Prosím o kontrolu logu

Příspěvekod **jaro3** » 26 led 2022 21:43

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreatRestorePoint:
CloseProcesses:
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\...\Run: [TSMApplication] => "C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe" (No File)
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\...\Run: [JellyfinTray] => C:\Program Files\Jellyfin\Server\Jellyfin.Windows.Tray.exe (No File)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {2D6D62F3-71C5-45DB-A6D0-A4F3BE70FA7B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-12] (Google Inc -> Google Inc.)
Task: {448CCAB7-CA93-487E-B20B-02DBD3C3DC83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-12] (Google Inc -> Google Inc.)
Task: {6B5C9DD2-E29D-4100-829A-5D1060453950} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (No File)
Task: {A55A797B-E8D2-4100-A943-BF768DE5F825} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2617044153-1973433787-3727689247-1001UA => C:\Users\User\AppData\Local\BraveSoftware\Update\BraveUpdate.exe /ua /installsource scheduler (No File)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
F Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-2617044153-1973433787-3727689247-1001: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-2617044153-1973433787-3727689247-1001: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [No File]
CHR Extension: (Social Blade) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2022-01-26] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
R3 ALSysIO; C:\Users\User\AppData\Local\Temp\ALSysIO64.sys [35320 2022-01-26] (ALCPU -> Arthur Liberman) <==== ATTENTION
S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X]
 C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{06B74C04-E813-4DD4-A972-172836EFA8D6}\InprocServer32 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{06C9646D-2807-44C0-97D2-6DA0DB623DB4}\localserver32 -> "C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\Application\71.0.58.21\notification_helper.exe" => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7289.1207\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{488E3BA0-A826-4958-9AC6-3F35ED8D62EB}\InprocServer32 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7289.1207\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7289.1207\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
FirewallRules: [{082A42EA-D451-445C-971C-958CF4921A65}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TvService.exe => No File
FirewallRules: [{A2871D79-6BEA-4EA9-8942-9916967985BB}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TvService.exe => No File
FirewallRules: [{88BC138F-DBD5-437A-97D6-3C2FD8683A1F}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe => No File
FirewallRules: [{12CD8513-591C-498A-91AB-A9226E3D8000}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe => No File
FirewallRules: [{D9BCAAB7-1273-4AAB-9209-366F5C437BF2}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal\MediaPortal.exe => No File
FirewallRules: [{8F411665-FE1D-421F-87C4-FF6DCD4AD61B}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal\MediaPortal.exe => No File
FirewallRules: [TCP Query User{F2B53D02-E5FD-4145-8566-D1F54C77DB66}C:\program files (x86)\team mediaportal\mediaportal\configuration.exe] => (Allow) C:\program files (x86)\team mediaportal\mediaportal\configuration.exe => No File
FirewallRules: [UDP Query User{AC6CB85C-7A35-4671-B725-351D1A5DE7B2}C:\program files (x86)\team mediaportal\mediaportal\configuration.exe] => (Allow) C:\program files (x86)\team mediaportal\mediaportal\configuration.exe => No File
FirewallRules: [TCP Query User{FC89FC44-19A3-4F5F-8859-D921F839B6E1}C:\program files\jellyfin\server\jellyfin.exe] => (Allow) C:\program files\jellyfin\server\jellyfin.exe => No File
FirewallRules: [UDP Query User{04B6ABEB-6FDB-4B28-B203-FF64F97BBDEF}C:\program files\jellyfin\server\jellyfin.exe] => (Allow) C:\program files\jellyfin\server\jellyfin.exe => No File
FirewallRules: [TCP Query User{0C2FF5D4-4833-49AA-BA05-35A02C6445E4}C:\program files (x86)\stream what you hear\swyh.exe] => (Allow) C:\program files (x86)\stream what you hear\swyh.exe => No File
FirewallRules: [UDP Query User{DC75E7B1-BD54-46E4-B1B5-90F449224647}C:\program files (x86)\stream what you hear\swyh.exe] => (Allow) C:\program files (x86)\stream what you hear\swyh.exe => No File
FirewallRules: [TCP Query User{50284367-4465-478E-8AEC-6FC011D581A3}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [UDP Query User{7E0C6F06-D725-4149-B8BA-04C94E506937}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [{55DA6523-E81B-4D9C-B75F-1D51FF0A2B98}] => (Block) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [{4598641C-5B6A-48BC-B19C-0E6CF84DBFBE}] => (Block) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [TCP Query User{FF336661-0640-4E47-801F-846638051722}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [UDP Query User{5AEAD668-D6BD-453D-B7C6-E6A86993C4DF}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [{5D24459B-7D70-4020-A1D9-9DCCFC675879}] => (Block) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [{53AE2048-70E8-4782-8CF5-E826BE7766DE}] => (Block) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [TCP Query User{A29124EF-3A4D-403B-901A-72BE02A97DFB}C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [UDP Query User{EF59D269-4A8A-4026-9901-3B6FC8C0E5F7}C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [{10137424-1989-4AF7-BE9E-B41301CE3880}] => (Block) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [{544F5D26-2CFF-40B3-BEA2-C027C9C80D7A}] => (Block) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [TCP Query User{96AD5A2A-9293-457A-9A92-DC5779B729C2}C:\users\user\desktop\anydesk.exe] => (Allow) C:\users\user\desktop\anydesk.exe => No File
FirewallRules: [UDP Query User{E1804EBB-B9FF-41C3-85CA-3099F5F6C032}C:\users\user\desktop\anydesk.exe] => (Allow) C:\users\user\desktop\anydesk.exe => No File
FirewallRules: [TCP Query User{B76EC0CA-19D6-48E3-9CB1-CB869CE39B34}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [UDP Query User{0D8BD682-254E-40D5-ABBD-94CCE150F0E6}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [TCP Query User{1696FD22-077F-4824-BC11-47B07508E206}C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe] => (Block) C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe => No File
FirewallRules: [UDP Query User{AE94F929-C76D-4E15-86F1-EB221DADBF0A}C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe] => (Block) C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe => No File
FirewallRules: [TCP Query User{7D3F1C27-51B5-4563-93E6-B4B3D810BDD8}C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe] => (Block) C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe => No File
FirewallRules: [UDP Query User{FEA6AF4C-7BBA-4B17-A75E-890962B75B7A}C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe] => (Block) C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe => No File
FirewallRules: [TCP Query User{B1E3985B-769B-4A88-944D-924EC32204FE}C:\program files\daedalus mainnet\daedalus mainnet.exe] => (Allow) C:\program files\daedalus mainnet\daedalus mainnet.exe => No File
FirewallRules: [UDP Query User{942A8C71-C08F-40D8-BA29-86D18B378B4E}C:\program files\daedalus mainnet\daedalus mainnet.exe] => (Allow) C:\program files\daedalus mainnet\daedalus mainnet.exe => No File
FirewallRules: [TCP Query User{36385DBA-03D4-4D40-ADB9-4AC756DBE95E}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [UDP Query User{3410CBBB-B75A-4E57-A7CE-7FD0FAD41400}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [TCP Query User{B0F14579-A0A3-429E-A96F-3040B14E15F1}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{A0CA4C6F-525D-45B7-B6C7-83CDA012729A}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{707D6916-9061-40D4-9E82-08259D4257E7}C:\program files (x86)\tikvpn\tikvpn.exe] => (Allow) C:\program files (x86)\tikvpn\tikvpn.exe => No File
FirewallRules: [UDP Query User{0A8A0E4E-591B-41DE-BB5B-68B24DA3B1E2}C:\program files (x86)\tikvpn\tikvpn.exe] => (Allow) C:\program files (x86)\tikvpn\tikvpn.exe => No File
FirewallRules: [TCP Query User{0B226FB5-B29D-473F-B8C7-4664FD623C57}C:\program files (x86)\tikvpn\tun2socks-tik.exe] => (Allow) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [UDP Query User{6B2E16E2-FC60-42A0-834C-A5490F83FA41}C:\program files (x86)\tikvpn\tun2socks-tik.exe] => (Allow) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [{AAD8DC8C-29ED-4C28-9A62-F99316BB676A}] => (Block) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [{7F5BD5BA-55D0-498D-84A2-F2ABCC8C7E1E}] => (Block) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [{25F4DF7B-D24B-48FC-BAA0-73A540F2A691}] => (Block) C:\program files (x86)\tikvpn\tikvpn.exe => No File
FirewallRules: [{1D62355E-E633-4632-A827-32423C7FBD89}] => (Block) C:\program files (x86)\tikvpn\tikvpn.exe => No File

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

C:\Users\User\Downloads\e664cbfc-3df6-44d7-8a1b-5578e680eb0a.tmp
C:\Users\User\Downloads\0830bf67-87d6-4aee-9e92-a7e7f4ff942c.tmp
C:\Users\User\Downloads\d6fa215d-9869-4cc3-95ca-2d942b5b42c8.tmp
C:\Users\User\Downloads\fd41aee1-cd3c-447b-81b7-49ca20a9333e.tmp
C:\Users\User\Downloads\3b18d358-72a6-437b-907e-b73a41a611a5.tmp
C:\Users\User\Downloads\896567de-af05-4df8-85a2-8dda337f95ca.tmp
C:\Users\User\Downloads\45b3d97f-32a5-4a21-9ee4-95a6232188f7.tmp
C:\Users\User\Downloads\4d4ac1ff-72e7-4375-a655-3d8139319575.tmp

Tohle si stahoval sám?

Reklama

nermitus · Příspěvekod **nermitus** » 26 led 2022 22:06

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-01-2022
Ran by User (26-01-2022 22:00:35) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreatRestorePoint:
CloseProcesses:
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\...\Run: [TSMApplication] => "C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe" (No File)
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\...\Run: [JellyfinTray] => C:\Program Files\Jellyfin\Server\Jellyfin.Windows.Tray.exe (No File)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {2D6D62F3-71C5-45DB-A6D0-A4F3BE70FA7B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-12] (Google Inc -> Google Inc.)
Task: {448CCAB7-CA93-487E-B20B-02DBD3C3DC83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-12] (Google Inc -> Google Inc.)
Task: {6B5C9DD2-E29D-4100-829A-5D1060453950} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (No File)
Task: {A55A797B-E8D2-4100-A943-BF768DE5F825} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2617044153-1973433787-3727689247-1001UA => C:\Users\User\AppData\Local\BraveSoftware\Update\BraveUpdate.exe /ua /installsource scheduler (No File)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
F Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-2617044153-1973433787-3727689247-1001: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-2617044153-1973433787-3727689247-1001: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [No File]
CHR Extension: (Social Blade) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2022-01-26] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
R3 ALSysIO; C:\Users\User\AppData\Local\Temp\ALSysIO64.sys [35320 2022-01-26] (ALCPU -> Arthur Liberman) <==== ATTENTION
S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{06B74C04-E813-4DD4-A972-172836EFA8D6}\InprocServer32 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{06C9646D-2807-44C0-97D2-6DA0DB623DB4}\localserver32 -> "C:\Users\User\AppData\Local\BraveSoftware\Brave-Browser\Application\71.0.58.21\notification_helper.exe" => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7289.1207\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{488E3BA0-A826-4958-9AC6-3F35ED8D62EB}\InprocServer32 -> C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7289.1207\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7289.1207\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
FirewallRules: [{082A42EA-D451-445C-971C-958CF4921A65}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TvService.exe => No File
FirewallRules: [{A2871D79-6BEA-4EA9-8942-9916967985BB}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TvService.exe => No File
FirewallRules: [{88BC138F-DBD5-437A-97D6-3C2FD8683A1F}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe => No File
FirewallRules: [{12CD8513-591C-498A-91AB-A9226E3D8000}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe => No File
FirewallRules: [{D9BCAAB7-1273-4AAB-9209-366F5C437BF2}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal\MediaPortal.exe => No File
FirewallRules: [{8F411665-FE1D-421F-87C4-FF6DCD4AD61B}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MediaPortal\MediaPortal.exe => No File
FirewallRules: [TCP Query User{F2B53D02-E5FD-4145-8566-D1F54C77DB66}C:\program files (x86)\team mediaportal\mediaportal\configuration.exe] => (Allow) C:\program files (x86)\team mediaportal\mediaportal\configuration.exe => No File
FirewallRules: [UDP Query User{AC6CB85C-7A35-4671-B725-351D1A5DE7B2}C:\program files (x86)\team mediaportal\mediaportal\configuration.exe] => (Allow) C:\program files (x86)\team mediaportal\mediaportal\configuration.exe => No File
FirewallRules: [TCP Query User{FC89FC44-19A3-4F5F-8859-D921F839B6E1}C:\program files\jellyfin\server\jellyfin.exe] => (Allow) C:\program files\jellyfin\server\jellyfin.exe => No File
FirewallRules: [UDP Query User{04B6ABEB-6FDB-4B28-B203-FF64F97BBDEF}C:\program files\jellyfin\server\jellyfin.exe] => (Allow) C:\program files\jellyfin\server\jellyfin.exe => No File
FirewallRules: [TCP Query User{0C2FF5D4-4833-49AA-BA05-35A02C6445E4}C:\program files (x86)\stream what you hear\swyh.exe] => (Allow) C:\program files (x86)\stream what you hear\swyh.exe => No File
FirewallRules: [UDP Query User{DC75E7B1-BD54-46E4-B1B5-90F449224647}C:\program files (x86)\stream what you hear\swyh.exe] => (Allow) C:\program files (x86)\stream what you hear\swyh.exe => No File
FirewallRules: [TCP Query User{50284367-4465-478E-8AEC-6FC011D581A3}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [UDP Query User{7E0C6F06-D725-4149-B8BA-04C94E506937}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [{55DA6523-E81B-4D9C-B75F-1D51FF0A2B98}] => (Block) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [{4598641C-5B6A-48BC-B19C-0E6CF84DBFBE}] => (Block) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [TCP Query User{FF336661-0640-4E47-801F-846638051722}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [UDP Query User{5AEAD668-D6BD-453D-B7C6-E6A86993C4DF}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [{5D24459B-7D70-4020-A1D9-9DCCFC675879}] => (Block) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [{53AE2048-70E8-4782-8CF5-E826BE7766DE}] => (Block) C:\program files (x86)\kodi\kodi.exe => No File
FirewallRules: [TCP Query User{A29124EF-3A4D-403B-901A-72BE02A97DFB}C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [UDP Query User{EF59D269-4A8A-4026-9901-3B6FC8C0E5F7}C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [{10137424-1989-4AF7-BE9E-B41301CE3880}] => (Block) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [{544F5D26-2CFF-40B3-BEA2-C027C9C80D7A}] => (Block) C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe => No File
FirewallRules: [TCP Query User{96AD5A2A-9293-457A-9A92-DC5779B729C2}C:\users\user\desktop\anydesk.exe] => (Allow) C:\users\user\desktop\anydesk.exe => No File
FirewallRules: [UDP Query User{E1804EBB-B9FF-41C3-85CA-3099F5F6C032}C:\users\user\desktop\anydesk.exe] => (Allow) C:\users\user\desktop\anydesk.exe => No File
FirewallRules: [TCP Query User{B76EC0CA-19D6-48E3-9CB1-CB869CE39B34}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [UDP Query User{0D8BD682-254E-40D5-ABBD-94CCE150F0E6}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe => No File
FirewallRules: [TCP Query User{1696FD22-077F-4824-BC11-47B07508E206}C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe] => (Block) C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe => No File
FirewallRules: [UDP Query User{AE94F929-C76D-4E15-86F1-EB221DADBF0A}C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe] => (Block) C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe => No File
FirewallRules: [TCP Query User{7D3F1C27-51B5-4563-93E6-B4B3D810BDD8}C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe] => (Block) C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe => No File
FirewallRules: [UDP Query User{FEA6AF4C-7BBA-4B17-A75E-890962B75B7A}C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe] => (Block) C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe => No File
FirewallRules: [TCP Query User{B1E3985B-769B-4A88-944D-924EC32204FE}C:\program files\daedalus mainnet\daedalus mainnet.exe] => (Allow) C:\program files\daedalus mainnet\daedalus mainnet.exe => No File
FirewallRules: [UDP Query User{942A8C71-C08F-40D8-BA29-86D18B378B4E}C:\program files\daedalus mainnet\daedalus mainnet.exe] => (Allow) C:\program files\daedalus mainnet\daedalus mainnet.exe => No File
FirewallRules: [TCP Query User{36385DBA-03D4-4D40-ADB9-4AC756DBE95E}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [UDP Query User{3410CBBB-B75A-4E57-A7CE-7FD0FAD41400}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [TCP Query User{B0F14579-A0A3-429E-A96F-3040B14E15F1}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{A0CA4C6F-525D-45B7-B6C7-83CDA012729A}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{707D6916-9061-40D4-9E82-08259D4257E7}C:\program files (x86)\tikvpn\tikvpn.exe] => (Allow) C:\program files (x86)\tikvpn\tikvpn.exe => No File
FirewallRules: [UDP Query User{0A8A0E4E-591B-41DE-BB5B-68B24DA3B1E2}C:\program files (x86)\tikvpn\tikvpn.exe] => (Allow) C:\program files (x86)\tikvpn\tikvpn.exe => No File
FirewallRules: [TCP Query User{0B226FB5-B29D-473F-B8C7-4664FD623C57}C:\program files (x86)\tikvpn\tun2socks-tik.exe] => (Allow) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [UDP Query User{6B2E16E2-FC60-42A0-834C-A5490F83FA41}C:\program files (x86)\tikvpn\tun2socks-tik.exe] => (Allow) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [{AAD8DC8C-29ED-4C28-9A62-F99316BB676A}] => (Block) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [{7F5BD5BA-55D0-498D-84A2-F2ABCC8C7E1E}] => (Block) C:\program files (x86)\tikvpn\tun2socks-tik.exe => No File
FirewallRules: [{25F4DF7B-D24B-48FC-BAA0-73A540F2A691}] => (Block) C:\program files (x86)\tikvpn\tikvpn.exe => No File
FirewallRules: [{1D62355E-E633-4632-A827-32423C7FBD89}] => (Block) C:\program files (x86)\tikvpn\tikvpn.exe => No File

