll
2021-04-05 19:53 - 2019-08-21 08:02 - 000262376 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbdcss32.dll
2021-04-05 19:53 - 2018-02-28 08:11 - 000125000 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdcss.sys
2021-04-05 19:51 - 2021-04-05 19:53 - 000000000 ____D C:\ProgramData\Comodo
2021-04-05 19:51 - 2021-04-05 19:51 - 005712000 _____ (COMODO) C:\Users\Milospc\Downloads\cispremium_installer.exe
2021-04-05 19:51 - 2021-04-05 19:51 - 000000000 ____D C:\ProgramData\Shared Space
2021-04-05 17:55 - 2021-04-05 20:19 - 000000000 ___HD C:\$SysReset
2021-03-31 10:40 - 2021-03-31 10:40 - 000002820 _____ C:\Users\Milospc\Desktop\Cyrilometodějská církevní ZŠ (Pro rodiče a žáky).lnk
2021-03-30 20:58 - 2021-03-30 20:58 - 001720560 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-03-30 16:27 - 2021-03-30 20:46 - 000000000 ____D C:\Program Files (x86)\Cobian Backup 11
2021-03-30 15:16 - 2021-03-30 15:17 - 000000000 ____D C:\Users\Milospc\AppData\Local\Disc_Soft_Ltd
2021-03-30 15:13 - 2021-03-30 15:13 - 000000000 ____D C:\ProgramData\Disc-Soft
2021-03-30 07:57 - 2021-03-30 08:06 - 921663791 _____ C:\Users\Milospc\Downloads\2021-03-18-22-31-27116-339669-93q6w6icvixv33009k7pvqgxnvvc2e1f0cfeepf3or84n62q7pihazn857bt.tar.gz
2021-03-29 21:22 - 2021-03-29 21:22 - 011643801 _____ C:\Users\Milospc\Downloads\Gotika_8.r.pptx
2021-03-29 17:25 - 2021-04-05 17:55 - 000000000 ____D C:\WINDOWS\Panther
2021-03-29 17:21 - 2021-03-29 17:21 - 000000000 ____D C:\ProgramData\Splashtop
2021-03-29 17:20 - 2021-03-29 17:21 - 011993152 _____ (Splashtop Inc.) C:\Users\Milospc\Downloads\Splashtop_Wired_XDisplay_Agent_v1.5.8.3.exe
2021-03-29 17:10 - 2021-03-29 17:10 - 000115559 _____ C:\Users\Milospc\Downloads\1617008730-sddt_2021-03-27_12-01-15.zip
2021-03-29 17:07 - 2021-03-29 17:07 - 000001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\spacedesk SERVER.lnk
2021-03-29 17:07 - 2021-03-29 17:07 - 000000000 ____D C:\Program Files\datronicsoft
2021-03-29 17:06 - 2021-03-29 17:06 - 005885952 _____ C:\Users\Milospc\Downloads\spacedesk_driver_Win_10_64_v0988_BETA.msi
2021-03-29 11:54 - 2021-03-30 09:13 - 3595763002 _____ C:\Users\Milospc\Downloads\Red.Dead.Redemption.2.Fixed.zip.crdownload
2021-03-29 11:09 - 2021-03-29 11:09 - 000000000 ____D C:\ProgramData\Galaxy
2021-03-29 11:08 - 2021-03-29 11:09 - 000000000 ____D C:\Users\Milospc\Desktop\SWAPPer
2021-03-29 08:59 - 2021-03-29 08:59 - 002993543 _____ C:\Users\Milospc\Downloads\svarta jump.mp4
2021-03-28 20:42 - 2021-03-28 20:42 - 001204152 _____ C:\WINDOWS\system32\spacedeskService.exe
2021-03-28 20:42 - 2021-03-28 20:42 - 000458680 _____ (datronicsoft) C:\WINDOWS\system32\spacedeskServiceTray.exe
2021-03-28 20:42 - 2021-03-28 20:42 - 000240560 _____ (datronicsoft) C:\WINDOWS\system32\spacedeskVideoWallSettings.exe
2021-03-28 20:42 - 2021-03-28 20:42 - 000228288 _____ C:\WINDOWS\system32\spacedeskKtm.dll
2021-03-28 20:17 - 2021-03-28 20:17 - 000086448 _____ (datronicsoft Inc.) C:\WINDOWS\system32\Drivers\spacedeskDriverBus.sys
2021-03-26 14:59 - 2021-03-26 15:03 - 132418343 _____ C:\Users\Milospc\Desktop\Fortnite montage 1.mp4
2021-03-26 13:20 - 2021-03-26 13:20 - 000198176 _____ C:\Users\Milospc\Downloads\Travis Scott - Goosebumps feat. Chase Atlantic (Remix Lyrics).mp3.sfk
2021-03-26 09:54 - 2021-03-28 22:29 - 243808919 _____ C:\Users\Milospc\Documents\ŠvábTheman1.1.1.mp4
2021-03-26 09:41 - 2021-03-26 09:51 - 000000000 ____D C:\Users\Milospc\Desktop\tisk do matiky
2021-03-25 22:00 - 2021-03-25 22:01 - 060938795 _____ C:\Users\Milospc\Desktop\ŠvábTheman1.1.1.mp4