EmptyTemp:
End
*****************

CreatRestorePoint: => Error: No automatic fix found for this entry.
Processes closed successfully.
"HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\Software\Microsoft\Windows\CurrentVersion\Run\\TSMApplication" => removed successfully
"HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\Software\Microsoft\Windows\CurrentVersion\Run\\JellyfinTray" => removed successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2D6D62F3-71C5-45DB-A6D0-A4F3BE70FA7B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D6D62F3-71C5-45DB-A6D0-A4F3BE70FA7B}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{448CCAB7-CA93-487E-B20B-02DBD3C3DC83}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{448CCAB7-CA93-487E-B20B-02DBD3C3DC83}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6B5C9DD2-E29D-4100-829A-5D1060453950}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B5C9DD2-E29D-4100-829A-5D1060453950}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\rempl\shell-usoscan" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A55A797B-E8D2-4100-A943-BF768DE5F825}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A55A797B-E8D2-4100-A943-BF768DE5F825}" => removed successfully
C:\WINDOWS\System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2617044153-1973433787-3727689247-1001UA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskUserS-1-5-21-2617044153-1973433787-3727689247-1001UA" => removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
F Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) => Error: No automatic fix found for this entry.
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN" => not found
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN" => not found
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN" => not found
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN" => not found
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\Software\MozillaPlugins\@tools.brave.com/BraveSoftware Update;version=3 => removed successfully
"C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll" => not found
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001\Software\MozillaPlugins\@tools.brave.com/BraveSoftware Update;version=9 => removed successfully
"C:\Users\User\AppData\Local\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll" => not found
CHR Extension: (Social Blade) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2022-01-26] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => removed successfully
ALSysIO => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz149 => removed successfully
cpuz149 => service removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{06B74C04-E813-4DD4-A972-172836EFA8D6} => removed successfully
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{06C9646D-2807-44C0-97D2-6DA0DB623DB4} => removed successfully
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{488E3BA0-A826-4958-9AC6-3F35ED8D62EB} => removed successfully
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-2617044153-1973433787-3727689247-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{082A42EA-D451-445C-971C-958CF4921A65}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A2871D79-6BEA-4EA9-8942-9916967985BB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{88BC138F-DBD5-437A-97D6-3C2FD8683A1F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{12CD8513-591C-498A-91AB-A9226E3D8000}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D9BCAAB7-1273-4AAB-9209-366F5C437BF2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F411665-FE1D-421F-87C4-FF6DCD4AD61B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F2B53D02-E5FD-4145-8566-D1F54C77DB66}C:\program files (x86)\team mediaportal\mediaportal\configuration.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AC6CB85C-7A35-4671-B725-351D1A5DE7B2}C:\program files (x86)\team mediaportal\mediaportal\configuration.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FC89FC44-19A3-4F5F-8859-D921F839B6E1}C:\program files\jellyfin\server\jellyfin.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{04B6ABEB-6FDB-4B28-B203-FF64F97BBDEF}C:\program files\jellyfin\server\jellyfin.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0C2FF5D4-4833-49AA-BA05-35A02C6445E4}C:\program files (x86)\stream what you hear\swyh.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DC75E7B1-BD54-46E4-B1B5-90F449224647}C:\program files (x86)\stream what you hear\swyh.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{50284367-4465-478E-8AEC-6FC011D581A3}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7E0C6F06-D725-4149-B8BA-04C94E506937}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{55DA6523-E81B-4D9C-B75F-1D51FF0A2B98}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4598641C-5B6A-48BC-B19C-0E6CF84DBFBE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FF336661-0640-4E47-801F-846638051722}C:\program files (x86)\kodi\kodi.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5AEAD668-D6BD-453D-B7C6-E6A86993C4DF}C:\program files (x86)\kodi\kodi.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5D24459B-7D70-4020-A1D9-9DCCFC675879}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{53AE2048-70E8-4782-8CF5-E826BE7766DE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A29124EF-3A4D-403B-901A-72BE02A97DFB}C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EF59D269-4A8A-4026-9901-3B6FC8C0E5F7}C:\program files (x86)\steam\steamapps\common\torchlight iii\frontiers\binaries\win64\frontiers-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{10137424-1989-4AF7-BE9E-B41301CE3880}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{544F5D26-2CFF-40B3-BEA2-C027C9C80D7A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{96AD5A2A-9293-457A-9A92-DC5779B729C2}C:\users\user\desktop\anydesk.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E1804EBB-B9FF-41C3-85CA-3099F5F6C032}C:\users\user\desktop\anydesk.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B76EC0CA-19D6-48E3-9CB1-CB869CE39B34}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0D8BD682-254E-40D5-ABBD-94CCE150F0E6}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1696FD22-077F-4824-BC11-47B07508E206}C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AE94F929-C76D-4E15-86F1-EB221DADBF0A}C:\users\user\desktop\mmorpg.tycoon.2.v0.18.0\mt2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7D3F1C27-51B5-4563-93E6-B4B3D810BDD8}C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FEA6AF4C-7BBA-4B17-A75E-890962B75B7A}C:\users\user\desktop\bloons.td.6.v27.1.4229\bloonstd6.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B1E3985B-769B-4A88-944D-924EC32204FE}C:\program files\daedalus mainnet\daedalus mainnet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{942A8C71-C08F-40D8-BA29-86D18B378B4E}C:\program files\daedalus mainnet\daedalus mainnet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{36385DBA-03D4-4D40-ADB9-4AC756DBE95E}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3410CBBB-B75A-4E57-A7CE-7FD0FAD41400}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B0F14579-A0A3-429E-A96F-3040B14E15F1}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A0CA4C6F-525D-45B7-B6C7-83CDA012729A}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{707D6916-9061-40D4-9E82-08259D4257E7}C:\program files (x86)\tikvpn\tikvpn.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0A8A0E4E-591B-41DE-BB5B-68B24DA3B1E2}C:\program files (x86)\tikvpn\tikvpn.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0B226FB5-B29D-473F-B8C7-4664FD623C57}C:\program files (x86)\tikvpn\tun2socks-tik.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6B2E16E2-FC60-42A0-834C-A5490F83FA41}C:\program files (x86)\tikvpn\tun2socks-tik.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AAD8DC8C-29ED-4C28-9A62-F99316BB676A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7F5BD5BA-55D0-498D-84A2-F2ABCC8C7E1E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{25F4DF7B-D24B-48FC-BAA0-73A540F2A691}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1D62355E-E633-4632-A827-32423C7FBD89}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 293995449 B
Java, Flash, Steam htmlcache => 505150957 B
Windows/system/drivers => 884732 B
Edge => 0 B
Chrome => 174026253 B
Brave => 776377243 B
Firefox => 261354 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 92382 B
NetworkService => 93572 B
User => 152724375 B

RecycleBin => 0 B
EmptyTemp: => 1.8 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 22:01:56 ====

Nie nesťahoval, vidím to prvý krát.

Příspěvekod **jaro3** » 26 led 2022 22:41

C:\Users\User\Downloads\e664cbfc-3df6-44d7-8a1b-5578e680eb0a.tmp
C:\Users\User\Downloads\0830bf67-87d6-4aee-9e92-a7e7f4ff942c.tmp
C:\Users\User\Downloads\d6fa215d-9869-4cc3-95ca-2d942b5b42c8.tmp
C:\Users\User\Downloads\fd41aee1-cd3c-447b-81b7-49ca20a9333e.tmp
C:\Users\User\Downloads\3b18d358-72a6-437b-907e-b73a41a611a5.tmp
C:\Users\User\Downloads\896567de-af05-4df8-85a2-8dda337f95ca.tmp
C:\Users\User\Downloads\45b3d97f-32a5-4a21-9ee4-95a6232188f7.tmp
C:\Users\User\Downloads\4d4ac1ff-72e7-4375-a655-3d8139319575.tmp
označené soubory smaž a vysyp koš.

//a pak napiš co problémy.

nermitus · Příspěvekod **nermitus** » 26 led 2022 22:43

Hotovo, ďakujem bude to všetko, alebo je ešte nejaký spôsob ktorý by mohol pomôcť?

Příspěvekod **jaro3** » 26 led 2022 23:25

Nejprve popiš problémy. Z hlediska nákaz jsem tam nic už víc nenašel.

a ještě:
Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

nermitus · Příspěvekod **nermitus** » 26 led 2022 23:40

Nestáva sa často, ale pc zatuhne príklad ponuka štart/ kontextová tabuľka na otvorenie programu vybehne normálne, ale následne spustenie programu trvá v tomto stave priemerne 8-15 minút, v prípade reštartu / ponuky správcu úloh sa správa tiež rovnako spomalene. Neviem či môže byť tento stav spôsobený odchádzaujím hardwarom (pc má 5 rokov) nechávam ho zapnutý 24/7 s občasnými reštartmi v prípade potreby.

Příspěvekod **jaro3** » 26 led 2022 23:52

objevuje se BSOD , modrá smrt?

Stáhni si a nainstaluj WhoCrashed
otevři ho a klikni na Analyze.
Program vytvoří zprávu , zkopíruj celou a vlož prosím sem.

dnes končím , zítra se podívám.

nermitus · Příspěvekod **nermitus** » 27 led 2022 00:00

Modrú smrť nemávam žiadne logy nemám.

System Information (local)
--------------------------------------------------------------------------------

Computer name: DESKTOP-DN5JIN0
Windows version: Windows 10, 10.0, version 2009, build: 19042
Windows dir: C:\WINDOWS
Hardware: MS-7998, MSI, Z170A SLI PLUS (MS-7998)
CPU: GenuineIntel Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz 8664, level: 6
8 logical processors, active mask: 255
RAM: 17138311168 bytes (16,0GB)

--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dumps are enabled on your computer.

Crash dump directories:
C:\WINDOWS
C:\WINDOWS\Minidump

No valid crash dumps have been found on your computer

--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

Crash dumps are enabled but no valid crash dumps have been found. In case you are experiencing system crashes, it may be that crash dumps are prevented from being written out. Check out the following article for possible causes: If crash dumps are not written out.

Příspěvekod **jaro3** » 27 led 2022 16:34

Možná "nabouraný windows"? Přehřívání? Ve správci zařízení vše v pořádku?