2021-03-25 21:24 - 2021-03-25 21:24 - 000022544 _____ C:\Users\Milospc\Downloads\AMS__Big_Explosion.mov.sfk
2021-03-25 20:00 - 2021-03-25 20:31 - 3290439098 _____ C:\Users\Milospc\Downloads\V Síti 18+ 2019 1080p 5.1 H.264.CZ.mkv
2021-03-25 13:46 - 2021-03-26 18:03 - 1573125054 _____ C:\Users\Milospc\Downloads\Nepotvrzeno 185825.crdownload
2021-03-25 09:54 - 2021-03-25 09:54 - 000494478 _____ C:\Users\Milospc\Downloads\4 Šíření tepla.pdf
2021-03-25 09:54 - 2021-03-25 09:54 - 000320601 _____ C:\Users\Milospc\Downloads\3 Změna vnitřní energie tělesa - pracovní list.pdf
2021-03-24 09:52 - 2021-03-24 09:52 - 029805697 _____ C:\Users\Milospc\Downloads\AMS__Big_Explosion.mov
2021-03-23 22:04 - 2021-03-23 22:04 - 000465869 _____ C:\Users\Milospc\Downloads\Live News Green Screen - 40214.mp4
2021-03-23 22:04 - 2021-03-23 22:04 - 000196208 _____ C:\Users\Milospc\Downloads\Tiktok - 40215.mp4
2021-03-23 22:03 - 2021-03-23 22:03 - 003056945 _____ C:\Users\Milospc\Downloads\Blood - 39139.mp4
2021-03-23 21:35 - 2021-03-23 21:35 - 030007132 _____ C:\Users\Milospc\Downloads\Money - 58760.mp4
2021-03-23 21:35 - 2021-03-23 21:35 - 004756241 _____ C:\Users\Milospc\Downloads\Light - 41407.mp4
2021-03-23 21:25 - 2021-03-23 21:25 - 002203644 _____ C:\Users\Milospc\Downloads\Green Screen - 17408.mp4
2021-03-23 21:24 - 2021-03-23 21:24 - 001674153 _____ C:\Users\Milospc\Downloads\Loading Circle - 42581.mp4
2021-03-23 21:24 - 2021-03-23 21:24 - 001588588 _____ C:\Users\Milospc\Downloads\Office Dance - 39290.mp4
2021-03-23 21:24 - 2021-03-23 21:24 - 000100115 _____ C:\Users\Milospc\Downloads\Camera - 37775.mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 011456185 _____ C:\Users\Milospc\Downloads\Mindcraft - 43551.mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 002122983 _____ C:\Users\Milospc\Downloads\Man Walking - 21263.mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 000279295 _____ C:\Users\Milospc\Downloads\Greenscreen - 28143 (1).mp4
2021-03-23 21:23 - 2021-03-23 21:23 - 000224951 _____ C:\Users\Milospc\Downloads\Greenscreen - 28143.mp4
2021-03-23 21:18 - 2021-03-23 21:19 - 016518924 _____ C:\Users\Milospc\Downloads\Smartphone_scrolling_for_Chroma_Key.mp4
2021-03-23 21:18 - 2021-03-23 21:18 - 061689257 _____ C:\Users\Milospc\Downloads\171003A_024_2K.mp4
2021-03-23 13:42 - 2021-03-23 13:45 - 000000000 ____D C:\Users\Milospc\Desktop\fotky sněhu iahivu
2021-03-23 09:15 - 2021-03-23 09:15 - 000189621 _____ C:\Users\Milospc\Downloads\PL 4 Násobení a dělení mocnin - výrazy.pdf
2021-03-22 19:30 - 2021-03-22 19:30 - 010833269 _____ C:\Users\Milospc\Downloads\MD7_SETUP.zip
2021-03-22 19:30 - 2021-03-22 19:30 - 000220392 _____ (AVAST Software) C:\Users\Milospc\Downloads\avast_free_antivirus_setup_online (1).exe
2021-03-22 19:25 - 2021-03-22 19:25 - 000300198 _____ C:\Users\Milospc\Downloads\fortnite_inj.zip
2021-03-22 18:32 - 2021-03-22 18:32 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\MAGIX Computer Products Intl. Co
2021-03-22 13:20 - 2021-03-22 13:55 - 000044131 _____ C:\Users\Milospc\Downloads\AutoKeyClicker v1.2.4.zip
2021-03-22 12:15 - 2021-03-22 12:15 - 000033280 ____H C:\Users\Milospc\Downloads\~WRL0006.tmp
2021-03-22 08:57 - 2021-03-22 08:57 - 000006656 _____ C:\Users\Milospc\Downloads\timer-resolution_softradar-com.zip
2021-03-21 22:21 - 2021-03-25 21:59 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\VEGAS
2021-03-21 22:21 - 2021-03-21 22:21 - 000001113 _____ C:\Users\Milospc\Desktop\VEGAS Pro 16.0.lnk
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\VEGAS Pro
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\Users\Milospc\AppData\Local\VEGAS Pro
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\Users\Milospc\AppData\Local\Plugin.VegasOfxStitch
2021-03-21 22:21 - 2021-03-21 22:21 - 000000000 ____D C:\ProgramData\VEGAS Pro
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\Users\Milospc\Desktop\Macro
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\proDAD
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
2021-03-21 22:20 - 2021-03-21 22:20 - 000000000 ____D C:\Program Files\proDAD
2021-03-21 22:19 - 2021-03-21 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX
2021-03-21 22:19 - 2021-03-21 22:19 - 000000000 ____D C:\Program Files\VEGAS
2021-03-21 22:18 - 2021-03-28 22:29 - 000000000 ____D C:\ProgramData\GenArts
2021-03-21 22:18 - 2021-03-21 22:18 - 000000000 ____D C:\ProgramData\FXHOME
2021-03-21 22:18 - 2021-03-21 22:18 - 000000000 ____D C:\Program Files\GenArts
2021-03-21 22:18 - 2021-03-21 22:18 - 000000000 ____D C:\Program Files\FXHOME
2021-03-21 22:18 - 2017-10-13 16:31 - 001664512 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libeay32.dll
2021-03-21 22:18 - 2017-10-13 16:31 - 000351744 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\ssleay32.dll
2021-03-21 22:13 - 2021-03-21 22:19 - 000000000 ____D C:\ProgramData\VEGAS
2021-03-21 22:13 - 2021-03-21 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2021-03-21 22:13 - 2021-03-21 22:13 - 000000000 ____D C:\Users\Milospc\AppData\Local\VEGAS
2021-03-21 22:13 - 2021-03-21 22:13 - 000000000 ____D C:\Program Files (x86)\VEGAS
2021-03-21 22:03 - 2021-03-21 22:03 - 000683008 _____ C:\Users\Milospc\Downloads\MacroGamer_v275_Setup.msi
2021-03-21 22:03 - 2021-03-21 22:03 - 000000000 ____D C:\Users\Milospc\Documents\MacroGamer
2021-03-21 22:03 - 2021-03-21 22:03 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MacroGamer
2021-03-21 22:00 - 2021-03-21 22:00 - 000146002 _____ C:\Users\Milospc\Downloads\MacroGamer_v275_Source.zip
2021-03-21 21:10 - 2021-03-22 19:45 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Smart Clock
2021-03-21 21:10 - 2021-03-21 21:10 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Uadeko
2021-03-21 21:10 - 2021-03-21 21:10 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Prince
2021-03-21 21:10 - 2021-03-21 21:10 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\imqEzpXFGAxwPtCBe
2021-03-21 21:08 - 2021-03-21 21:11 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\hjlubOchHIB
2021-03-21 21:07 - 2021-03-21 21:07 - 001752679 _____ C:\Users\Milospc\Downloads\Sony-Vegas-Pro-180-Build-434-Crack-With-Torrent-Full-Version-Download_51e909aa1fd47c98de550c.zip
2021-03-21 18:16 - 2021-04-05 19:14 - 000000000 _____ C:\Recovery.txt
2021-03-19 15:45 - 2021-03-19 15:47 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\StardewValley
2021-03-19 09:02 - 2021-03-19 09:02 - 000072065 _____ C:\Users\Milospc\Downloads\cadet.pdf
2021-03-18 21:38 - 2021-03-18 21:38 - 000000000 ____D C:\ProgramData\Google
2021-03-18 21:33 - 2021-03-18 21:33 - 017842176 _____ C:\Users\Milospc\Downloads\chromeremotedesktophost.msi
2021-03-18 20:05 - 2021-03-18 20:06 - 007570432 _____ (TODO: Extrim) C:\Users\Milospc\Downloads\extrimhack_free_18.03.2021_ (1).exe
2021-03-18 20:05 - 2021-03-18 20:05 - 000002624 _____ C:\Users\Milospc\Downloads\extrimhack_free_18.03.2021_.exe
2021-03-18 17:09 - 2021-03-18 17:09 - 000000000 _____ C:\WINDOWS\SysWOW64\unp156707654.tmp
2021-03-18 17:07 - 2021-03-30 20:47 - 000000000 ____D C:\Users\Milospc\AppData\Local\AVAST Software
2021-03-18 17:03 - 2021-03-18 17:03 - 000000000 _____ C:\WINDOWS\SysWOW64\unp267534847.tmp