Ještě něco zkusíme:
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

nermitus · Příspěvekod **nermitus** » 27 led 2022 17:45

OTL logfile created on: 27. 1. 2022 17:09:03 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\User\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.19041.0)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

15,96 Gb Total Physical Memory | 12,76 Gb Available Physical Memory | 79,97% Memory free
20,71 Gb Paging File | 15,38 Gb Available in Paging File | 74,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 475,88 Gb Total Space | 227,73 Gb Free Space | 47,85% Space Free | Partition Type: NTFS
Drive D: | 1862,89 Gb Total Space | 1092,09 Gb Free Space | 58,62% Space Free | Partition Type: NTFS

Computer Name: DESKTOP-DN5JIN0 | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found
PRC - C:\Users\User\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
PRC - C:\Windows\SysWOW64\fontdrvhost.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Node.js)
PRC - C:\Program Files (x86)\BraveSoftware\Update\1.3.361.111\BraveCrashHandler.exe (BraveSoftware Inc.)
PRC - C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc.)
PRC - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe ()
PRC - C:\Program Files (x86)\IObit\IObit Uninstaller\Pub\PubPlatform.exe (IObit)
PRC - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (IObit)
PRC - C:\Program Files\NordVPN\nordvpn-service.exe (TEFINCOM S.A.)
PRC - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
PRC - C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (COMODO)
PRC - C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (Digital Wave Ltd)
PRC - C:\Program Files (x86)\SpeedFan\speedfan.exe ()

========== Modules (No Company Name) ==========

MOD - C:\Users\User\AppData\Local\Temp\sfamcc00001.dll ()
MOD - C:\Users\User\AppData\Local\Temp\sfareca00001.dll ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvShadowPlayAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvBackendAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameStreamAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvUtil.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvABHubAPI.node ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ()
MOD - C:\Windows\SysWOW64\TextShaping.dll ()
MOD - C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe ()
MOD - C:\Program Files (x86)\Bloody7\Bloody7\DLL\DLL_ZoomControl.dll ()
MOD - C:\Windows\SysWOW64\umpdc.dll ()
MOD - C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl ()
MOD - C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl ()
MOD - C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl ()
MOD - C:\Program Files (x86)\Bloody7\Bloody7\Data\Mouse\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll ()
MOD - C:\Program Files (x86)\SpeedFan\speedfan.exe ()

========== Services (SafeList) ==========

SRV:64bit: - (MBAMService) -- C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes)
SRV:64bit: - (rkrtservice) -- C:\Program Files\RogueKiller\RogueKillerSvc.exe ()
SRV:64bit: - (UevAgentService) -- C:\Windows\SysNative\AgentService.exe (Microsoft Corporation)
SRV:64bit: - (cbdhsvc) -- C:\Windows\SysNative\CBDHSvc.dll (Microsoft Corporation)
SRV:64bit: - (UserManager) -- C:\Windows\SysNative\usermgr.dll (Microsoft Corporation)
SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:64bit: - (diagnosticshub.standardcollector.service) -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (Microsoft Corporation)
SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:64bit: - (shpamsvc) -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll (Microsoft Corporation)
SRV:64bit: - (StateRepository) -- C:\Windows\SysNative\Windows.StateRepository.dll (Microsoft Corporation)
SRV:64bit: - (CDPSvc) -- C:\Windows\SysNative\cdpsvc.dll (Microsoft Corporation)
SRV:64bit: - (Sense) -- C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe (Microsoft Corporation)
SRV:64bit: - (NVDisplay.ContainerLocalSystem) -- C:\Windows\SysNative\DriverStore\FileRepository\nvmdi.inf_amd64_de900db96e9c1480\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation)
SRV:64bit: - (BcastDVRUserService) -- C:\Windows\SysNative\bcastdvruserservice.dll (Microsoft Corporation)
SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:64bit: - (UsoSvc) -- C:\Windows\SysNative\usosvc.dll (Microsoft Corporation)
SRV:64bit: - (InstallService) -- C:\Windows\SysNative\InstallService.dll (Microsoft Corporation)
SRV:64bit: - (NgcSvc) -- C:\Windows\SysNative\ngcsvc.dll (Microsoft Corporation)
SRV:64bit: - (NgcCtnrSvc) -- C:\Windows\SysNative\NgcCtnrSvc.dll (Microsoft Corporation)
SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:64bit: - (NvContainerLocalSystem) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
SRV:64bit: - (Rockstar Service) -- C:\Program Files\Rockstar Games\Launcher\RockstarService.exe (Rockstar Games)
SRV:64bit: - (AppVClient) -- C:\Windows\SysNative\AppVClient.exe (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (WaaSMedicSvc) -- C:\Windows\SysNative\WaaSMedicSvc.dll (Microsoft Corporation)
SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:64bit: - (WpcMonSvc) -- C:\Windows\SysNative\WpcDesktopMonSvc.dll (Microsoft Corporation)
SRV:64bit: - (cloudidsvc) -- C:\Windows\SysNative\cloudidsvc.dll (Microsoft Corporation)
SRV:64bit: - (FrameServer) -- C:\Windows\SysNative\FrameServer.dll (Microsoft Corporation)
SRV:64bit: - (DispBrokerDesktopSvc) -- C:\Windows\SysNative\DispBroker.Desktop.dll (Microsoft Corporation)
SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:64bit: - (SecurityHealthService) -- C:\Windows\SysNative\SecurityHealthService.exe (Microsoft Corporation)
SRV:64bit: - (DoSvc) -- C:\Windows\SysNative\dosvc.dll (Microsoft Corporation)
SRV:64bit: - (TokenBroker) -- C:\Windows\SysNative\TokenBroker.dll (Microsoft Corporation)
SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:64bit: - (wisvc) -- C:\Windows\SysNative\FlightSettings.dll (Microsoft Corporation)
SRV:64bit: - (WManSvc) -- C:\Windows\SysNative\Windows.Management.Service.dll (Microsoft Corporation)
SRV:64bit: - (AarSvc) -- C:\Windows\SysNative\AarSvc.dll (Microsoft Corporation)
SRV:64bit: - (FvSvc) -- C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe (NVIDIA)
SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (CDPUserSvc) -- C:\Windows\SysNative\cdpusersvc.dll (Microsoft Corporation)
SRV:64bit: - (WFDSConMgrSvc) -- C:\Windows\SysNative\WFDSConMgrSvc.dll (Microsoft Corporation)
SRV:64bit: - (CredentialEnrollmentManagerUserSvc_54a43) -- C:\Windows\SysNative\CredentialEnrollmentManager.exe (Microsoft Corporation)
SRV:64bit: - (CredentialEnrollmentManagerUserSvc) -- C:\Windows\SysNative\CredentialEnrollmentManager.exe (Microsoft Corporation)
SRV:64bit: - (BthAvctpSvc) -- C:\Windows\SysNative\BthAvctpSvc.dll (Microsoft Corporation)
SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:64bit: - (Intel(R) -- C:\Windows\SysNative\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe (Intel(R) Corporation)
SRV:64bit: - (Intel(R) -- C:\Windows\SysNative\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe (Intel(R) Corporation)
SRV:64bit: - (uhssvc) -- C:\Program Files\Microsoft Update Health Tools\uhssvc.exe (Microsoft Corporation)
SRV:64bit: - (spectrum) -- C:\Windows\SysNative\Spectrum.exe (Microsoft Corporation)
SRV:64bit: - (SmsRouter) -- C:\Windows\SysNative\SmsRouterSvc.dll (Microsoft Corporation)
SRV:64bit: - (DmEnrollmentSvc) -- C:\Windows\SysNative\Windows.Internal.Management.dll (Microsoft Corporation)
SRV:64bit: - (ClipSVC) -- C:\Windows\SysNative\ClipSVC.dll (Microsoft Corporation)
SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:64bit: - (diagsvc) -- C:\Windows\SysNative\DiagSvc.dll (Microsoft Corporation)
SRV:64bit: - (TroubleshootingSvc) -- C:\Windows\SysNative\MitigationClient.dll (Microsoft Corporation)
SRV:64bit: - (jhi_service) -- C:\Windows\SysNative\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (Intel Corporation)
SRV:64bit: - (AssignedAccessManagerSvc) -- C:\Windows\SysNative\assignedaccessmanagersvc.dll (Microsoft Corporation)
SRV:64bit: - (nordvpn-service) -- C:\Program Files\NordVPN\nordvpn-service.exe (TEFINCOM S.A.)
SRV:64bit: - (WalletService) -- C:\Windows\SysNative\WalletService.dll (Microsoft Corporation)
SRV:64bit: - (ssh-agent) -- C:\Windows\SysNative\OpenSSH\ssh-agent.exe ()
SRV:64bit: - (MsKeyboardFilter) -- C:\Windows\SysNative\KeyboardFilterSvc.dll (Microsoft Corporation)
SRV:64bit: - (DevicesFlowUserSvc) -- C:\Windows\SysNative\DevicesFlowBroker.dll (Microsoft Corporation)
SRV:64bit: - (DevicePickerUserSvc) -- C:\Windows\SysNative\Windows.Devices.Picker.dll (Microsoft Corporation)
SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvcext.dll (Microsoft Corporation)
SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvcext.dll (Microsoft Corporation)
SRV:64bit: - (DisplayEnhancementService) -- C:\Windows\SysNative\Microsoft.Graphics.Display.DisplayEnhancementService.dll (Microsoft Corporation)
SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:64bit: - (DialogBlockingService) -- C:\Windows\SysNative\DialogBlockingService.dll (Microsoft Corporation)
SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:64bit: - (EntAppSvc) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll (Microsoft Corporation)
SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:64bit: - (UdkUserSvc) -- C:\Windows\SysNative\windowsudk.shellcommon.dll (Microsoft Corporation)
SRV:64bit: - (XboxGipSvc) -- C:\Windows\SysNative\xboxgipsvc.dll (Microsoft Corporation)
SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:64bit: - (PrintWorkflowUserSvc) -- C:\Windows\SysNative\PrintWorkflowService.dll (Microsoft Corporation)
SRV:64bit: - (CaptureService) -- C:\Windows\SysNative\CaptureService.dll (Microsoft Corporation)
SRV:64bit: - (XblGameSave) -- C:\Windows\SysNative\XblGameSave.dll (Microsoft Corporation)
SRV:64bit: - (XblAuthManager) -- C:\Windows\SysNative\XblAuthManager.dll (Microsoft Corporation)
SRV:64bit: - (VacSvc) -- C:\Windows\SysNative\vac.dll (Microsoft Corporation)
SRV:64bit: - (CmdAgentProt) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
SRV:64bit: - (CmdAgent) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO)
SRV:64bit: - (cmdvirth) -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe (COMODO)
SRV:64bit: - (RetailDemo) -- C:\Windows\SysNative\RDXService.dll (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc) -- C:\Windows\SysNative\APHostService.dll (Microsoft Corporation)
SRV:64bit: - (MixedRealityOpenXRSvc) -- C:\Windows\SysNative\MixedRealityRuntime.dll (Microsoft Corporation)
SRV:64bit: - (SharedRealitySvc) -- C:\Windows\SysNative\SharedRealitySvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvmsession) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (TieringEngineService) -- C:\Windows\SysNative\TieringEngineService.exe (Microsoft Corporation)
SRV:64bit: - (ConsentUxUserSvc) -- C:\Windows\SysNative\ConsentUxClient.dll (Microsoft Corporation)
SRV:64bit: - (XboxNetApiSvc) -- C:\Windows\SysNative\XboxNetApiSvc.dll (Microsoft Corporation)
SRV:64bit: - (perceptionsimulation) -- C:\Windows\SysNative\PerceptionSimulation\PerceptionSimulationService.exe (Microsoft Corporation)
SRV:64bit: - (autotimesvc) -- C:\Windows\SysNative\autotimesvc.dll (Microsoft Corporation)
SRV:64bit: - (SensorDataService) -- C:\Windows\SysNative\SensorDataService.exe (Microsoft Corporation)
SRV:64bit: - (RmSvc) -- C:\Windows\SysNative\RMapi.dll (Microsoft Corporation)
SRV:64bit: - (CoreMessagingRegistrar) -- C:\Windows\SysNative\CoreMessaging.dll (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:64bit: - (WpnService) -- C:\Windows\SysNative\wpnservice.dll (Microsoft Corporation)
SRV:64bit: - (WpnUserService) -- C:\Windows\SysNative\WpnUserService.dll (Microsoft Corporation)
SRV:64bit: - (UserDataSvc) -- C:\Windows\SysNative\UserDataService.dll (Microsoft Corporation)
SRV:64bit: - (UnistoreSvc) -- C:\Windows\SysNative\Unistore.dll (Microsoft Corporation)
SRV:64bit: - (PimIndexMaintenanceSvc) -- C:\Windows\SysNative\PimIndexMaintenance.dll (Microsoft Corporation)
SRV:64bit: - (PushToInstall) -- C:\Windows\SysNative\PushToInstall.dll (Microsoft Corporation)
SRV:64bit: - (LicenseManager) -- C:\Windows\SysNative\LicenseManagerSvc.dll (Microsoft Corporation)
SRV:64bit: - (GraphicsPerfSvc) -- C:\Windows\SysNative\GraphicsPerfSvc.dll (Microsoft Corporation)
SRV:64bit: - (SEMgrSvc) -- C:\Windows\SysNative\SEMgrSvc.dll (Microsoft Corporation)
SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:64bit: - (camsvc) -- C:\Windows\SysNative\CapabilityAccessManager.dll (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationBrokerSvc) -- C:\Windows\SysNative\deviceaccess.dll (Microsoft Corporation)
SRV:64bit: - (tzautoupdate) -- C:\Windows\SysNative\tzautoupdate.dll (Microsoft Corporation)
SRV:64bit: - (embeddedmode) -- C:\Windows\SysNative\embeddedmodesvc.dll (Microsoft Corporation)
SRV:64bit: - (NaturalAuthentication) -- C:\Windows\SysNative\NaturalAuth.dll (Microsoft Corporation)
SRV:64bit: - (wlpasvc) -- C:\Windows\SysNative\lpasvc.dll (Microsoft Corporation)
SRV:64bit: - (BTAGService) -- C:\Windows\SysNative\BTAGService.dll (Microsoft Corporation)
SRV:64bit: - (PhoneSvc) -- C:\Windows\SysNative\PhoneService.dll (Microsoft Corporation)
SRV:64bit: - (BluetoothUserService) -- C:\Windows\SysNative\Microsoft.Bluetooth.UserService.dll (Microsoft Corporation)
SRV:64bit: - (LxpSvc) -- C:\Windows\SysNative\LanguageOverlayServer.dll (Microsoft Corporation)
SRV:64bit: - (icssvc) -- C:\Windows\SysNative\tetheringservice.dll (Microsoft Corporation)
SRV:64bit: - (MessagingService) -- C:\Windows\SysNative\MessagingService.dll (Microsoft Corporation)
SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\psmsrv.dll (Microsoft Corporation)
SRV:64bit: - (TimeBrokerSvc) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:64bit: - (SgrmBroker) -- C:\Windows\SysNative\SgrmBroker.exe (Microsoft Corporation)
SRV:64bit: - (NetSetupSvc) -- C:\Windows\SysNative\NetSetupSvc.dll (Microsoft Corporation)
SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:64bit: - (WpnUserService_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (UserDataSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (UnistoreSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (UdkUserSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (PrintWorkflowUserSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (PimIndexMaintenanceSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (OneSyncSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (MessagingService_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (DevicesFlowUserSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (DevicePickerUserSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationBrokerSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (ConsentUxUserSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (CDPUserSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (cbdhsvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (CaptureService_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (BluetoothUserService_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (BcastDVRUserService_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (AarSvc_54a43) -- C:\Windows\SysNative\svchost.exe (Microsoft Corporation)
SRV:64bit: - (SensorService) -- C:\Windows\SysNative\SensorService.dll (Microsoft Corporation)
SRV:64bit: - (DsSvc) -- C:\Windows\SysNative\dssvc.dll (Microsoft Corporation)
SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:64bit: - (DusmSvc) -- C:\Windows\SysNative\dusmsvc.dll (Microsoft Corporation)
SRV:64bit: - (HvHost) -- C:\Windows\SysNative\hvhostsvc.dll (Microsoft Corporation)
SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\lfsvc.dll (Microsoft Corporation)
SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:64bit: - (dmwappushservice) -- C:\Windows\SysNative\dmwappushsvc.dll (Microsoft Corporation)
SRV:64bit: - (DevQueryBroker) -- C:\Windows\SysNative\DevQueryBroker.dll (Microsoft Corporation)
SRV:64bit: - (MapsBroker) -- C:\Windows\SysNative\moshost.dll (Microsoft Corporation)
SRV:64bit: - (WarpJITSvc) -- C:\Windows\SysNative\Windows.WARP.JITService.dll (Microsoft Corporation)
SRV:64bit: - (AJRouter) -- C:\Windows\SysNative\AJRouter.dll (Microsoft Corporation)
SRV:64bit: - (IpxlatCfgSvc) -- C:\Windows\SysNative\ipxlatcfg.dll (Microsoft Corporation)
SRV:64bit: - (MySQL) -- C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe ()
SRV - (Origin Web Helper Service) -- C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
SRV - (Origin Client Service) -- C:\Program Files (x86)\Origin\OriginClientService.exe (Electronic Arts)
SRV - (MicrosoftEdgeElevationService) -- C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.69\elevation_service.exe (Microsoft Corporation)
SRV - (GoogleChromeElevationService) -- C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\elevation_service.exe (Google LLC)
SRV - (StateRepository) -- C:\Windows\SysWOW64\Windows.StateRepository.dll (Microsoft Corporation)
SRV - (NVDisplay.ContainerLocalSystem) -- C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_de900db96e9c1480\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation)
SRV - (InstallService) -- C:\Windows\SysWOW64\InstallService.dll (Microsoft Corporation)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (TeamViewer) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc.)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (TokenBroker) -- C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation)
SRV - (wisvc) -- C:\Windows\SysWOW64\FlightSettings.dll (Microsoft Corporation)
SRV - (AarSvc) -- C:\Windows\SysWOW64\AarSvc.dll (Microsoft Corporation)
SRV - (EpicOnlineServices) -- C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe (Epic Games, Inc.)
SRV - (EasyAntiCheat) -- C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Ltd)
SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (Intel(R) -- C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe (Intel(R) Corporation)
SRV - (Intel(R) -- C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe (Intel(R) Corporation)
SRV - (DmEnrollmentSvc) -- C:\Windows\SysWOW64\Windows.Internal.Management.dll (Microsoft Corporation)
SRV - (IObitUnSvr) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe (IObit)
SRV - (jhi_service) -- C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (Intel Corporation)
SRV - (DevicePickerUserSvc) -- C:\Windows\SysWOW64\Windows.Devices.Picker.dll (Microsoft Corporation)
SRV - (CoreMessagingRegistrar) -- C:\Windows\SysWOW64\CoreMessaging.dll (Microsoft Corporation)
SRV - (PrintWorkflowUserSvc) -- C:\Windows\SysWOW64\PrintWorkflowService.dll (Microsoft Corporation)
SRV - (MixedRealityOpenXRSvc) -- C:\Windows\SysWOW64\MixedRealityRuntime.dll (Microsoft Corporation)
SRV - (DeviceAssociationBrokerSvc) -- C:\Windows\SysWOW64\deviceaccess.dll (Microsoft Corporation)
SRV - (tzautoupdate) -- C:\Windows\SysWOW64\tzautoupdate.dll (Microsoft Corporation)
SRV - (UnistoreSvc) -- C:\Windows\SysWOW64\Unistore.dll (Microsoft Corporation)
SRV - (BTAGService) -- C:\Windows\SysWOW64\BTAGService.dll (Microsoft Corporation)
SRV - (GalaxyClientService) -- C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe (GOG.com)
SRV - (GalaxyCommunication) -- C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe (GOG.com)
SRV - (edgeupdatem) -- C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation)
SRV - (edgeupdate) -- C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation)
SRV - (DigitalWave.Update.Service) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (Digital Wave Ltd)
SRV - (WdNisSvc) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe (Microsoft Corporation)
SRV - (WinDefend) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe (Microsoft Corporation)
SRV - (bravem) -- C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe (BraveSoftware Inc.)
SRV - (brave) -- C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe (BraveSoftware Inc.)
SRV - (ADATA ToolBox Service) -- C:\Program Files (x86)\ADATA\SSD ToolBox\ToolBoxSvc.exe ()