2021-03-18 16:57 - 2021-03-18 16:57 - 000465656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys.161613700729601
2021-03-18 16:55 - 2021-03-18 16:55 - 000220392 _____ (AVAST Software) C:\Users\Milospc\Downloads\avast_free_antivirus_setup_online.exe
2021-03-17 08:16 - 2021-03-17 08:16 - 000000000 ____D C:\ProgramData\Riate
2021-03-17 08:16 - 2021-03-17 08:16 - 000000000 ____D C:\ProgramData\Posse
2021-03-17 08:15 - 2021-03-17 08:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Services
2021-03-16 22:35 - 2021-03-17 08:17 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\UgwIPUUWRxfZSNm
2021-03-16 22:35 - 2021-03-16 22:35 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Kasuoreo
2021-03-16 22:35 - 2021-03-16 22:35 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\dxpiaLbEQTovDGYYL
2021-03-16 22:34 - 2021-03-16 22:34 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Onagf
2021-03-16 22:08 - 2021-03-16 22:35 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\OIsXCbJHBYPenw
2021-03-16 22:07 - 2021-03-19 16:59 - 001819610 _____ C:\Users\Milospc\Downloads\Outbyte-PC-Repair-11662247-Crack---License-Key-Free-Download-2021_f814605c5d678f16fc637c.zip
2021-03-16 21:58 - 2021-03-16 21:59 - 020899048 _____ (Outbyte) C:\Users\Milospc\Downloads\0x80004002_repair-setup.exe
2021-03-16 09:41 - 2021-03-16 09:41 - 000001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2021-03-16 09:41 - 2021-03-16 09:41 - 000000000 ____D C:\Program Files\Streamlabs OBS
2021-03-16 09:04 - 2021-03-16 09:26 - 240957176 _____ (General Workings, Inc.) C:\Users\Milospc\Downloads\Streamlabs+OBS+Setup+0.27.1-mgNosYaFcbcxpZz.exe
2021-03-15 12:42 - 2021-03-15 12:42 - 000000000 ____D C:\Program Files\Common Files\OFX
2021-03-15 08:05 - 2021-03-15 08:05 - 000535304 _____ C:\Users\Milospc\Downloads\Homér 1 1.pdf
2021-03-15 08:05 - 2021-03-15 08:05 - 000342826 _____ C:\Users\Milospc\Downloads\Homér 2.pdf
2021-03-14 19:15 - 2021-03-14 19:15 - 003126371 _____ C:\Users\zimul\Desktop\ŽIVOT A DÍLO JOSEFA ŠÍMY S NÁVZAZNOSTÍ NA [Autosaved].pptm
2021-03-14 14:43 - 2021-03-14 14:43 - 000969321 _____ C:\Users\zimul\Desktop\ŽIVOT A DÍLO JOSEFA ŠÍMY S NÁVZAZNOSTÍ NA.pptm
2021-03-14 14:41 - 2021-03-14 14:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-1212909314-1353993095-2117482179-1002
2021-03-12 17:19 - 2021-03-12 17:19 - 000022448 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_5085696051546.dll
2021-03-10 12:07 - 2021-03-10 12:07 - 000150343 _____ C:\Users\Milospc\Downloads\ActionHealth.jar
2021-03-10 10:49 - 2021-03-10 10:49 - 001478187 _____ (Igor Pavlov) C:\Users\Milospc\Downloads\sevenzip-setup.exe
2021-03-10 10:49 - 2021-03-10 10:49 - 000001096 _____ C:\Users\Milospc\Downloads\extreme-injector-latest-version.exe.lnk
2021-03-10 10:49 - 2021-03-10 10:49 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\WoodedLawgiver
2021-03-10 10:28 - 2021-03-10 10:28 - 000001027 _____ C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LucidSwapper.lnk
2021-03-10 10:28 - 2021-03-10 10:28 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\LucidSwapper
2021-03-10 10:26 - 2021-03-10 10:28 - 036524611 _____ (Whey & darkshoz ) C:\Users\Milospc\Downloads\LucidSwapper[Setup] (1).exe
2021-03-10 09:54 - 2021-03-10 09:55 - 000000000 ____D C:\ProgramData\Skinchanger
2021-03-10 09:54 - 2021-03-10 09:54 - 007850224 _____ (Skinchanger.cc) C:\Users\Milospc\Downloads\Skinchanger.exe
2021-03-10 09:32 - 2021-03-10 09:32 - 000052722 _____ C:\Users\Milospc\Downloads\TabListPro.jar
2021-03-10 09:21 - 2021-03-10 09:21 - 000675986 _____ C:\Users\Milospc\Downloads\PexTC.zip
2021-03-09 18:28 - 2021-03-09 18:30 - 000000000 ____D C:\Users\Milospc\AppData\Local\paint.net
2021-03-09 18:28 - 2021-03-09 18:28 - 000001087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2021-03-09 18:28 - 2021-03-09 18:28 - 000000000 ____D C:\Program Files\paint.net
2021-03-09 18:27 - 2021-03-09 18:27 - 012712515 _____ C:\Users\Milospc\Downloads\paint.net.4.2.15.install.zip
2021-03-09 18:18 - 2021-03-09 21:45 - 000000000 ____D C:\Users\Milospc\Desktop\Tvoje_máma_pack
2021-03-09 09:11 - 2021-03-09 09:11 - 000602985 _____ C:\Users\Milospc\Downloads\WTF chroma key.mp4
2021-03-09 09:10 - 2021-03-09 09:10 - 000801960 _____ C:\Users\Milospc\Downloads\Gordinho Da Batata Dando um Joinha[1].mp4
2021-03-09 09:05 - 2021-03-09 09:07 - 025798147 _____ C:\Users\Milospc\Downloads\Gordão com Máscara de Cavalo #1 - Fat Guy with Horse Mask #1 Green Screen - Chroma Key.mp4
2021-03-09 09:04 - 2021-03-09 09:04 - 003736085 _____ C:\Users\Milospc\Downloads\Triggered Video Effect Green Screen With Sound.mp4
2021-03-09 09:03 - 2021-03-09 09:03 - 005487043 _____ C:\Users\Milospc\Downloads\Green Screen Thug life 2.mp4
2021-03-09 08:34 - 2021-03-18 16:08 - 000001123 _____ C:\WINDOWS\grap_hashrate.json
2021-03-08 21:56 - 2021-03-08 21:56 - 000000000 ____D C:\Users\Milospc\Documents\Audacity
2021-03-08 21:54 - 2021-03-08 21:55 - 028141904 _____ (Audacity Team ) C:\Users\Milospc\Downloads\audacity-win-2.4.2.exe
2021-03-08 18:34 - 2021-03-08 18:35 - 036524611 _____ (Whey & darkshoz ) C:\Users\Milospc\Downloads\LucidSwapper[Setup].exe
2021-03-08 18:33 - 2021-03-18 17:02 - 000000000 ____D C:\WINDOWS\data
2021-03-08 18:32 - 2021-03-08 18:33 - 002053658 _____ C:\Users\Milospc\Downloads\Nepotvrzeno 798309.crdownload
2021-03-08 18:29 - 2021-03-08 18:29 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\WinSomware
2021-03-08 17:57 - 2021-03-08 17:57 - 000689648 _____ (FortniteReplayDumper) C:\Users\Milospc\Downloads\FortniteReplayDumper.exe
2021-03-08 17:57 - 2021-03-08 17:57 - 000000000 ____D C:\Users\Milospc\AppData\Local\ProSwapperReplay
2021-03-08 17:56 - 2021-03-08 17:56 - 000911360 _____ () C:\Users\Milospc\Downloads\ProSwapperReplay.exe
2021-03-08 13:35 - 2021-03-08 13:35 - 000802755 _____ C:\Users\Milospc\Downloads\Subscribe - 51513.mp4
2021-03-08 13:35 - 2021-03-08 13:35 - 000540828 _____ C:\Users\Milospc\Downloads\Subscribe - 51513 (1).mp4
2021-03-08 13:29 - 2021-03-08 13:29 - 008537113 _____ C:\Users\Milospc\Downloads\EarTrumpet-master.zip
2021-03-08 12:59 - 2021-03-08 12:59 - 000016064 _____ C:\Users\Milospc\Downloads\Youtube - 27477.mp4.sfk
2021-03-08 12:57 - 2021-03-08 12:57 - 000544337 _____ C:\Users\Milospc\Downloads\Youtube - 27477 (1).mp4
2021-03-08 12:57 - 2021-03-08 12:57 - 000389148 _____ C:\Users\Milospc\Downloads\Youtube - 27477.mp4
2021-03-08 12:12 - 2021-03-22 19:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-03-08 10:29 - 2021-03-15 12:23 - 000000000 ____D C:\Users\Milospc\Desktop\fotky tobi do Serepes production
2021-03-07 19:25 - 2021-03-12 17:54 - 000000000 ____D C:\ProgramData\SCGO

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-04-06 15:27 - 2020-06-01 18:43 - 000000000 ____D C:\ProgramData\Origin
2021-04-06 15:25 - 2020-06-01 18:43 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Origin
2021-04-06 15:25 - 2020-06-01 18:43 - 000000000 ____D C:\Users\Milospc\AppData\Local\Origin
2021-04-06 15:25 - 2019-10-13 19:31 - 000000000 ____D C:\Users\Milospc\AppData\Local\D3DSCache
2021-04-06 15:24 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-06 15:22 - 2019-10-07 19:13 - 000000000 ____D C:\Users\Milospc
2021-04-06 13:17 - 2020-03-04 16:03 - 000000000 ____D C:\Users\Milospc\AppData\Local\CrashDumps