========== Driver Services (SafeList) ==========

DRV:64bit: - (amsdk) -- C:\Windows\SysNative\drivers\amsdk.sys (Copyright 2018.)
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\mbamswissarmy.sys (Malwarebytes)
DRV:64bit: - (MbamElam) -- C:\Windows\SysNative\drivers\MbamElam.sys (Malwarebytes)
DRV:64bit: - (PktMon) -- C:\Windows\SysNative\drivers\PktMon.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:64bit: - (ReFS) -- C:\WINDOWS\SysNative\drivers\refs.sys (Microsoft Corporation)
DRV:64bit: - (ReFSv1) -- C:\WINDOWS\SysNative\drivers\refsv1.sys (Microsoft Corporation)
DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:64bit: - (bindflt) -- C:\Windows\SysNative\drivers\bindflt.sys (Microsoft Corporation)
DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:64bit: - (Vid) -- C:\Windows\SysNative\drivers\Vid.sys (Microsoft Corporation)
DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc.sys (Microsoft Corporation)
DRV:64bit: - (nvlddmkm) -- C:\Windows\SysNative\DriverStore\FileRepository\nvmdi.inf_amd64_de900db96e9c1480\nvlddmkm.sys (NVIDIA Corporation)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (wintun) -- C:\Windows\SysNative\drivers\wintun.sys (WireGuard LLC)
DRV:64bit: - (NetAdapterCx) -- C:\Windows\SysNative\drivers\NetAdapterCx.sys (Microsoft Corporation)
DRV:64bit: - (applockerfltr) -- C:\Windows\SysNative\drivers\applockerfltr.sys (Microsoft Corporation)
DRV:64bit: - (MsSecFlt) -- C:\Windows\SysNative\drivers\mssecflt.sys (Microsoft Corporation)
DRV:64bit: - (xboxgip) -- C:\Windows\SysNative\drivers\xboxgip.sys (Microsoft Corporation)
DRV:64bit: - (xinputhid) -- C:\Windows\SysNative\drivers\xinputhid.sys (Microsoft Corporation)
DRV:64bit: - (BthMini) -- C:\Windows\SysNative\drivers\BthMini.SYS (Microsoft Corporation)
DRV:64bit: - (AppvVemgr) -- C:\Windows\SysNative\drivers\AppvVemgr.sys (Microsoft Corporation)
DRV:64bit: - (AppvVfs) -- C:\Windows\SysNative\drivers\AppvVfs.sys (Microsoft Corporation)
DRV:64bit: - (AppvStrm) -- C:\Windows\SysNative\drivers\AppVStrm.sys (Microsoft Corporation)
DRV:64bit: - (UevAgentDriver) -- C:\Windows\SysNative\drivers\UevAgentDriver.sys (Microsoft Corporation)
DRV:64bit: - (CldFlt) -- C:\Windows\SysNative\drivers\cldflt.sys (Microsoft Corporation)
DRV:64bit: - (Ufx01000) -- C:\Windows\SysNative\drivers\ufx01000.sys (Microsoft Corporation)
DRV:64bit: - (wcifs) -- C:\Windows\SysNative\drivers\wcifs.sys (Microsoft Corporation)
DRV:64bit: - (wdiwifi) -- C:\Windows\SysNative\drivers\WdiWiFi.sys (Microsoft Corporation)
DRV:64bit: - (WinNat) -- C:\Windows\SysNative\drivers\winnat.sys (Microsoft Corporation)
DRV:64bit: - (tsusbhub) -- C:\Windows\SysNative\drivers\tsusbhub.sys (Microsoft Corporation)
DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:64bit: - (storufs) -- C:\Windows\SysNative\drivers\storufs.sys (Microsoft Corporation)
DRV:64bit: - (nvvhci) -- C:\Windows\SysNative\drivers\nvvhci.sys (NVIDIA Corporation)
DRV:64bit: - (LdVBoxDrv) -- C:\Program Files\ldplayerbox\LdVBoxDrv.sys (Oracle Corporation)
DRV:64bit: - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation)
DRV:64bit: - (UcmCx0101) -- C:\Windows\SysNative\drivers\UcmCx.sys (Microsoft Corporation)
DRV:64bit: - (CimFS) -- C:\WINDOWS\SysNative\drivers\cimfs.sys ()
DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:64bit: - (hvservice) -- C:\Windows\SysNative\drivers\hvservice.sys (Microsoft Corporation)
DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\DriverStore\FileRepository\heci.inf_amd64_c22251d5ea82b3c3\x64\TeeDriverW10x64.sys (Intel Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (BlueStacksDrv_nxt) -- C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys (Bluestack System Inc. )
DRV:64bit: - (afunix) -- C:\Windows\SysNative\drivers\afunix.sys (Microsoft Corporation)
DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:64bit: - (MbbCx) -- C:\Windows\SysNative\drivers\MbbCx.sys (Microsoft Corporation)
DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:64bit: - (iorate) -- C:\Windows\SysNative\drivers\iorate.sys (Microsoft Corporation)
DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:64bit: - (NDivert) -- C:\Program Files\NordVPN\Drivers\NDivert.sys (Nordvpn S.A.)
DRV:64bit: - (NvModuleTracker) -- C:\Windows\SysNative\drivers\NvModuleTracker.sys (NVIDIA Corporation)
DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:64bit: - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:64bit: - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\DriverStore\FileRepository\basicdisplay.inf_amd64_65ab9a260dbf7467\BasicDisplay.sys (Microsoft Corporation)
DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\DriverStore\FileRepository\basicrender.inf_amd64_df49c4daa6251397\BasicRender.sys (Microsoft Corporation)
DRV:64bit: - (kbldfltr) -- C:\Windows\SysNative\drivers\kbldfltr.sys (Microsoft Corporation)
DRV:64bit: - (wcnfs) -- C:\Windows\SysNative\drivers\wcnfs.sys (Microsoft Corporation)
DRV:64bit: - (cmderd) -- C:\Windows\SysNative\drivers\cmderd.sys (COMODO)
DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:64bit: - (ufxsynopsys) -- C:\Windows\SysNative\drivers\ufxsynopsys.sys (Microsoft Corporation)
DRV:64bit: - (nlwt) -- C:\Windows\SysNative\drivers\nlwt.sys (WireGuard LLC)
DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:64bit: - (MsQuic) -- C:\Windows\SysNative\drivers\msquic.sys (Microsoft Corporation)
DRV:64bit: - (UcmUcsiCx0101) -- C:\Windows\SysNative\drivers\UcmUcsiCx.sys (Microsoft Corporation)
DRV:64bit: - (IndirectKmd) -- C:\Windows\SysNative\drivers\IndirectKmd.sys (Microsoft Corporation)
DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:64bit: - (MMCSS) -- C:\Windows\SysNative\drivers\mmcss.sys (Microsoft Corporation)
DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys (Microsoft Corporation)
DRV:64bit: - (Telemetry) -- C:\Windows\SysNative\drivers\IntelTA.sys (Microsoft Corporation)
DRV:64bit: - (WSDScan) -- C:\Windows\SysNative\drivers\WSDScan.sys (Microsoft Corporation)
DRV:64bit: - (nordlwf) -- C:\Windows\SysNative\drivers\nordlwf.sys (TEFINCOM S.A.)
DRV:64bit: - (e1dexpress) -- C:\Windows\SysNative\DriverStore\FileRepository\e1d68x64.inf_amd64_26255692c8b1c6b6\e1d68x64.sys (Intel Corporation)
DRV:64bit: - (tapnordvpn) -- C:\Windows\SysNative\drivers\tapnordvpn.sys (The OpenVPN Project)
DRV:64bit: - (tapprotonvpn) -- C:\Windows\SysNative\drivers\tapprotonvpn.sys (The OpenVPN Project)
DRV:64bit: - (tapmullvad0901) -- C:\Windows\SysNative\drivers\tapmullvad0901.sys (The OpenVPN Project)
DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\wd\WdFilter.sys (Microsoft Corporation)
DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\wd\WdNisDrv.sys (Microsoft Corporation)
DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\wd\WdBoot.sys (Microsoft Corporation)
DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:64bit: - (SpatialGraphFilter) -- C:\Windows\SysNative\drivers\SpatialGraphFilter.sys (Microsoft Corporation)
DRV:64bit: - (NDKPing) -- C:\Windows\SysNative\drivers\NDKPing.sys (Microsoft Corporation)
DRV:64bit: - (spaceparser) -- C:\Windows\SysNative\drivers\spaceparser.sys (Microsoft Corporation)
DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:64bit: - (SgrmAgent) -- C:\Windows\SysNative\drivers\SgrmAgent.sys (Microsoft Corporation)
DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (bam) -- C:\Windows\SysNative\drivers\bam.sys (Microsoft Corporation)
DRV:64bit: - (WdmCompanionFilter) -- C:\Windows\SysNative\drivers\WdmCompanionFilter.sys (Microsoft Corporation)
DRV:64bit: - (UcmTcpciCx0101) -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys (Microsoft Corporation)
DRV:64bit: - (storqosflt) -- C:\Windows\SysNative\drivers\storqosflt.sys (Microsoft Corporation)
DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:64bit: - (WindowsTrustedRT) -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys (Microsoft Corporation)
DRV:64bit: - (UrsCx01000) -- C:\Windows\SysNative\drivers\urscx01000.sys (Microsoft Corporation)
DRV:64bit: - (cnghwassist) -- C:\Windows\SysNative\drivers\cnghwassist.sys (Microsoft Corporation)
DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:64bit: - (HwNClx0101) -- C:\Windows\SysNative\drivers\mshwnclx.sys (Microsoft Corporation)
DRV:64bit: - (portcfg) -- C:\Windows\SysNative\drivers\portcfg.sys (Microsoft Corporation)
DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:64bit: - (Acx01000) -- C:\Windows\SysNative\drivers\Acx01000.sys (Microsoft Corporation)
DRV:64bit: - (Ucx01000) -- C:\Windows\SysNative\drivers\Ucx01000.sys (Microsoft Corporation)
DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (IPT) -- C:\Windows\SysNative\drivers\ipt.sys (Microsoft Corporation)
DRV:64bit: - (FileCrypt) -- C:\Windows\SysNative\drivers\filecrypt.sys (Microsoft Corporation)
DRV:64bit: - (UdeCx) -- C:\Windows\SysNative\drivers\Udecx.sys (Microsoft Corporation)
DRV:64bit: - (Ramdisk) -- C:\Windows\SysNative\drivers\ramdisk.sys (Microsoft Corporation)
DRV:64bit: - (GpuEnergyDrv) -- C:\Windows\SysNative\drivers\gpuenergydrv.sys (Microsoft Corporation)
DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:64bit: - (hvcrash) -- C:\Windows\SysNative\drivers\hvcrash.sys (Microsoft Corporation)
DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:64bit: - (vmgid) -- C:\Windows\SysNative\drivers\vmgid.sys (Microsoft Corporation)
DRV:64bit: - (VirtualRender) -- C:\Windows\SysNative\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys (Microsoft Corporation)
DRV:64bit: - (UfxChipidea) -- C:\Windows\SysNative\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys (Microsoft Corporation)
DRV:64bit: - (hidspi) -- C:\Windows\SysNative\drivers\hidspi.sys (Microsoft Corporation)
DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:64bit: - (hidinterrupt) -- C:\Windows\SysNative\drivers\hidinterrupt.sys (Microsoft Corporation)
DRV:64bit: - (buttonconverter) -- C:\Windows\SysNative\drivers\buttonconverter.sys (Microsoft Corporation)
DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:64bit: - (UcmUcsiAcpiClient) -- C:\Windows\SysNative\drivers\UcmUcsiAcpiClient.sys (Microsoft Corporation)
DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:64bit: - (UrsChipidea) -- C:\Windows\SysNative\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys (Microsoft Corporation)
DRV:64bit: - (UrsSynopsys) -- C:\Windows\SysNative\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys (Microsoft Corporation)
DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:64bit: - (genericusbfn) -- C:\Windows\SysNative\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys (Microsoft Corporation)
DRV:64bit: - (WindowsTrustedRTProxy) -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys (Microsoft Corporation)
DRV:64bit: - (cht4vbd) -- C:\Windows\SysNative\drivers\cht4vx64.sys (Chelsio Communications)
DRV:64bit: - (mlx4_bus) -- C:\Windows\SysNative\drivers\mlx4_bus.sys (Mellanox)
DRV:64bit: - (iaStorAVC) -- C:\Windows\SysNative\drivers\iaStorAVC.sys (Intel Corporation)
DRV:64bit: - (ibbus) -- C:\Windows\SysNative\drivers\ibbus.sys (Mellanox)
DRV:64bit: - (mausbhost) -- C:\Windows\SysNative\drivers\mausbhost.sys (Microsoft Corporation)
DRV:64bit: - (cht4iscsi) -- C:\Windows\SysNative\drivers\cht4sx64.sys (Chelsio Communications)
DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:64bit: - (nvdimm) -- C:\Windows\SysNative\drivers\nvdimm.sys (Microsoft Corporation)
DRV:64bit: - (scmbus) -- C:\Windows\SysNative\drivers\scmbus.sys (Microsoft Corporation)
DRV:64bit: - (ndfltr) -- C:\Windows\SysNative\drivers\ndfltr.sys (Mellanox)
DRV:64bit: - (pmem) -- C:\Windows\SysNative\drivers\pmem.sys (Microsoft Corporation)
DRV:64bit: - (WinVerbs) -- C:\Windows\SysNative\drivers\winverbs.sys (Mellanox)
DRV:64bit: - (mausbip) -- C:\Windows\SysNative\drivers\mausbip.sys (Microsoft Corporation)
DRV:64bit: - (vhf) -- C:\Windows\SysNative\drivers\vhf.sys (Microsoft Corporation)
DRV:64bit: - (bttflt) -- C:\Windows\SysNative\drivers\bttflt.sys (Microsoft Corporation)
DRV:64bit: - (WinMad) -- C:\Windows\SysNative\drivers\winmad.sys (Mellanox)
DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (SmartSAMD) -- C:\Windows\SysNative\drivers\SmartSAMD.sys (Microsemi Corportation)
DRV:64bit: - (ItSas35i) -- C:\Windows\SysNative\drivers\ItSas35i.sys (Avago Technologies)
DRV:64bit: - (LSI_SAS3i) -- C:\Windows\SysNative\drivers\lsi_sas3i.sys (Avago Technologies)
DRV:64bit: - (LSI_SAS2i) -- C:\Windows\SysNative\drivers\lsi_sas2i.sys (LSI Corporation)
DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:64bit: - (megasas35i) -- C:\Windows\SysNative\drivers\megasas35i.sys (Avago Technologies)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:64bit: - (megasas2i) -- C:\Windows\SysNative\drivers\MegaSas2i.sys (Avago Technologies)
DRV:64bit: - (percsas3i) -- C:\Windows\SysNative\drivers\percsas3i.sys (Avago Technologies)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (percsas2i) -- C:\Windows\SysNative\drivers\percsas2i.sys (Avago Technologies)
DRV:64bit: - (umbus) -- C:\Windows\SysNative\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys (Microsoft Corporation)
DRV:64bit: - (UEFI) -- C:\Windows\SysNative\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\uefi.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (AcpiDev) -- C:\Windows\SysNative\drivers\AcpiDev.sys (Microsoft Corporation)
DRV:64bit: - (volume) -- C:\Windows\SysNative\drivers\volume.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (QLogic Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (QLogic Corporation)
DRV:64bit: - (usbaudio2) -- C:\Windows\SysNative\drivers\usbaudio2.sys (Microsoft Corporation)
DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:64bit: - (rhproxy) -- C:\Windows\SysNative\drivers\rhproxy.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:64bit: - (CompositeBus) -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:64bit: - (SDFRd) -- C:\Windows\SysNative\drivers\SDFRd.sys (Microsoft Corporation)
DRV:64bit: - (WSDPrintDevice) -- C:\Windows\SysNative\drivers\WSDPrint.sys (Microsoft Corporation)
DRV:64bit: - (swenum) -- C:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys (Microsoft Corporation)
DRV:64bit: - (PNPMEM) -- C:\Windows\SysNative\drivers\pnpmem.sys (Microsoft Corporation)
DRV:64bit: - (e1i65x64) -- C:\Windows\SysNative\drivers\e1i65x64.sys (Intel Corporation)
DRV:64bit: - (BthA2dp) -- C:\Windows\SysNative\drivers\BthA2dp.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSS2i_I2C_GLK) -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_GLK.sys (Intel Corporation)
DRV:64bit: - (iaLPSS2i_I2C_CNL) -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_CNL.sys (Intel Corporation)
DRV:64bit: - (iaLPSS2i_I2C_BXT_P) -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_BXT_P.sys (Intel Corporation)
DRV:64bit: - (iaLPSS2i_I2C) -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys (Intel Corporation)
DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\BthHfEnum.sys (Microsoft Corporation)
DRV:64bit: - (iaLPSS2i_GPIO2_CNL) -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_CNL.sys (Intel Corporation)
DRV:64bit: - (iaLPSS2i_GPIO2_GLK) -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_GLK.sys (Intel Corporation)
DRV:64bit: - (iaLPSS2i_GPIO2_BXT_P) -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_BXT_P.sys (Intel Corporation)
DRV:64bit: - (iai2c) -- C:\Windows\SysNative\drivers\iai2c.sys (Intel(R) Corporation)
DRV:64bit: - (iaLPSS2i_GPIO2) -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys (Intel Corporation)
DRV:64bit: - (CAD) -- C:\Windows\SysNative\drivers\CAD.sys (Microsoft Corporation)
DRV:64bit: - (Microsoft_Bluetooth_AvrcpTransport) -- C:\Windows\SysNative\drivers\Microsoft.Bluetooth.AvrcpTransport.sys (Microsoft Corporation)
DRV:64bit: - (amdi2c) -- C:\Windows\SysNative\drivers\amdi2c.sys (Advanced Micro Devices, Inc)
DRV:64bit: - (iagpio) -- C:\Windows\SysNative\drivers\iagpio.sys (Intel(R) Corporation)
DRV:64bit: - (intelpmax) -- C:\Windows\SysNative\drivers\intelpmax.sys (Microsoft Corporation)
DRV:64bit: - (amdgpio2) -- C:\Windows\SysNative\drivers\amdgpio2.sys (Advanced Micro Devices, Inc)
DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (tap0901) -- C:\Windows\SysNative\drivers\tap0901.sys (The OpenVPN Project)
DRV:64bit: - (cmdboot) -- C:\Windows\SysNative\drivers\cmdboot.sys (COMODO)
DRV:64bit: - (EPMVolFl) -- C:\Windows\SysNative\drivers\EPMVolFl.sys (Windows (R) Codename Longhorn DDK provider)
DRV:64bit: - (epmntdrv) -- C:\Windows\SysNative\epmntdrv.sys ()
DRV:64bit: - (tapwindscribe0901) -- C:\Windows\SysNative\drivers\tapwindscribe0901.sys (The OpenVPN Project)
DRV:64bit: - (tapexpressvpn) -- C:\Windows\SysNative\drivers\tapexpressvpn.sys (The OpenVPN Project)
DRV:64bit: - (uvhid) -- C:\Windows\SysNative\drivers\uvhid.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (VBoxNetAdp) -- C:\Windows\SysNative\drivers\VBoxNetAdp6.sys (Oracle Corporation)
DRV:64bit: - (rspWhySoSlow) -- C:\Windows\SysNative\drivers\rspWhy64.sys (Resplendence Software Projects Sp.)
DRV:64bit: - (rspLLL) -- C:\Windows\SysNative\drivers\rspLLL64.sys (Resplendence Software Projects Sp.)
DRV:64bit: - (t_mouse.sys) -- C:\Windows\SysNative\drivers\t_mouse.sys ()
DRV - (ALSysIO) -- C:\Users\User\AppData\Local\Temp\ALSysIO64.sys (Arthur Liberman)
DRV - (nvlddmkm) -- C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_de900db96e9c1480\nvlddmkm.sys (NVIDIA Corporation)
DRV - (MEIx64) -- C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_c22251d5ea82b3c3\x64\TeeDriverW10x64.sys (Intel Corporation)
DRV - (afunix) -- C:\Windows\SysWOW64\drivers\afunix.sys (Microsoft Corporation)
DRV - (BasicDisplay) -- C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_65ab9a260dbf7467\BasicDisplay.sys (Microsoft Corporation)
DRV - (BasicRender) -- C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_df49c4daa6251397\BasicRender.sys (Microsoft Corporation)
DRV - (e1dexpress) -- C:\WINDOWS\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_26255692c8b1c6b6\e1d68x64.sys (Intel Corporation)
DRV - (IURegistryFilter) -- C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (IObit)
DRV - (IUFileFilter) -- C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (IObit)
DRV - (IUProcessFilter) -- C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (IObit)
DRV - (VirtualRender) -- C:\WINDOWS\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys (Microsoft Corporation)
DRV - (UfxChipidea) -- C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys (Microsoft Corporation)
DRV - (UrsChipidea) -- C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys (Microsoft Corporation)
DRV - (UrsSynopsys) -- C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys (Microsoft Corporation)
DRV - (genericusbfn) -- C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys (Microsoft Corporation)
DRV - (umbus) -- C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys (Microsoft Corporation)
DRV - (UEFI) -- C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys (Microsoft Corporation)
DRV - (CompositeBus) -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys (Microsoft Corporation)
DRV - (swenum) -- C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys (Microsoft Corporation)
DRV - (memudrv) -- C:\Microvirt\MEmuHyperv\MEmuDrv.sys (Microvirt Corporation)
DRV - (speedfan) -- C:\Windows\SysWOW64\speedfan.sys (Almico Software)

nermitus · Příspěvekod **nermitus** » 27 led 2022 17:47

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = DF 8A 7A 6B 39 DA D2 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.countryCode: "SK"
FF - prefs.js..browser.search.region: "SK"
FF - prefs.js..browser.search.widget.inNavBar: true
FF - prefs.js..browser.startup.homepage: "about:home"
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.241.2: C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.241.2: C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.11: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.16: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 57.0.3\extensions\\Components: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 57.0.3\extensions\\Plugins: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS

[2017/09/12 13:46:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Extensions
[2018/01/31 22:43:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\SystemExtensionsDev
[2018/01/17 15:45:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\browser-extension-data
[2018/01/17 15:45:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\browser-extension-data\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2017/11/06 20:32:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\browser-extension-data\screenshots@mozilla.org
[2022/01/26 08:12:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\extensions
[2017/11/06 20:33:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\chrome_debugger_profile\browser-extension-data
[2017/11/06 20:33:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\chrome_debugger_profile\browser-extension-data\screenshots@mozilla.org
[2018/01/17 15:45:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\storage\default\moz-extension+++80e68a71-c532-47a2-8389-f7efc684b9e5
[2020/01/28 16:04:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\kyywts3s.default\storage\default\moz-extension+++80e68a71-c532-47a2-8389-f7efc684b9e5\idb
[2018/01/17 15:45:52 | 000,454,896 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2017/09/12 14:13:44 | 000,006,652 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{9661f141-645d-45f5-8b20-fe6721917686}\clicktoplay-rollout@mozilla.org.xpi
[2017/09/12 14:13:45 | 000,009,993 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{9661f141-645d-45f5-8b20-fe6721917686}\followonsearch@mozilla.com.xpi
[2017/09/12 14:13:45 | 000,329,275 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{9661f141-645d-45f5-8b20-fe6721917686}\screenshots@mozilla.org.xpi
[2020/01/28 16:04:22 | 000,005,324 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{aa1adf0e-2b42-45cb-9565-92cc053c6a93}\disable-js-shared-memory@mozilla.org.xpi
[2020/01/28 16:04:22 | 000,005,507 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{aa1adf0e-2b42-45cb-9565-92cc053c6a93}\disable-media-wmf-nv12@mozilla.org.xpi
[2020/01/28 16:04:22 | 000,008,263 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{aa1adf0e-2b42-45cb-9565-92cc053c6a93}\hotfix-bug-1548973@mozilla.org.xpi
[2017/10/09 00:22:42 | 000,006,642 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{af3c0fcb-94b3-4805-9c38-e25d7b5cb997}\clicktoplay-rollout@mozilla.org.xpi
[2017/10/09 00:22:42 | 000,008,940 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{af3c0fcb-94b3-4805-9c38-e25d7b5cb997}\e10srollout@mozilla.org.xpi
[2017/10/09 00:22:42 | 000,011,739 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{af3c0fcb-94b3-4805-9c38-e25d7b5cb997}\followonsearch@mozilla.com.xpi
[2017/10/09 00:22:42 | 000,196,112 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{af3c0fcb-94b3-4805-9c38-e25d7b5cb997}\onboarding@mozilla.org.xpi
[2017/10/09 00:22:42 | 000,329,275 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{af3c0fcb-94b3-4805-9c38-e25d7b5cb997}\screenshots@mozilla.org.xpi
[2018/01/03 13:22:07 | 000,005,444 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{fdbf170b-690e-4e86-9991-aeaeabedf578}\disable-crash-autosubmit@mozilla.org.xpi
[2018/01/03 13:22:07 | 000,011,001 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{fdbf170b-690e-4e86-9991-aeaeabedf578}\followonsearch@mozilla.com.xpi
[2018/01/03 13:22:07 | 000,132,293 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{fdbf170b-690e-4e86-9991-aeaeabedf578}\shield-recipe-client@mozilla.org.xpi
[2018/01/03 13:22:07 | 000,005,129 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\kyywts3s.default\features\{fdbf170b-690e-4e86-9991-aeaeabedf578}\timecop@mozilla.com.xpi
[2018/01/31 22:43:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions

========== Chrome ==========

CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_2\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped\7.4.15_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_2\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpojelgakakmcfmjfilgdlmhefphglae\0.51_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfdpeaefecdlkdlgdpjjllmhlnckcodp\1.18_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn\2.4.12_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm\1.40.8_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfbmiedjenagoegiiabjfjpkhfocifkp\4.3.5_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\4.14_0\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf\1.0.1_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepbnnnkkadjhjahcafoaglimekefifl\2.31.1_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.39.0_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibmlkgieigeddcedpbijnpojheoddido\1.8.6_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij\8.6.1_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\
CHR - Extension: No name found = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_2\

O1 HOSTS File: ([2022/01/26 07:40:27 | 000,000,841 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll (IObit)
O2:64bit: - BHO: (IEToEdge BHO) - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.69\BHO\ie_to_edge_bho_64.dll (Microsoft Corporation)
O2:64bit: - BHO: (Skype for Business Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (Skype for Business Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [MouseDriver] C:\WINDOWS\SysNative\TiltWheelMouse.exe (Pixart Imaging Inc)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [SecurityHealth] C:\Windows\SysNative\SecurityHealthSystray.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKCU..\Run: [Bloody2] C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe ()
O4 - HKCU..\Run: [CCleaner Smart Cleaning] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd)
O4 - HKCU..\Run: [com.squirrel.Teams.Teams] C:\Users\User\AppData\Local\Microsoft\Teams\Update.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Discord] C:\Users\User\AppData\Local\Discord\Update.exe --processStart Discord.exe File not found
O4 - HKCU..\Run: [EpicGamesLauncher] C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (Epic Games, Inc.)
O4 - HKCU..\Run: [GalaxyClient] File not found
O4 - HKCU..\Run: [GogGalaxy] C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG.com)
O4 - HKCU..\Run: [Lync] C:\Program Files\Microsoft Office\root\Office16\lync.exe (Microsoft Corporation)
O4 - HKCU..\Run: [NordVPN] C:\Program Files\NordVPN\NordVPN.exe (TEFINCOM S.A.)
O4 - HKCU..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Spotify] C:\Users\User\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [Unified Remote V3] C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB)
O4 - HKCU..\RunOnce: [Application Restart #1] C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
O4 - HKCU..\RunOnce: [Application Restart #2] C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
O4 - HKCU..\RunOnce: [Application Restart #3] C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe --enable-dom-distiller --disable-domain-reliability --no-pings --extension-content-verification=enforce_strict --extensions-install-verification=enforce --origin-trial-public-key=bYUKPJoPnCxeNvu72j4EmPuK7tr1PAC7SHh8ld9Mw3E=,fMS4mpO6buLQ/QMd+zJmxzty/VQ6B1EUZqoCU04zoRU= --sync-url=https://sync-v2.brave.com/v2 --lso-url=https://no-thanks.invalid --enable-features=PrefetchPrivacyChanges,DnsOverHttps,OmniboxContextMenuShowFullUrls,LegacyTLSEnforced,PasswordImport,ReducedReferrerGranularity,MixedContentSiteSetting,AutoupgradeMixedContent,WinrtGeolocationImplementation,PassiveMixedContentWarning,WebUIDarkMode --disable-features=TextFragmentAnchor,AutofillEnableAccountWalletStorage,AllowPopupsDuringPageUnload,PrivacySettingsRedesign,NotificationTriggers,TabHoverCards,SmsReceiver,SafeBrowsingEnhancedProtection,VideoPlaybackQuality,AutofillServerCommunication,PasswordCheck --flag-switches-begin --load-media-router-component-extension=1 --flag-switches-end --enable-audio-service-sandbox --restore-last-session File not found
O4 - HKCU..\RunOnce: [Application Restart #5] C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsHistory = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableFullTrustStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUwpStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportFullTrustStartupTasks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportUwpStartupTasks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9:64bit: - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll (Microsoft Corporation)
O9:64bit: - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000012 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000013 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog_Before_Reset\Catalog_Entries64\000000000014 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000013 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000014 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000013 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog_Before_Reset\Catalog_Entries\000000000014 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.1.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{fc2a1fda-3151-4f24-b8e6-e38cd2079293}: DhcpNameServer = 10.0.1.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{fc2a1fda-3151-4f24-b8e6-e38cd2079293}: NameServer = 8.8.4.4,8.8.8.8
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mso-minsb.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mso-minsb-roaming.16 {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Handler\osf.16 {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Handler\osf-roaming.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-minsb.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-minsb-roaming.16 {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\osf.16 {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\osf-roaming.16 {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\SysWow64\msv1_0.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2022/01/27 17:06:49 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe
[2022/01/27 17:01:36 | 001,445,640 | ---- | C] (CPUID, Inc. ) -- C:\Users\User\Desktop\hwmonitor_1.45.exe
[2022/01/26 23:55:09 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\DBG
[2022/01/26 23:18:43 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\discord
[2022/01/26 20:02:59 | 000,000,000 | ---D | C] -- C:\FRST
[2022/01/26 20:01:34 | 002,311,680 | ---- | C] (Farbar) -- C:\Users\User\Desktop\FRST64.exe
[2022/01/26 19:30:18 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo
[2022/01/26 13:54:07 | 000,000,000 | ---D | C] -- C:\Program Files\Awakened PoE Trade
[2022/01/26 10:28:32 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Spotify
[2022/01/26 08:30:58 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\PeerDistRepub
[2022/01/26 08:09:33 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Zemana
[2022/01/26 08:09:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
[2022/01/26 08:09:30 | 000,232,792 | ---- | C] (Copyright 2018.) -- C:\WINDOWS\SysNative\drivers\amsdk.sys
[2022/01/26 08:09:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zemana
[2022/01/26 08:09:21 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\AMSDK
[2022/01/26 08:08:17 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2022/01/26 08:06:20 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2022/01/26 08:06:10 | 000,000,000 | ---D | C] -- C:\ProgramData\DigitalWave.ApplicationUpdater_files
[2022/01/26 08:05:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2022/01/26 08:05:28 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Temp
[2022/01/25 22:01:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2022/01/25 22:01:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
[2022/01/25 22:01:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2022/01/25 21:59:09 | 185,115,928 | ---- | C] (Sophos Limited) -- C:\Users\User\Desktop\Sophos Virus Removal Tool.exe
[2022/01/25 20:11:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
[2022/01/25 20:11:23 | 000,000,000 | ---D | C] -- C:\Program Files\RogueKiller
[2022/01/25 17:54:44 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\mbam
[2022/01/25 17:54:31 | 000,248,992 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamswissarmy.sys
[2022/01/25 17:54:28 | 000,160,176 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbae64.sys
[2022/01/25 17:54:28 | 000,019,912 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamElam.sys
[2022/01/25 17:53:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2022/01/25 17:52:32 | 002,911,928 | ---- | C] (Malwarebytes) -- C:\Users\User\Desktop\MBSetup.exe
[2022/01/25 17:47:07 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Users\User\Desktop\ATF-Cleaner.exe
[2022/01/24 11:02:12 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\Portia
[2022/01/23 13:10:03 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\poe-secondscreen-updater
[2022/01/21 21:32:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2022/01/21 21:31:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
[2022/01/21 21:30:59 | 000,000,000 | ---D | C] -- C:\Users\User\.Origin
[2022/01/21 21:30:57 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Origin
[2022/01/21 21:30:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2022/01/21 21:30:53 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Origin
[2022/01/20 23:00:53 | 000,039,080 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvhdap64.dll
[2022/01/20 22:58:37 | 005,734,568 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll
[2022/01/20 22:58:37 | 000,710,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvml.dll
[2022/01/20 22:58:35 | 001,467,872 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.dll
[2022/01/20 22:58:35 | 001,206,400 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.dll
[2022/01/20 22:58:34 | 008,609,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll
[2022/01/20 22:58:34 | 007,713,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll
[2022/01/20 22:58:34 | 005,099,176 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll
[2022/01/20 22:58:34 | 002,934,696 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll
[2022/01/20 22:58:34 | 002,119,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll
[2022/01/20 22:58:34 | 001,601,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll
[2022/01/20 22:58:34 | 001,529,512 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll
[2022/01/20 22:58:34 | 001,179,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll
[2022/01/20 22:58:34 | 000,983,208 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll
[2022/01/20 22:58:34 | 000,710,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvidia-smi.exe
[2022/01/20 22:58:34 | 000,455,792 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdebugdump.exe
[2022/01/20 22:58:29 | 000,850,088 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\MCU.exe
[2022/01/16 22:54:01 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Apple
[2022/01/15 11:25:00 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\Train Station Renovation
[2022/01/14 09:41:20 | 000,000,000 | ---D | C] -- C:\Users\User\Desktop\WinMTR-v092
[2022/01/13 23:58:39 | 003,568,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2022/01/13 23:58:39 | 001,162,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2022/01/13 23:58:39 | 000,979,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DolbyDecMFT.dll
[2022/01/13 23:58:38 | 024,272,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Hydrogen.dll
[2022/01/13 23:58:38 | 004,809,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2022/01/13 23:58:38 | 002,521,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2022/01/13 23:58:38 | 001,655,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft.Uev.AppAgent.dll
[2022/01/13 23:58:37 | 002,419,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft.Uev.AppAgent.dll
[2022/01/13 23:58:37 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AgentService.exe
[2022/01/13 23:58:36 | 002,235,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft.Uev.ModernAppAgent.dll
[2022/01/13 23:58:36 | 001,260,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppVEntSubsystemController.dll
[2022/01/13 23:58:36 | 001,225,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft.Uev.CommonBridge.dll
[2022/01/13 23:58:36 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll
[2022/01/13 23:58:36 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\runas.exe
[2022/01/13 23:58:35 | 007,127,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2022/01/13 23:58:35 | 001,277,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certutil.exe
[2022/01/13 23:58:35 | 000,612,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll
[2022/01/13 23:58:35 | 000,439,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certreq.exe
[2022/01/13 23:58:35 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msimsg.dll
[2022/01/13 23:58:34 | 019,866,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2022/01/13 23:58:34 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpsapi.dll
[2022/01/13 23:58:33 | 000,706,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msdtcprx.dll
[2022/01/13 23:58:33 | 000,576,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\archiveint.dll
[2022/01/13 23:58:33 | 000,464,384 | ---- | C] (curl, https://curl.se/) -- C:\WINDOWS\SysWow64\curl.exe
[2022/01/13 23:58:33 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mtxclu.dll
[2022/01/13 23:58:33 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\net1.exe
[2022/01/13 23:58:33 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xolehlp.dll
[2022/01/13 23:58:33 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dataclen.dll
[2022/01/13 23:58:33 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tar.exe
[2022/01/13 23:58:32 | 008,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll

nermitus · Příspěvekod **nermitus** » 27 led 2022 17:47

[2022/01/13 23:58:32 | 007,776,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2022/01/13 23:58:32 | 003,348,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2022/01/13 23:58:32 | 001,651,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certutil.exe
[2022/01/13 23:58:32 | 001,614,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2022/01/13 23:58:32 | 000,785,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll
[2022/01/13 23:58:32 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certreq.exe
[2022/01/13 23:58:32 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nltest.exe
[2022/01/13 23:58:32 | 000,130,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\PktMon.sys
[2022/01/13 23:58:32 | 000,098,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2022/01/13 23:58:32 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll
[2022/01/13 23:58:32 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksetup.exe
[2022/01/13 23:58:32 | 000,032,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys
[2022/01/13 23:58:32 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msimsg.dll
[2022/01/13 23:58:32 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\runas.exe
[2022/01/13 23:58:31 | 001,618,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtctm.dll
[2022/01/13 23:58:31 | 001,025,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CBDHSvc.dll
[2022/01/13 23:58:31 | 000,881,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtcprx.dll
[2022/01/13 23:58:31 | 000,683,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\computecore.dll
[2022/01/13 23:58:31 | 000,681,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\archiveint.dll
[2022/01/13 23:58:31 | 000,523,776 | ---- | C] (curl, https://curl.se/) -- C:\WINDOWS\SysNative\curl.exe
[2022/01/13 23:58:31 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mtxclu.dll
[2022/01/13 23:58:31 | 000,329,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtcuiu.dll
[2022/01/13 23:58:31 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpsapi.dll
[2022/01/13 23:58:31 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\net1.exe
[2022/01/13 23:58:31 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dataclen.dll
[2022/01/13 23:58:31 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tar.exe
[2022/01/13 23:58:31 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsauth.dll
[2022/01/13 23:58:30 | 001,570,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe
[2022/01/13 23:58:30 | 001,314,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2022/01/13 23:58:30 | 001,269,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe
[2022/01/13 23:58:30 | 000,807,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcblaunch.exe
[2022/01/13 23:58:30 | 000,305,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\skci.dll
[2022/01/13 23:58:30 | 000,222,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcbloader.dll
[2022/01/13 23:58:30 | 000,173,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vertdll.dll
[2022/01/13 23:58:29 | 008,891,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2022/01/13 23:58:29 | 001,459,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2022/01/13 23:58:29 | 000,952,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2022/01/13 23:58:29 | 000,901,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2022/01/13 23:58:29 | 000,682,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2022/01/13 23:58:29 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scesrv.dll
[2022/01/13 23:58:29 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2022/01/13 23:58:29 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BitLockerCsp.dll
[2022/01/13 23:58:29 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netjoin.dll
[2022/01/13 23:58:29 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\joinutil.dll
[2022/01/13 23:58:29 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\raschap.dll
[2022/01/13 23:58:29 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netid.dll
[2022/01/13 23:58:29 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netprovfw.dll
[2022/01/13 23:58:28 | 001,352,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll
[2022/01/13 23:58:28 | 000,885,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2022/01/13 23:58:28 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptprov.dll
[2022/01/13 23:58:28 | 000,194,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\logoncli.dll
[2022/01/13 23:58:28 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincredui.dll
[2022/01/13 23:58:28 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertPolEng.dll
[2022/01/13 23:58:28 | 000,115,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2022/01/13 23:58:28 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wkscli.dll
[2022/01/13 23:58:28 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf3216.dll
[2022/01/13 23:58:28 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gmsaclient.dll
[2022/01/13 23:58:28 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\schedcli.dll
[2022/01/13 23:58:28 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netmsg.dll
[2022/01/13 23:58:27 | 002,752,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2022/01/13 23:58:27 | 000,692,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll
[2022/01/13 23:58:27 | 000,329,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2022/01/13 23:58:27 | 000,094,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32u.dll
[2022/01/13 23:58:27 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shacctprofile.dll
[2022/01/13 23:58:25 | 002,869,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnroll.dll
[2022/01/13 23:58:25 | 001,042,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wpnapps.dll
[2022/01/13 23:58:25 | 000,654,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certca.dll
[2022/01/13 23:58:25 | 000,583,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StateRepository.Core.dll
[2022/01/13 23:58:25 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certcli.dll
[2022/01/13 23:58:25 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryUpgrade.dll
[2022/01/13 23:58:25 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2022/01/13 23:58:25 | 000,176,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryClient.dll
[2022/01/13 23:58:25 | 000,152,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KerbClientShared.dll
[2022/01/13 23:58:25 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\negoexts.dll
[2022/01/13 23:58:25 | 000,099,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryBroker.dll
[2022/01/13 23:58:25 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnrollCtrl.exe
[2022/01/13 23:58:25 | 000,042,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryCore.dll
[2022/01/13 23:58:24 | 006,376,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2022/01/13 23:58:24 | 005,420,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepository.dll
[2022/01/13 23:58:24 | 000,773,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppContracts.dll
[2022/01/13 23:58:24 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.AccountsControl.dll
[2022/01/13 23:58:24 | 000,602,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryPS.dll
[2022/01/13 23:58:24 | 000,528,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.System.Launcher.dll
[2022/01/13 23:58:24 | 000,502,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2022/01/13 23:58:24 | 000,438,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TileDataRepository.dll
[2022/01/13 23:58:24 | 000,128,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\profext.dll
[2022/01/13 23:58:24 | 000,061,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GameInput.dll
[2022/01/13 23:58:23 | 014,760,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2022/01/13 23:58:23 | 000,884,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ShareHost.dll
[2022/01/13 23:58:23 | 000,591,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2022/01/13 23:58:23 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netplwiz.dll
[2022/01/13 23:58:23 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2022/01/13 23:58:23 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Core.dll
[2022/01/13 23:58:23 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2022/01/13 23:58:22 | 004,746,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2022/01/13 23:58:22 | 000,865,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2022/01/13 23:58:22 | 000,252,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscapi.dll
[2022/01/13 23:58:22 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msaudite.dll
[2022/01/13 23:58:22 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msobjs.dll
[2022/01/13 23:58:22 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscisvif.dll
[2022/01/13 23:58:22 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscproxystub.dll
[2022/01/13 23:58:22 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscadminui.exe
[2022/01/13 23:58:21 | 003,945,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2022/01/13 23:58:21 | 001,752,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2022/01/13 23:58:21 | 001,261,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2022/01/13 23:58:21 | 000,911,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2022/01/13 23:58:21 | 000,608,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcext.dll
[2022/01/13 23:58:21 | 000,587,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scesrv.dll
[2022/01/13 23:58:21 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2022/01/13 23:58:21 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskcomp.dll
[2022/01/13 23:58:21 | 000,396,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastls.dll
[2022/01/13 23:58:21 | 000,304,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LsaIso.exe
[2022/01/13 23:58:21 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFHost.exe
[2022/01/13 23:58:21 | 000,196,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFPlatform.dll
[2022/01/13 23:58:21 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netjoin.dll
[2022/01/13 23:58:21 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\raschap.dll
[2022/01/13 23:58:21 | 000,161,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFCompanionHost.exe
[2022/01/13 23:58:21 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\joinutil.dll
[2022/01/13 23:58:21 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\djoin.exe
[2022/01/13 23:58:21 | 000,070,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iumcrypt.dll
[2022/01/13 23:58:21 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netprovfw.dll
[2022/01/13 23:58:21 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\keymgr.dll
[2022/01/13 23:58:21 | 000,041,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFrameworkPS.dll
[2022/01/13 23:58:20 | 002,921,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2022/01/13 23:58:20 | 002,036,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFramework.dll
[2022/01/13 23:58:20 | 001,721,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2022/01/13 23:58:20 | 001,487,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll
[2022/01/13 23:58:20 | 001,195,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2022/01/13 23:58:20 | 001,184,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\efscore.dll
[2022/01/13 23:58:20 | 001,130,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2022/01/13 23:58:20 | 001,126,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2022/01/13 23:58:20 | 001,084,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32full.dll
[2022/01/13 23:58:20 | 000,881,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netlogon.dll
[2022/01/13 23:58:20 | 000,630,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sechost.dll
[2022/01/13 23:58:20 | 000,414,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2022/01/13 23:58:20 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2022/01/13 23:58:20 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerCsp.dll
[2022/01/13 23:58:20 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincredui.dll
[2022/01/13 23:58:20 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntlanman.dll
[2022/01/13 23:58:20 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationFrameworkInternalPS.dll
[2022/01/13 23:58:20 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf3216.dll
[2022/01/13 23:58:20 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gmsaclient.dll
[2022/01/13 23:58:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msimg32.dll
[2022/01/13 23:58:19 | 010,845,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2022/01/13 23:58:19 | 002,026,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2022/01/13 23:58:19 | 001,663,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2022/01/13 23:58:19 | 000,865,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2022/01/13 23:58:19 | 000,266,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\logoncli.dll
[2022/01/13 23:58:19 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msaudite.dll
[2022/01/13 23:58:19 | 000,134,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2022/01/13 23:58:19 | 000,118,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srvcli.dll
[2022/01/13 23:58:19 | 000,091,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wkscli.dll
[2022/01/13 23:58:19 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msobjs.dll
[2022/01/13 23:58:19 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\schedcli.dll
[2022/01/13 23:58:17 | 010,344,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2022/01/13 23:58:17 | 003,579,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2022/01/13 23:58:17 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comsvcs.dll
[2022/01/13 23:58:17 | 000,920,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2022/01/13 23:58:17 | 000,893,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2022/01/13 23:58:17 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptprov.dll
[2022/01/13 23:58:17 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authz.dll
[2022/01/13 23:58:17 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpapisrv.dll
[2022/01/13 23:58:17 | 000,272,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinesam.dll
[2022/01/13 23:58:17 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CertPolEng.dll
[2022/01/13 23:58:17 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2022/01/13 23:58:17 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samcli.dll
[2022/01/13 23:58:17 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netmsg.dll
[2022/01/13 23:58:16 | 003,917,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2022/01/13 23:58:16 | 002,004,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refs.sys
[2022/01/13 23:58:16 | 001,825,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2022/01/13 23:58:16 | 001,558,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2022/01/13 23:58:16 | 001,393,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2022/01/13 23:58:16 | 001,223,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ApplyTrustOffline.exe
[2022/01/13 23:58:16 | 001,198,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2022/01/13 23:58:16 | 001,034,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\refsutil.exe
[2022/01/13 23:58:16 | 000,990,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refsv1.sys
[2022/01/13 23:58:16 | 000,815,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uReFS.dll
[2022/01/13 23:58:16 | 000,669,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ApplicationFrame.dll
[2022/01/13 23:58:16 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PasswordEnrollmentManager.dll
[2022/01/13 23:58:16 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.SharedPC.AccountManager.dll
[2022/01/13 23:58:16 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shacct.dll
[2022/01/13 23:58:15 | 005,858,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepository.dll
[2022/01/13 23:58:15 | 004,009,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2022/01/13 23:58:15 | 003,813,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2022/01/13 23:58:15 | 001,337,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryPS.dll
[2022/01/13 23:58:15 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnapps.dll
[2022/01/13 23:58:15 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2022/01/13 23:58:15 | 000,726,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StateRepository.Core.dll
[2022/01/13 23:58:15 | 000,500,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2022/01/13 23:58:15 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudDomainJoinDataModelServer.dll
[2022/01/13 23:58:15 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_User.dll
[2022/01/13 23:58:15 | 000,383,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2022/01/13 23:58:15 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryUpgrade.dll
[2022/01/13 23:58:15 | 000,249,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryClient.dll
[2022/01/13 23:58:15 | 000,206,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KerbClientShared.dll
[2022/01/13 23:58:15 | 000,181,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys
[2022/01/13 23:58:15 | 000,159,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\profext.dll
[2022/01/13 23:58:15 | 000,149,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\bindflt.sys
[2022/01/13 23:58:15 | 000,133,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32u.dll
[2022/01/13 23:58:15 | 000,117,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryBroker.dll
[2022/01/13 23:58:15 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bindfltapi.dll
[2022/01/13 23:58:15 | 000,087,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netapi32.dll
[2022/01/13 23:58:15 | 000,059,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryCore.dll
[2022/01/13 23:58:14 | 007,988,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll
[2022/01/13 23:58:14 | 003,358,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CertEnroll.dll
[2022/01/13 23:58:14 | 002,891,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2022/01/13 23:58:14 | 002,250,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ISM.dll
[2022/01/13 23:58:14 | 001,074,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.AccountsControl.dll
[2022/01/13 23:58:14 | 000,913,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppContracts.dll
[2022/01/13 23:58:14 | 000,903,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2022/01/13 23:58:14 | 000,819,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certca.dll
[2022/01/13 23:58:14 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.System.Launcher.dll
[2022/01/13 23:58:14 | 000,660,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2022/01/13 23:58:14 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TileDataRepository.dll
[2022/01/13 23:58:14 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cloudAP.dll
[2022/01/13 23:58:14 | 000,494,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certcli.dll
[2022/01/13 23:58:14 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll
[2022/01/13 23:58:14 | 000,456,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2022/01/13 23:58:14 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2022/01/13 23:58:14 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2022/01/13 23:58:14 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Core.dll
[2022/01/13 23:58:14 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\negoexts.dll
[2022/01/13 23:58:14 | 000,070,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GameInput.dll
[2022/01/13 23:58:13 | 017,544,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2022/01/13 23:58:13 | 006,190,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2022/01/13 23:58:13 | 001,543,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TaskFlowDataEngine.dll
[2022/01/13 23:58:13 | 001,127,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ShareHost.dll
[2022/01/13 23:58:13 | 000,886,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\agentactivationruntimewindows.dll
[2022/01/13 23:58:13 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2022/01/13 23:58:13 | 000,771,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel32.dll