2021-04-06 12:31 - 2019-10-08 21:18 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\vlc
2021-04-06 12:25 - 2019-10-07 17:06 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-06 12:09 - 2019-11-22 10:57 - 000000000 ____D C:\Program Files (x86)\Steam
2021-04-06 11:42 - 2019-10-07 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-06 07:19 - 2021-02-01 18:13 - 000000000 ____D C:\Users\Milospc\AppData\Local\Secure File Deleter 6
2021-04-06 07:19 - 2020-11-21 18:10 - 000000000 ____D C:\Program Files (x86)\Auto Mouse Click (AMC)
2021-04-06 07:19 - 2020-09-30 10:50 - 000000000 ____D C:\ProgramData\SystemNetwork
2021-04-06 07:19 - 2020-09-30 10:49 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Wade
2021-04-05 20:38 - 2020-11-13 16:15 - 000000000 ____D C:\Users\postgres
2021-04-05 20:38 - 2019-10-07 19:14 - 000000000 ____D C:\Users\defaultuser0
2021-04-05 20:35 - 2019-10-07 19:22 - 001702344 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-05 20:35 - 2019-03-19 13:57 - 000720240 _____ C:\WINDOWS\system32\perfh005.dat
2021-04-05 20:35 - 2019-03-19 13:57 - 000146256 _____ C:\WINDOWS\system32\perfc005.dat
2021-04-05 20:35 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-04-05 20:32 - 2020-12-27 19:36 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-04-05 20:29 - 2019-10-20 19:59 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-04-05 20:29 - 2019-10-07 19:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-05 19:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-04-05 19:54 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-05 17:59 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-04-05 17:59 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-05 17:54 - 2020-03-04 09:50 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\AVAST Software
2021-04-05 17:54 - 2020-03-03 21:51 - 000000000 ____D C:\ProgramData\AVAST Software
2021-04-05 17:53 - 2020-12-03 23:16 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2021-04-05 17:39 - 2020-11-12 21:42 - 000000000 ____D C:\Users\Milospc\AppData\Local\LogMeIn Hamachi
2021-03-31 08:05 - 2020-05-18 21:10 - 000000000 ____D C:\Users\Milospc\Desktop\ŠkOlA
2021-03-30 16:31 - 2020-11-21 19:05 - 000000000 ____D C:\Users\Milospc\Desktop\MIX
2021-03-30 15:51 - 2020-10-10 14:07 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1212909314-1353993095-2117482179-1001
2021-03-30 15:51 - 2020-09-10 20:54 - 000003244 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2021-03-30 15:51 - 2020-08-26 14:37 - 000003486 _____ C:\WINDOWS\system32\Tasks\CryptoTabUpdateTaskMachineUA
2021-03-30 15:51 - 2020-08-26 14:37 - 000003262 _____ C:\WINDOWS\system32\Tasks\CryptoTabUpdateTaskMachineCore
2021-03-30 15:51 - 2020-05-05 17:43 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2020-05-05 17:43 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-03-30 15:51 - 2019-10-22 15:25 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1212909314-1353993095-2117482179-1002
2021-03-30 15:29 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\IME
2021-03-30 15:25 - 2020-09-17 15:44 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\discord
2021-03-30 15:14 - 2020-03-03 21:29 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\uTorrent
2021-03-30 15:13 - 2020-03-04 09:41 - 000000000 ____D C:\Users\Milospc\AppData\Local\BitTorrentHelper
2021-03-30 12:27 - 2021-02-01 18:15 - 000000000 ____D C:\Users\Milospc\AppData\LocalLow\uTorrent
2021-03-30 12:07 - 2020-09-17 15:44 - 000000000 ____D C:\Users\Milospc\AppData\Local\Discord
2021-03-30 11:49 - 2020-03-10 16:27 - 000000000 ____D C:\Users\Milospc\AppData\Local\Ubisoft Game Launcher
2021-03-30 09:28 - 2020-09-10 20:53 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-03-29 21:35 - 2019-10-07 17:02 - 000000000 ____D C:\Users\Milospc\AppData\Local\Packages
2021-03-29 17:25 - 2019-10-22 15:12 - 000000000 ____D C:\Users\zimul
2021-03-29 17:21 - 2020-06-10 19:51 - 000000000 ____D C:\Program Files (x86)\Splashtop
2021-03-28 20:42 - 2020-10-09 15:27 - 000231872 _____ C:\WINDOWS\system32\spacedeskSrvLibConnectorUsb.dll
2021-03-26 14:49 - 2021-01-23 17:49 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\obs-studio
2021-03-26 13:55 - 2020-10-14 17:31 - 000001440 _____ C:\ProgramData\droidcam-client-options-v1
2021-03-26 13:55 - 2020-10-14 17:31 - 000000084 _____ C:\ProgramData\droidcam-settings
2021-03-26 13:08 - 2021-02-03 09:31 - 000000016 _____ C:\Users\Milospc\AppData\Roaming\obs-virtualcam.txt
2021-03-25 13:45 - 2020-12-26 16:19 - 000000000 ____D C:\Users\Milospc\Downloads\Terraria v.1.4.1.2 [GOG] (2011)
2021-03-24 12:26 - 2020-10-14 14:46 - 000002389 _____ C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-03-23 09:00 - 2021-02-08 20:16 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\audacity
2021-03-22 19:47 - 2019-12-19 14:51 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-03-22 13:57 - 2019-10-07 19:10 - 000501312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-21 22:21 - 2021-01-16 15:51 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\MAGIX
2021-03-21 22:19 - 2020-12-03 22:42 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Sony
2021-03-20 20:05 - 2020-12-21 14:15 - 000000000 ____D C:\Users\zimul\AppData\Roaming\Spotify
2021-03-20 16:17 - 2020-12-04 20:45 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\LGHUB
2021-03-19 22:15 - 2020-12-04 20:45 - 000000000 ____D C:\Users\Milospc\AppData\Local\LGHUB
2021-03-19 20:24 - 2020-12-21 14:17 - 000000000 ____D C:\Users\zimul\AppData\Local\Spotify
2021-03-19 17:07 - 2020-05-29 17:30 - 000000000 ____D C:\Users\Milospc\AppData\LocalLow\Mozilla
2021-03-19 12:52 - 2019-11-21 18:45 - 000000000 ____D C:\Program Files\Rockstar Games
2021-03-19 12:52 - 2019-11-21 18:45 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2021-03-19 09:37 - 2019-10-20 19:49 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-03-18 21:33 - 2021-02-01 20:07 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-03-18 21:33 - 2019-10-08 21:14 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-17 21:33 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-17 17:48 - 2020-08-26 14:06 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\extrimhack
2021-03-17 16:54 - 2020-11-09 13:02 - 000000000 ____D C:\Users\Milospc\Documents\Zvukové záznamy
2021-03-17 14:43 - 2019-10-07 21:23 - 000000000 ____D C:\Users\Milospc\AppData\Local\PlaceholderTileLogoFolder
2021-03-16 11:42 - 2019-10-13 19:28 - 000000000 ____D C:\ProgramData\Epic
2021-03-16 10:22 - 2020-08-11 14:03 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\slobs-client
2021-03-15 17:04 - 2020-10-10 14:07 - 000002382 _____ C:\Users\Milospc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-15 17:04 - 2019-10-07 17:04 - 000000000 ___RD C:\Users\Milospc\OneDrive
2021-03-15 14:12 - 2019-10-22 15:25 - 000002376 _____ C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-15 14:12 - 2019-10-22 15:25 - 000000000 ___RD C:\Users\zimul\OneDrive
2021-03-15 08:06 - 2020-10-13 19:10 - 000002379 _____ C:\Users\zimul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-03-14 15:34 - 2021-01-23 14:17 - 000000000 ____D C:\Users\zimul\Desktop\šíma