[2022/01/13 23:58:13 | 000,723,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2022/01/13 23:58:13 | 000,699,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2022/01/13 23:58:13 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdpsvc.dll
[2022/01/13 23:58:13 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netplwiz.dll
[2022/01/13 23:58:13 | 000,299,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscapi.dll
[2022/01/13 23:58:13 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2022/01/13 23:58:13 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceregistration.dll
[2022/01/13 23:58:13 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ManageCI.dll
[2022/01/13 23:58:13 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PinEnrollmentHelper.dll
[2022/01/13 23:58:13 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ptpprov.dll
[2022/01/13 23:58:13 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogonext.dll
[2022/01/13 23:58:13 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browcli.dll
[2022/01/13 23:58:13 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2022/01/13 23:58:13 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscisvif.dll
[2022/01/13 23:58:13 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kdcpw.dll
[2022/01/13 23:58:13 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscproxystub.dll
[2022/01/13 23:58:13 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscadminui.exe
[2022/01/13 23:58:12 | 001,580,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SpeechPal.dll
[2022/01/13 23:58:12 | 000,680,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2022/01/13 23:58:12 | 000,641,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Vid.sys
[2022/01/13 23:58:12 | 000,252,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netvsc.sys
[2022/01/13 23:58:12 | 000,215,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spacedump.sys
[2022/01/13 23:58:12 | 000,029,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vmbuspipe.dll
[2022/01/13 23:52:41 | 000,000,000 | -H-D | C] -- C:\$WinREAgent
[2022/01/11 23:44:30 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Adobe
[2022/01/11 23:39:35 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\NVIDIA
[2022/01/11 23:31:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SystemTemp
[2022/01/05 00:14:42 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\10tons
[2022/01/04 17:39:05 | 000,000,000 | ---D | C] -- C:\Users\User\Xiaomi Cloud
[2022/01/04 17:38:04 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\xiaomicloud-updater
[2022/01/04 15:03:55 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\The Witcher
[2022/01/04 15:03:23 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\The Witcher
[2022/01/04 15:01:31 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\The Witcher
[3 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]
[1 C:\Users\User\Desktop\*.tmp files -> C:\Users\User\Desktop\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2022/01/27 17:13:04 | 000,080,226 | ---- | M] () -- C:\WINDOWS\ZAM.krnl.trace
[2022/01/27 17:10:27 | 005,882,410 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2022/01/27 17:10:27 | 003,795,264 | ---- | M] () -- C:\WINDOWS\SysNative\perfh01B.dat
[2022/01/27 17:10:27 | 001,170,672 | ---- | M] () -- C:\WINDOWS\SysNative\perfc01B.dat
[2022/01/27 17:10:27 | 000,701,398 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2022/01/27 17:10:27 | 000,133,240 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2022/01/27 17:06:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe
[2022/01/27 17:05:29 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2022/01/27 17:03:24 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2022/01/27 17:03:22 | 2560,356,351 | -HS- | M] () -- C:\hiberfil.sys
[2022/01/27 17:03:07 | 001,474,832 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\sfi.dat
[2022/01/27 17:01:52 | 000,000,975 | ---- | M] () -- C:\Users\Public\Desktop\CPUID HWMonitor.lnk
[2022/01/27 17:01:37 | 001,445,640 | ---- | M] (CPUID, Inc. ) -- C:\Users\User\Desktop\hwmonitor_1.45.exe
[2022/01/26 23:18:43 | 000,002,226 | ---- | M] () -- C:\Users\User\Desktop\Discord.lnk
[2022/01/26 23:03:33 | 000,223,707 | ---- | M] () -- C:\Users\User\Desktop\DPFOAv21.zip
[2022/01/26 22:28:50 | 000,234,973 | ---- | M] () -- C:\Users\User\Desktop\Potvrdenie o zdaniteľnej mzde.pdf
[2022/01/26 22:02:13 | 025,339,160 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\fvstore.dat
[2022/01/26 20:01:35 | 002,311,680 | ---- | M] (Farbar) -- C:\Users\User\Desktop\FRST64.exe
[2022/01/26 19:30:19 | 000,001,828 | ---- | M] () -- C:\Users\User\Desktop\CrystalDiskInfo.lnk
[2022/01/26 13:54:11 | 000,001,988 | ---- | M] () -- C:\Users\Public\Desktop\Awakened PoE Trade.lnk
[2022/01/26 10:28:48 | 000,001,845 | ---- | M] () -- C:\Users\User\Desktop\Spotify.lnk
[2022/01/26 08:09:31 | 000,001,333 | ---- | M] () -- C:\Users\Public\Desktop\Zemana AntiMalware.lnk
[2022/01/26 08:09:30 | 000,232,792 | ---- | M] (Copyright 2018.) -- C:\WINDOWS\SysNative\drivers\amsdk.sys
[2022/01/26 07:40:27 | 000,000,841 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts
[2022/01/25 22:01:27 | 000,002,775 | ---- | M] () -- C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
[2022/01/25 22:00:52 | 185,115,928 | ---- | M] (Sophos Limited) -- C:\Users\User\Desktop\Sophos Virus Removal Tool.exe
[2022/01/25 17:54:38 | 000,002,021 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
[2022/01/25 17:54:31 | 000,248,992 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamswissarmy.sys
[2022/01/25 17:54:24 | 000,160,176 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbae64.sys
[2022/01/25 17:54:23 | 000,019,912 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamElam.sys
[2022/01/25 17:52:33 | 002,911,928 | ---- | M] (Malwarebytes) -- C:\Users\User\Desktop\MBSetup.exe
[2022/01/25 17:48:23 | 000,007,594 | ---- | M] () -- C:\Users\User\AppData\Local\Resmon.ResmonCfg
[2022/01/25 17:47:09 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Users\User\Desktop\ATF-Cleaner.exe
[2022/01/25 08:12:31 | 000,002,272 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2022/01/24 10:36:09 | 000,000,222 | ---- | M] () -- C:\Users\User\Desktop\My Time At Portia.url
[2022/01/23 14:54:38 | 000,529,319 | ---- | M] () -- C:\Users\User\Desktop\diluppuw2fu71.png
[2022/01/23 14:49:11 | 000,329,178 | ---- | M] () -- C:\Users\User\Desktop\TheGAM3Report1's 3.16 Heist CheatSheet https___youtube.com_thegam3report1 https___twitch.tv_thegam3report.jpg
[2022/01/22 06:43:53 | 000,002,282 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Edge.lnk
[2022/01/21 21:32:03 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
[2022/01/21 21:12:37 | 000,000,540 | ---- | M] () -- C:\Users\User\Desktop\dysmantle.mamc
[2022/01/21 18:53:47 | 000,002,389 | ---- | M] () -- C:\Users\Public\Desktop\Brave.lnk
[2022/01/20 15:20:28 | 000,452,160 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2022/01/20 12:56:05 | 000,001,171 | ---- | M] () -- C:\Users\Public\Desktop\Unified Remote.lnk
[2022/01/19 09:10:07 | 005,227,019 | ---- | M] () -- C:\Users\User\Desktop\namebench-1.3.1-Windows.exe
[2022/01/18 11:25:24 | 000,000,652 | ---- | M] () -- C:\Users\User\Desktop\expedition.mamc
[2022/01/15 18:05:40 | 000,344,962 | ---- | M] () -- C:\Users\User\Desktop\madmonq_posters_wallpapersmadmonq-002-2560x1440.png
[2022/01/15 10:52:54 | 038,496,951 | ---- | M] () -- C:\Users\User\Desktop\Pepe the frog.mp4
[2022/01/15 10:37:41 | 000,000,222 | ---- | M] () -- C:\Users\User\Desktop\Train Station Renovation.url
[2022/01/13 23:58:39 | 003,568,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2022/01/13 23:58:39 | 001,162,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2022/01/13 23:58:39 | 000,979,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DolbyDecMFT.dll
[2022/01/13 23:58:38 | 024,272,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Hydrogen.dll
[2022/01/13 23:58:38 | 004,809,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2022/01/13 23:58:38 | 002,521,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2022/01/13 23:58:38 | 001,655,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft.Uev.AppAgent.dll
[2022/01/13 23:58:37 | 002,419,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft.Uev.AppAgent.dll
[2022/01/13 23:58:37 | 001,227,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AgentService.exe
[2022/01/13 23:58:36 | 007,127,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2022/01/13 23:58:36 | 002,235,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft.Uev.ModernAppAgent.dll
[2022/01/13 23:58:36 | 001,260,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppVEntSubsystemController.dll
[2022/01/13 23:58:36 | 001,225,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft.Uev.CommonBridge.dll
[2022/01/13 23:58:36 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll
[2022/01/13 23:58:36 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\runas.exe
[2022/01/13 23:58:35 | 001,277,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certutil.exe
[2022/01/13 23:58:35 | 000,612,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll
[2022/01/13 23:58:35 | 000,439,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certreq.exe
[2022/01/13 23:58:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msimsg.dll
[2022/01/13 23:58:34 | 019,866,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2022/01/13 23:58:34 | 000,141,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpsapi.dll
[2022/01/13 23:58:33 | 000,706,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msdtcprx.dll
[2022/01/13 23:58:33 | 000,576,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\archiveint.dll
[2022/01/13 23:58:33 | 000,464,384 | ---- | M] (curl, https://curl.se/) -- C:\WINDOWS\SysWow64\curl.exe
[2022/01/13 23:58:33 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mtxclu.dll
[2022/01/13 23:58:33 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\net1.exe
[2022/01/13 23:58:33 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xolehlp.dll
[2022/01/13 23:58:33 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dataclen.dll
[2022/01/13 23:58:33 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tar.exe
[2022/01/13 23:58:32 | 008,257,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2022/01/13 23:58:32 | 007,776,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2022/01/13 23:58:32 | 003,348,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2022/01/13 23:58:32 | 001,651,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certutil.exe
[2022/01/13 23:58:32 | 001,614,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2022/01/13 23:58:32 | 000,785,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll
[2022/01/13 23:58:32 | 000,564,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certreq.exe
[2022/01/13 23:58:32 | 000,539,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nltest.exe
[2022/01/13 23:58:32 | 000,130,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\PktMon.sys
[2022/01/13 23:58:32 | 000,098,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2022/01/13 23:58:32 | 000,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll
[2022/01/13 23:58:32 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksetup.exe
[2022/01/13 23:58:32 | 000,032,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys
[2022/01/13 23:58:32 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msimsg.dll
[2022/01/13 23:58:32 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\runas.exe
[2022/01/13 23:58:31 | 001,618,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtctm.dll
[2022/01/13 23:58:31 | 001,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CBDHSvc.dll
[2022/01/13 23:58:31 | 000,881,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtcprx.dll
[2022/01/13 23:58:31 | 000,683,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\computecore.dll
[2022/01/13 23:58:31 | 000,681,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\archiveint.dll
[2022/01/13 23:58:31 | 000,523,776 | ---- | M] (curl, https://curl.se/) -- C:\WINDOWS\SysNative\curl.exe
[2022/01/13 23:58:31 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mtxclu.dll
[2022/01/13 23:58:31 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtcuiu.dll
[2022/01/13 23:58:31 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpsapi.dll
[2022/01/13 23:58:31 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\net1.exe
[2022/01/13 23:58:31 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dataclen.dll
[2022/01/13 23:58:31 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tar.exe
[2022/01/13 23:58:31 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsauth.dll
[2022/01/13 23:58:30 | 001,570,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe
[2022/01/13 23:58:30 | 001,314,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2022/01/13 23:58:30 | 001,269,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe
[2022/01/13 23:58:30 | 000,807,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcblaunch.exe
[2022/01/13 23:58:30 | 000,305,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\skci.dll
[2022/01/13 23:58:30 | 000,222,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcbloader.dll
[2022/01/13 23:58:30 | 000,173,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vertdll.dll
[2022/01/13 23:58:30 | 000,011,797 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuthTxt.wim
[2022/01/13 23:58:29 | 008,891,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2022/01/13 23:58:29 | 001,459,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2022/01/13 23:58:29 | 000,952,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2022/01/13 23:58:29 | 000,901,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2022/01/13 23:58:29 | 000,682,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2022/01/13 23:58:29 | 000,418,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scesrv.dll
[2022/01/13 23:58:29 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2022/01/13 23:58:29 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BitLockerCsp.dll
[2022/01/13 23:58:29 | 000,141,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netjoin.dll
[2022/01/13 23:58:29 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\joinutil.dll
[2022/01/13 23:58:29 | 000,134,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\raschap.dll
[2022/01/13 23:58:29 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netid.dll
[2022/01/13 23:58:29 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netprovfw.dll
[2022/01/13 23:58:28 | 001,352,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll
[2022/01/13 23:58:28 | 000,885,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2022/01/13 23:58:28 | 000,272,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptprov.dll
[2022/01/13 23:58:28 | 000,194,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\logoncli.dll
[2022/01/13 23:58:28 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincredui.dll
[2022/01/13 23:58:28 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertPolEng.dll
[2022/01/13 23:58:28 | 000,115,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll
[2022/01/13 23:58:28 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wkscli.dll
[2022/01/13 23:58:28 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf3216.dll
[2022/01/13 23:58:28 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gmsaclient.dll
[2022/01/13 23:58:28 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\schedcli.dll
[2022/01/13 23:58:28 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netmsg.dll
[2022/01/13 23:58:27 | 002,752,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2022/01/13 23:58:27 | 000,692,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\uReFS.dll
[2022/01/13 23:58:27 | 000,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2022/01/13 23:58:27 | 000,094,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32u.dll
[2022/01/13 23:58:27 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shacctprofile.dll
[2022/01/13 23:58:25 | 002,869,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnroll.dll
[2022/01/13 23:58:25 | 001,042,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wpnapps.dll
[2022/01/13 23:58:25 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certca.dll
[2022/01/13 23:58:25 | 000,583,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StateRepository.Core.dll
[2022/01/13 23:58:25 | 000,355,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certcli.dll
[2022/01/13 23:58:25 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryUpgrade.dll
[2022/01/13 23:58:25 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2022/01/13 23:58:25 | 000,176,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryClient.dll
[2022/01/13 23:58:25 | 000,152,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KerbClientShared.dll
[2022/01/13 23:58:25 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\negoexts.dll
[2022/01/13 23:58:25 | 000,099,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryBroker.dll
[2022/01/13 23:58:25 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CertEnrollCtrl.exe
[2022/01/13 23:58:25 | 000,042,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryCore.dll
[2022/01/13 23:58:24 | 006,376,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2022/01/13 23:58:24 | 005,420,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepository.dll
[2022/01/13 23:58:24 | 000,773,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppContracts.dll
[2022/01/13 23:58:24 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.AccountsControl.dll
[2022/01/13 23:58:24 | 000,602,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryPS.dll
[2022/01/13 23:58:24 | 000,528,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.System.Launcher.dll
[2022/01/13 23:58:24 | 000,502,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2022/01/13 23:58:24 | 000,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TileDataRepository.dll
[2022/01/13 23:58:24 | 000,128,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\profext.dll
[2022/01/13 23:58:24 | 000,061,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GameInput.dll
[2022/01/13 23:58:23 | 014,760,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2022/01/13 23:58:23 | 000,884,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ShareHost.dll
[2022/01/13 23:58:23 | 000,591,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2022/01/13 23:58:23 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netplwiz.dll
[2022/01/13 23:58:23 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2022/01/13 23:58:23 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Core.dll
[2022/01/13 23:58:23 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2022/01/13 23:58:22 | 004,746,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2022/01/13 23:58:22 | 000,865,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2022/01/13 23:58:22 | 000,252,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscapi.dll
[2022/01/13 23:58:22 | 000,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msaudite.dll
[2022/01/13 23:58:22 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msobjs.dll
[2022/01/13 23:58:22 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscisvif.dll
[2022/01/13 23:58:22 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscproxystub.dll
[2022/01/13 23:58:22 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscadminui.exe
[2022/01/13 23:58:21 | 003,945,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2022/01/13 23:58:21 | 001,752,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2022/01/13 23:58:21 | 001,261,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2022/01/13 23:58:21 | 000,911,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2022/01/13 23:58:21 | 000,608,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcext.dll
[2022/01/13 23:58:21 | 000,587,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scesrv.dll
[2022/01/13 23:58:21 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2022/01/13 23:58:21 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskcomp.dll
[2022/01/13 23:58:21 | 000,396,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastls.dll
[2022/01/13 23:58:21 | 000,304,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LsaIso.exe
[2022/01/13 23:58:21 | 000,271,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFHost.exe
[2022/01/13 23:58:21 | 000,196,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFPlatform.dll

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Kdo je online