2021-03-14 14:40 - 2020-03-24 18:51 - 000000000 ____D C:\Users\zimul\AppData\Local\CrashDumps
2021-03-13 14:51 - 2019-11-24 14:31 - 000000000 ____D C:\Users\Milospc\AppData\Local\ElevatedDiagnostics
2021-03-12 16:54 - 2021-03-02 12:58 - 000000000 ____D C:\Program Files\7-Zip
2021-03-10 12:08 - 2019-10-23 15:32 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\.minecraft
2021-03-10 11:50 - 2020-09-09 20:39 - 000000000 ____D C:\Users\Milospc\AppData\Roaming\.tlauncher
2021-03-10 09:53 - 2019-12-19 14:50 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-09 21:41 - 2021-03-03 13:15 - 000000000 ____D C:\AdwCleaner
2021-03-09 21:41 - 2020-02-02 10:40 - 000000000 ____D C:\Users\zimul\AppData\Roaming\Lavasoft
2021-03-09 21:41 - 2020-02-02 10:40 - 000000000 ____D C:\Users\zimul\AppData\Local\Lavasoft
2021-03-09 21:41 - 2020-02-02 10:39 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2021-03-09 18:16 - 2021-02-11 10:28 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2021-03-09 08:35 - 2020-09-17 19:21 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2021-03-08 19:55 - 2019-12-19 14:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-03-08 18:34 - 2021-02-17 17:38 - 000000439 ____N C:\WINDOWS\parameters.ini

==================== Files in the root of some directories ========

2021-02-15 14:06 - 2021-02-15 14:06 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2021-02-01 18:17 - 2021-02-05 22:10 - 000000004 _____ () C:\ProgramData\lock.dat
2021-02-15 14:06 - 2021-02-15 14:06 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2021-02-15 14:06 - 2021-02-15 14:06 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2021-02-15 14:07 - 2021-02-15 14:07 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2021-02-01 18:18 - 2021-02-05 22:09 - 000000004 _____ () C:\ProgramData\rc.dat
2021-02-15 14:07 - 2021-02-15 14:07 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2021-02-01 18:17 - 2021-02-01 18:17 - 000000008 _____ () C:\ProgramData\ts.dat
2021-02-15 14:07 - 2021-02-15 14:07 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2021-02-16 19:43 - 2021-02-16 20:31 - 195852531 _____ (rocksdanister ) C:\Users\Milospc\lively_setup_x86_full_v1194.exe
2020-11-11 12:01 - 2020-11-11 12:01 - 000000068 _____ () C:\Users\Milospc\AppData\Roaming\changzhi_leidian.data
2021-02-03 09:31 - 2021-03-26 13:08 - 000000016 _____ () C:\Users\Milospc\AppData\Roaming\obs-virtualcam.txt
2020-06-18 00:06 - 2020-06-19 10:40 - 000000036 _____ () C:\Users\Milospc\AppData\Roaming\WB.CFG
2020-11-03 09:59 - 2020-11-03 09:59 - 000000218 _____ () C:\Users\Milospc\AppData\Local\recently-used.xbel
2020-06-18 12:30 - 2020-06-18 12:30 - 000007605 _____ () C:\Users\Milospc\AppData\Local\Resmon.ResmonCfg

==================== FLock ==============================

2021-04-06 15:15 C:\VTRoot
2021-01-26 07:06 C:\WINDOWS\system32\ntdll.dll
2021-01-26 07:07 C:\WINDOWS\SysWOW64\ntdll.dll

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe
[2021-01-26 07:06] - [2021-01-26 07:06] - 000845312 _____ (Microsoft Corporation) FD9AAD3EA144D4C893EB0CCBFF394A83

C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\SysWOW64\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll
[2021-01-26 07:06] - [2021-01-26 07:06] - 001260544 _____ (Microsoft Corporation) 98E76FA120294D28C4B02C257BCFB63C

==================== End of FRST.txt ========================

Re: Někdo je v mém PC

Napsal: 08 dub 2021 12:08
od Rudy
Rozdělte do více postů.
Všechny časy jsou v UTC+01:00
Stránka 2 z 4

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz