Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Virus or corrupted windows 11 - next chapter

Started by przemko , Jan 27 2024 02:42 AM

  • Please log in to reply

#1
przemko
Posted 27 January 2024 - 02:42 AM

przemko

    New Member

  • Member
  • Pip
  • 5 posts

Windows 11 Home x64
Hi Guys! Im back again with the same problem like I had a month ago in this topic (https://www.geekstog...ted-windows-11/). But this time FarBar reports are much more complicated. Symptoms are still the same :
 

" My computer has recently started running slower and using a lot of RAM. In device manager I found unknown devices installed that shouldn't be there. Also in task manager I found that the same programs are being opened multiple times and multiple processes are running such as svhost. I reinstalled the system, but it did not solve the problem. In addition, when computer is in Idle mode, it goes into working mode even though it shouldn't, the fans work at maximum and only after the computer wakes up do the fans slow down.  "

Pls help, thx!!
 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25.01.2024
Ran by user (administrator) on DESKTOP-7PHMD89 (Acer Nitro AN515-45) (27-01-2024 07:22:12)
Running from C:\Users\user\Desktop\EnglishFRST64.exe
Loaded Profiles: user & Administrator & LansweeperLocalDbService
Platform: Windows 10 Home Version 21H2 22000.2538 (X64) Language: Polski (Polska)
Default browser: Opera
Boot Mode: Normal
 
==================== Processes (All) =================
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler64.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(C:\Users\user\Desktop\EnglishFRST64.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2312.18.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe <4>
(DriverStore\FileRepository\u0371182.inf_amd64_e046f8d87ec91fad\B371034\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0371182.inf_amd64_e046f8d87ec91fad\B371034\atieclxx.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\explorer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\winlogon.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\smss.exe
(SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
(SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe <2>
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0371182.inf_amd64_e046f8d87ec91fad\B371034\atiesrxx.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spoolsv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SgrmBroker.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\svchost.exe <67>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacig.inf_amd64_d08bf1f458ca2ea0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (RealDefense, LLC -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c51a65fb5ec70f9d\RtkAudUService64.exe <3>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (83564403-0B26-46B8-9D84-040F43691D31 -> ) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\RtkUWP.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\System32\AggregatorHost.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\ApplicationFrameHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\audiodg.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\ctfmon.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dasHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\sihost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsBroker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskhostw.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\csrss.exe <2>
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\wininit.exe
(wininit.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fontdrvhost.exe <2>
(wininit.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\lsass.exe
(wininit.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\services.exe
(winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dwm.exe
(wlanext.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\conhost.exe
 
==================== Registry (All) ===================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SecurityHealth] => C:\Windows\system32\SecurityHealthSystray.exe [266240 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.153\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10939928 2024-01-24] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c51a65fb5ec70f9d\RtkAudUService64.exe [1249848 2021-03-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [50176 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [5092056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [4460064 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [38972776 2021-06-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [38972776 2021-06-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\Run: [OneDrive] => C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2595344 2023-12-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4388200 2024-01-13] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [11203312 2023-12-01] (RealDefense, LLC -> SUPERAntiSpyware)
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\Policies\Explorer: [HideSCAMeetNow] 1
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\MountPoints2: {6cce4967-ac9e-11ee-9b35-088fc33cdccf} - "D:\SISetup.exe" 
HKU\S-1-5-21-2890305830-4224058196-3671865366-500\...\Run: [OneDrive] => C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2367352 2024-01-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2890305830-4224058196-3671865366-500\...\Policies\Explorer: [NoDriveTypeAutoRun] 145
HKU\S-1-5-80-3871198407-3985681096-187537395-327373503-1498934226\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [38972776 2021-06-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Providers\Internet Print Provider: C:\Windows\system32\inetpp.dll [212992 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: C:\Windows\system32\win32spl.dll [1327104 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-21] () [File not signed]
HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [65536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Appmon: C:\Windows\system32\AppMon.dll [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP1100LM: HP1100LM.DLL (No File)
HKLM\...\Print\Monitors\Local Port: C:\Windows\system32\localspl.dll [1331200 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\Windows\system32\FXSMON.DLL [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\Windows\system32\tcpmon.dll [266240 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\USB Monitor: C:\Windows\system32\usbmon.dll [1142784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\WSD Port: C:\Windows\system32\APMon.dll [1581056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\system32\unregmp2.exe [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -> C:\Windows\system32\themeui.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\system32\unregmp2.exe [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> C:\Windows\system32\shell32.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4383}] -> C:\Windows\System32\ie4uinit.exe [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.225\Installer\chrmstp.exe [2024-01-19] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.153\Installer\chrmstp.exe [2024-01-26] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\unregmp2.exe [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\Windows\SysWOW64\unregmp2.exe [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{01A30791-40AE-4653-AB2E-FD210019AE88}] -> C:\Windows\system32\mgmtrefreshcredprov.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{1b283861-754f-4022-ad47-a5eaaa618894}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{1ee7337f-85ac-45e2-a23c-37c753209769}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{2135f72a-90b5-4ed3-a7f1-8bb705ac276a}] -> C:\Windows\system32\credprovslegacy.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{25CBB996-92ED-457e-B28C-4774084BD562}] -> C:\Windows\system32\credprovs.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{27FBDB57-B613-4AF2-9D7E-4FA7A66C21AD}] -> C:\Windows\system32\TrustedSignalCredProv.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{3dd6bec0-8193-4ffe-ae25-e08e39ea4063}] -> C:\Windows\system32\credprovs.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{48B4E58D-2791-456C-9091-D524C6C706F2}] -> C:\Windows\System32\devicengccredprov.dll [2021-11-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{600e7adb-da3e-41a4-9225-3c0399e88c0c}] -> C:\Windows\system32\cngcredui.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{60b78e88-ead8-445c-9cfd-0b87f74ea6cd}] -> C:\Windows\system32\credprovs.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{8AF662BF-65A0-4D0A-A540-A338A999D36F}] -> C:\Windows\System32\FaceCredentialProvider.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{8FD7E19C-3BF7-489B-A72C-846AB3678C96}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{94596c7e-3744-41ce-893e-bbf09122f76a}] -> C:\Windows\system32\SmartcardCredentialProvider.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{BEC09223-B018-416D-A0AC-523971B639F5}] -> C:\Windows\System32\BioCredProv.dll [2021-11-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C5D7540A-CD51-453B-B22B-05305BA03F07}] -> C:\Windows\System32\cxcredprov.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{cb82ea12-9f71-446d-89e1-8d0924e1256e}] -> C:\Windows\system32\credprovslegacy.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{D6886603-9D2F-4EB2-B667-1971041FA96B}] -> C:\Windows\System32\ngccredprov.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{e74e57b0-6c6d-44d5-9cda-fb2df5ed7435}] -> C:\Windows\system32\certCredProvider.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{f64945df-4fa9-4068-a2fb-61af319edd33}] -> C:\Windows\system32\rdpcredentialprovider.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Windows\system32\wlidcredprov.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{F8A1793B-7873-4046-B2A7-1F318747F427}] -> C:\Windows\system32\fidocredprov.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DDC0EED2-ADBE-40b6-A217-EDE16A79A0DE}] -> C:\Windows\system32\credprovs.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\PLAP Providers: [{5537E283-B1E7-4EF8-9C6E-7AB0AFE5056D}] -> C:\Windows\system32\rasplap.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\system32\wlgpclnt.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{16be69fa-4209-4250-88cb-716cf41954e0}] -> C:\Windows\system32\auditcse.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\system32\fdeploy.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{35378EAC-683F-11D2-A89A-00C04FBBCFA2}] -> 
HKLM\Software\...\Winlogon\GPExtensions: [{3610eda5-77ef-11d2-8dc5-00c04fa31a66}] -> C:\Windows\System32\dskquota.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\system32\gptext.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4bcd6cde-777b-48b6-9804-43568e23545d}] -> C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}] -> C:\Windows\System32\iedkcs32.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4D2F9B6F-1E52-4711-A382-6A8B1A003DE6}] -> C:\Windows\System32\tsworkspace.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4d968b55-cac2-4ff5-983f-0a54603781a3}] -> C:\Windows\system32\WorkFoldersGPExt.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7909AD9E-09EE-4247-BAB9-7029D5F0A278}] -> C:\Windows\system32\dmenrollengine.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7933F41E-56F8-41d6-A31C-4148A711EE93}] -> C:\Windows\System32\srchadmin.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7B849a69-220F-451E-B3FE-2CB811AF94AE}] -> C:\Windows\System32\iedkcs32.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\system32\scecli.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{8472C2C4-6B70-4301-A20D-A6CEA5F82B7E}] -> C:\Windows\System32\StartTileData.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{8A28E2C5-8D06-49A4-A08C-632DAA493E17}] -> C:\Windows\system32\gpprnext.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\system32\dot3gpclnt.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}] -> C:\Windows\system32\pwlauncher.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C34B2751-1CF4-44F5-9262-C3FC39666591}] -> C:\Windows\system32\pwlauncher.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\system32\gptext.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}] -> C:\Windows\System32\iedkcs32.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{CFF649BD-601D-4361-AD3D-0FC365DB4DB7}] -> C:\Windows\system32\domgmt.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{e437bc1c-aa7d-11d2-a382-00c04f991e27}] -> C:\Windows\System32\polstore.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> C:\Windows\system32\auditcse.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\system32\gptext.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\system32\gptext.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
BootExecute: autocheck autochk * 
AlternateShell: cmd.exe
 
==================== Scheduled Tasks (All) =================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {1443289B-DE62-4A6B-B7F8-AC617526E843} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{41266C92-58D0-4530-BD34-FB3A64DFFAC9} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-12-17] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {3F072333-1A3E-4F94-883B-73DCE0FBE18D} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{785DBAB5-C34D-43D4-9270-EADB08027D71} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-12-17] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {46AE8BA0-9DBC-4E21-82A4-FC1CC8834A9D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5092056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {9620CB96-F20A-4323-9788-5476D3EE0319} - System32\Tasks\GoogleUpdateTaskMachineCore{B5E075CF-123E-4AD7-A5E7-ACFC57408194} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2024-01-08] (Google LLC -> Google LLC)
Task: {E5ECF107-CE6E-4F68-9371-56BF4DD6B9ED} - System32\Tasks\GoogleUpdateTaskMachineUA{8AC6A759-23A4-45BC-B153-47BA1FB95A3F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2024-01-08] (Google LLC -> Google LLC)
Task: {BCB84B4A-7C2A-45C2-82E1-49AE675A7820} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 => {84F0FAE1-C27B-4F6F-807B-28CF6F96287D} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {109E3569-1A15-40AA-AB40-1470812C19B8} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 => {429BC048-379E-45E0-80E4-EB1977941B5C} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {2A4AE9DA-BE22-4E14-B41D-D3727AC11CFF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical => {613FBA38-A3DF-4AB8-9674-5604984A299A} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {94A460F6-662D-48EB-8E89-5B070A5E8BFD} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical => {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {F4225DA1-EE88-46FA-9E31-A248166DB177} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\Windows\system32\msdrm.dll [589824 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {CCB83B76-4BE4-42E5-8BEC-9BE1305CCB87} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} C:\Windows\system32\msdrm.dll [589824 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {FC6F2E74-533E-430D-B9C9-2C43A1934DFD} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager => {DECA92E0-AF85-439E-9204-86679978DA08} C:\Windows\System32\AppLockerCsp.dll [364544 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {866C0FCF-DA6F-42BE-81D7-D59816C56B12} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\Windows\system32\appidpolicyconverter.exe [163840 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {5944AF64-0CAA-466B-8BC4-BCE62F9737B9} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\Windows\system32\appidcertstorecheck.exe [45056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CA92FDC2-FEE7-4AEA-BEB3-BA6CFB0DF588} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe [160208 2021-06-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A133E54D-8AF2-4780-B66B-25E8577988B9} - System32\Tasks\Microsoft\Windows\Application Experience\PcaPatchDbTask => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaPatchSdbTask
Task: {EE3FF370-E9F6-43E3-9FE8-901CB3BB2517} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [160208 2021-06-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DE91F8A-317C-4700-BCA0-C2BA2BD46F2C} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> Startupscan.dll,SusRunTask
Task: {76A554A5-4526-49A1-89D4-37AF93E4526D} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {08378800-81C1-40E1-B8F1-A80C9FDF1B78} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6798C090-EFA5-45E6-A063-9D9FFCA0B9FE} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {038257EC-8B46-47AE-95A7-A72BE792B983} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [36864 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D9568620-AD8B-46F5-8320-D4DEC2981DE9} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\Windows\system32\AppListBackupLauncher.dll [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {E440963D-93DB-4472-9DC3-2CB5075C369C} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\AppInstallerUpdater => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\AppxDeploymentClient.dll,AppInstallerUpdateAllTask
Task: {ECD7E053-7589-47D4-9AAC-73B709751D97} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {333876B7-4F68-4FEC-B65A-84EC5685B275} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> /d acproxy.dll,PerformAutochkOperations
Task: {E20E5D54-679A-447E-93BA-99501B67DF65} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {BC65E567-DBE1-48F3-9B65-3B049E52B99B} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {9B33CB24-405C-4B7F-A48E-E530A7A6717F} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\system32\BthUdTask.exe [65536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {97AE2D41-7E43-4259-9BE1-97C17EC3AA2F} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask => {E984D939-0E00-4DD9-AC3A-7ACA04745521}
Task: {A79BA140-4629-44DD-88F3-26A23688E8F2} - System32\Tasks\microsoft\windows\capabilityaccessmanager\maintenancetasks => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\CapabilityAccessManager.dll,CapabilityAccessManagerDoStoreMaintenance
Task: {918C1B4D-2913-41E0-9E11-8BC5389E6B60} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [241664 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0717E650-4432-4E8D-B054-4AC58B5AE9A6} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [241664 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CC8F5AD6-BBE8-4FF2-9DED-DE99AF0FCE2A} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [241664 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {61F5931C-D895-44A8-9902-2E6EDD6872D4} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [65536 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {58B0266D-0735-458B-8FE7-8BE0C0F7C06C} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [65536 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {C732ACAA-FFFF-486A-B24D-F9E68A80E304} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [65536 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {C6C4643F-3545-4369-95CB-41F849EECA9D} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} C:\Windows\System32\pstask.dll [36864 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {224B0F87-E335-4A5B-A9BB-0D3CA766C78B} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\Windows\system32\bcdboot.exe [249856 2021-11-04] (Microsoft Windows -> Microsoft Corporation) -> %windir% /sysrepair
Task: {4D0DFACA-F638-48AA-96A9-ACD69619661A} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [1146008 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FAF5322D-99EB-45C6-AE54-EC78A12F46B0} - System32\Tasks\Microsoft\Windows\CloudExperienceHost\CreateObjectTask => {E4544ABA-62BF-4C54-AAB2-EC246342626C} C:\Windows\System32\CloudExperienceHostBroker.exe [95584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0F627B45-05BC-4D48-832B-855F3215205E} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\Windows\System32\wsqmcons.exe [86016 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {EB7A8638-053D-4CF9-98BE-DA6BE45C58D9} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {C27F6B1D-FE0B-45E4-9257-38799FA69BC8} C:\Windows\System32\usbceip.dll [131072 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {AE39850E-7A19-4EE2-9BC6-77E93095DD3A} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Check And Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [344064 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {4C41447D-DE82-4497-B915-A76656A98072} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [344064 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {D12754D8-EAE3-4D6F-B352-71BCCE6EA0C0} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [344064 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {D791FB3E-937E-4AE6-B716-4F8BD98D84C9} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\Windows\system32\defrag.exe [245760 2023-12-17] (Microsoft Windows -> Microsoft Corp.)
Task: {16C116D0-DD3A-4C4F-BA7F-7ADDD6714E83} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [58704 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {549CAECC-DFE4-4770-82B6-2B934E492916} - System32\Tasks\Microsoft\Windows\Device Information\Device User => C:\Windows\system32\devicecensus.exe [58704 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {1355A5AA-ABAE-4E04-847E-97D3A7242F38} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\Windows\System32\DeviceSetupManagerAPI.dll [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C8384B11-EFDE-4FB1-A39F-AC4C166E2EC6} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {832C3FB8-29F4-4721-8127-416AA4B539ED} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D0411C34-780D-4178-AE41-A9695FFD2DBC} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C649D49D-23A5-4E19-B3EB-305AD6137A3C} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C1CB511B-6640-4E61-AAAD-DCAF91DDD72B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {BACD6719-1373-4D64-B367-E50E8F08B19E} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D4E4AC3E-3DEB-41F1-ACA4-5053D543276F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A10FD2D2-39CD-4012-9D66-D36F3A40AA36} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {1B813A65-BA7C-4140-890E-1F3562622E32} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {3754A6D4-4BD0-47C6-8A21-0AAAB1738BD1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6EDDEFC2-B9FD-4276-91B5-B4AC54F28051} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {7F8EF199-E3CE-4BE3-A6D4-D7200EEA786D} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => {AD08DCC2-4E35-4486-9D49-547CBD30942D} C:\Windows\System32\MitigationClient.dll [569344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CBFE1BDB-B92C-4849-B10A-61D761C0E27A} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {C1F85EF8-BCC2-4606-BB39-70C523715EB3} C:\Windows\System32\sdiagschd.dll [102400 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {19D1FB8E-1185-4DD4-9C66-1F68C2077549} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\Windows\system32\directxdatabaseupdater.exe [192512 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {5E081107-E3EC-4A48-A986-4EE06259BD9E} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\Windows\system32\dxgiadaptercache.exe [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0D6C6F21-ABAE-4C3A-A392-F7A35D3C3E1C} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [299008 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> /autocleanstoragesense /d %systemdrive%
Task: {3A6A7DDB-CDE2-42F6-BF80-E4DFD511CAC9} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> dfdts.dll,DfdGetDefaultPolicyAndSMART
Task: {C895FFEC-E191-4141-A007-536E20C1C617} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\Windows\system32\DFDWiz.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {E31EE77E-143B-49AA-91F3-BF33966C6AFF} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [94208 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {4E196081-FAC2-4CBF-B88F-42D0B5CE7C66} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense => {AB2A519B-03B0-43CE-940A-A73DF850B49A} C:\Windows\system32\StorageUsage.dll [327680 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A39758F1-CFA6-4D39-BA48-F89F153C5416} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\Windows\System32\dusmtask.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {20CB784F-C860-49C4-B487-2B0B579F3E45} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {11995FEB-AF80-4DA4-8E17-4FFD5026EE79} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {7BA01BB7-1979-46B6-85B0-B32C968F09B2} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {EC4FAD3C-51F3-4A24-8AEE-1EE390B6DF41} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D2AC6E4C-297B-4A69-BF58-9DA241A700D1} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh => {711001CD-CC1D-4470-9B7E-1EF73849C79E} C:\Windows\System32\MitigationConfiguration.dll [131072 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {61607B4E-939E-4891-BCCB-55901113FC8C} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [147456 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {3E1CE7F1-99E6-4089-AFAE-7D8F77F08808} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\Windows\system32\dmclient.exe [147456 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {2AE44D6E-9EB7-4BC1-90D0-204FF44A2B4B} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\Windows\System32\fhtask.dll [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {488D3EA5-E71C-44AB-81A6-43EA91FD9FAE} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => {59EECBFE-C2F5-4419-9B99-13FE05FF2675} C:\Windows\System32\fcon.dll [270336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2690F332-B849-4BEC-8C6A-EC72EC2A7125} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing => {99EFDAD1-0F11-4A6B-A702-4E1C37D1A3EF} C:\Windows\System32\fcon.dll [270336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {8CA4753A-1356-467C-8DE9-3958E2B7746B} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting => {BBFCD054-8AAC-45DE-A1EB-7B246C9028AF} C:\Windows\System32\fcon.dll [270336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {DF9A4185-EB3C-48FE-A92F-022F91AC89FE} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache => {E07647F7-AED2-48D9-9720-939BC24A8A3C} C:\Windows\System32\wosc.dll [339968 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {60D22550-46B3-402F-82CB-DA89C60FBD94} - System32\Tasks\Microsoft\Windows\Input\LocalUserSyncDataAvailable => {8E7C2AFB-72B9-415C-9AC2-5037693309B7} C:\Windows\System32\InputCloudStore.dll [172032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CF0D8384-B265-4D0E-9849-1257832F2589} - System32\Tasks\Microsoft\Windows\Input\MouseSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [172032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A6F436AC-A3CF-43E4-8DC5-988458E74A98} - System32\Tasks\Microsoft\Windows\Input\PenSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [172032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {7E2E6BD6-5E59-447D-897F-007E0CDCB6E5} - System32\Tasks\Microsoft\Windows\Input\TouchpadSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [172032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {7D65898F-478F-4125-81BB-289CD5A83D3A} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates => {A558C6A5-B42B-4C98-B610-BF9559143139} C:\Windows\System32\InstallServiceTasks.dll [311296 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {7C815596-2A20-4B6C-BF4C-8B871FAFDB4A} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser => {DDAFAEA2-8842-4E96-BADE-D44A8D676FDB} C:\Windows\System32\InstallServiceTasks.dll [311296 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D028B052-EEB4-45A2-8D01-FC87E3AFCB47} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry => {F3A219C3-2698-4CBF-9C07-037EDB8E72E6} C:\Windows\System32\InstallServiceTasks.dll [311296 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {468C3927-66F4-4590-A9CE-A26F06D62A30} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates => {0DC331EE-8438-49D5-A721-E10B937CE459} C:\Windows\System32\InstallServiceTasks.dll [311296 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CA0CB31A-8BF6-4982-B41E-B191D36B2B5B} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates => {D5A04D91-6FE6-4FE4-A98A-FEB4500C5AF7} C:\Windows\System32\InstallServiceTasks.dll [311296 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C206951E-6651-4D9F-98A2-2A238CB3F331} - System32\Tasks\Microsoft\Windows\International\Synchronize Language Settings => {10D62541-90D0-42FE-848C-0DBC1AC42EDA} C:\Windows\System32\CoreGlobConfig.dll [245200 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {EB854688-CFFC-4303-9CE1-A9E90D2D8C57} - System32\Tasks\Microsoft\Windows\Kernel\La57Cleanup => C:\Windows\system32\la57setup.exe [36864 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {84CCE6D4-C402-4CBA-8577-8FF2CDC7425E} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [225280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2DAF43B0-84C5-4EC6-BB68-AFA39B7DF7A5} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources => {D0582E3B-3126-4CAA-9155-AC37C912A489} C:\Windows\System32\LanguageOverlayServer.dll [516096 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {06A6E34F-A7A6-47A5-8180-E51A27B60DD7} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [225280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {3140FA40-DD51-46B7-82E9-99DE4597DE57} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange => {77646A68-AD14-4D53-897D-7BE4DDE5F929} C:\Windows\System32\TempSignedLicenseExchangeTask.dll [94208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C885B7DB-DB6B-45F6-8EA1-F8B919E23D1C} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [98304 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {5538125C-5362-4EF1-BC18-095650827104} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {44DC8AE1-ACAD-4AB1-A8D6-6408DEF11E05} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\Windows\system32\WinSATAPI.dll [376832 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0E50D526-4FA2-40E4-A304-CE6B5A3AD191} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [212992 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {9DF3B8D0-08D3-4972-8CC8-FAA4AE068BBE} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [212992 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {BDBAB64A-B17B-4E55-B1D8-C597A0A535DD} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\Windows\system32\ProvTool.exe [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2D1BC790-57BA-4978-915D-BBF53CE5142D} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\Windows\system32\ProvTool.exe [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A113AD26-AA99-4C14-9101-6C53FDBA2241} - System32\Tasks\Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup => C:\Windows\system32\MdmDiagnosticsTool.exe [90112 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {E4A78F65-154B-40FD-9114-30A36C7716DB} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Retry => C:\Windows\system32\ProvTool.exe [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C3741A89-CC64-460D-B882-7C0498D3DA31} - System32\Tasks\Microsoft\Windows\Management\Provisioning\RunOnReboot => C:\Windows\system32\ProvTool.exe [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {05A83F2F-7E1E-466D-B62E-202755390BAC} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask => {9885AEF2-BD9F-41E0-B15E-B3141395E803} C:\Windows\System32\mapstoasttask.dll [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C3ABA878-A9BC-46DB-B2A7-23ABF3EE9226} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask => {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} C:\Windows\System32\mapsupdatetask.dll [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {AA750CBB-6455-48F1-9A13-EAF044E40992} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\Windows\System32\MemoryDiagnostic.dll [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {04BBF09E-C980-463F-BDD9-FDD053BFD2A7} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\Windows\System32\MemoryDiagnostic.dll [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D856BB69-20F9-4D7C-B0D3-D2DDF13A811B} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\Windows\system32\lpremove.exe [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A74151E1-B22E-46C4-9AAE-A794E2F88FFF} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\Windows\System32\PlaySndSrv.dll [143360 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {E9546F42-3753-479C-B28C-F204E711EF2B} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo => C:\Windows\system32\gatherNetworkInfo.vbs [90704 2021-06-05] (Microsoft Windows -> )
Task: {71CE2E44-ED6E-477B-AE0C-BEE97E639701} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\Windows\System32\WiFiTask.exe [180560 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {DB9644CD-A17E-47CE-A838-795F8BAB9430} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\Windows\system32\SecureBootEncodeUEFI.exe [102400 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C0FFE96A-0196-423B-8A20-3B2189D01043} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [339968 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {1FBE8CFE-DF68-4983-9FFD-5183E98F866B} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [339968 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {61EA5C31-0866-40B6-A3C8-2568A1B70874} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-B242-4FA8-8C25-CAF695B88209} C:\Windows\System32\pnppolicy.dll [106496 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {05A89EF0-5144-4A59-95EF-5E42769E81DA} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6A1F-47B9-BD52-1D5F95D49C1B} C:\Windows\System32\pnpui.dll [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2C3EC2F3-7293-4C23-8007-7F497E22C5CB} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [368640 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {547B9D14-956B-453E-B2C8-89630A7A67D4} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927EA2AF-1C54-43D5-825E-0074CE028EEE} C:\Windows\System32\energytask.dll [45056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {5C6333B9-3570-4A09-B065-A7BA96FCD1C4} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\Windows\system32\eduprintprov.exe [122880 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {1252A84C-8F10-40E8-A3DB-1C30B0D37B16} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\Windows\System32\PrinterCleanupTask.dll [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {774B31A1-AAFA-4A36-9935-7C3D49A7B563} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => C:\Windows\system32\sc.exe [94208 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> start pushtoinstall login
Task: {05B2CEA7-7A63-46CE-9D8D-46A3B9366E2C} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => C:\Windows\system32\sc.exe [94208 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> start pushtoinstall registration
Task: {CD49789B-BF11-4E57-93F7-17EEF5B1BCBD} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {C463A0FC-794F-4FDF-9201-01938CEACAFA} C:\Windows\system32\rasmbmgr.dll [86016 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {7F183FCC-C8A6-440E-939D-D5F456D685A8} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047} C:\Windows\System32\ReAgentTask.dll [32768 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {5DB72C4B-BF4C-44A5-AAC0-4AFAB77B367A} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {CA767AA8-9157-4604-B64B-40747123D5F2} C:\Windows\System32\regidle.dll [36864 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2B938996-57F9-4E14-A352-4A43E28734E0} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [159744 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {B35023B8-8AE8-4AEC-8C04-2CEC17DB8217} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent => {61f77d5e-afe9-400b-a5e6-e9e80fc8e601} C:\Windows\System32\RDXTaskFactory.dll [430080 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {E13942E1-874B-4D6F-A9E6-B539DA6624DC} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => {752073A1-23F2-4396-85F0-8FDB879ED0ED} C:\Windows\servicing\TrustedInstaller.exe [214352 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0215E960-8F4C-4561-9CD5-0D9815FEF252} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
Task: {987C3355-C619-43ED-BAF0-5FB18C53C5CA} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask => {990A9F8F-301F-45F7-8D0E-68C5952DBA43} C:\Windows\system32\shell32.dll [8199464 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CF24FB29-BD8F-4A43-9D3C-80CFD0FBDB17} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [1253432 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0FE75880-0F39-4AEC-8588-DB793E1C314C} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask => {C844C79D-AED8-4DCE-AB25-4D359BED84F8} C:\Windows\System32\WpcRefreshTask.dll [1101824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {B38FCC52-5CD0-4BE2-9E70-9A78B5662E0A} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\Windows\System32\srchadmin.dll [274432 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {F21E75C8-2470-408B-90B9-0C16A9649589} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\Windows\System32\Themes.SsfDownload.ScheduledTask.dll [200704 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {7868A75D-3111-4D70-8882-CF0799C5C8E4} - System32\Tasks\Microsoft\Windows\Shell\UpdateUserPictureTask => {09C5DD34-009D-40FA-BCB9-0165AD0C15D4} C:\Windows\System32\Windows.UI.Immersive.dll [1396736 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {02DBA59F-E8B9-4268-9EB2-59C6DF310188} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [610304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {35F038FD-DC02-4D68-B9D4-6702C33CD8E2} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [610304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {3213B8C6-A9E0-424B-95EC-276526E2D9E5} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [610304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {85F336BE-84DA-49A6-83CF-B33DF9FAF1CF} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [208896 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {C144444D-4DD2-474B-A780-6E4809BB2DA8} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\Windows\system32\spaceman.exe [103776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {F160B865-EF84-4463-8C54-6689028291AD} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [200704 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0F5CA314-FD39-4E3A-B004-2B2DCADA3744} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {56638DE8-D0E8-47D9-8CD9-B2A0457560F1} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization => {5C9AB547-345D-4175-9AF6-65133463A100} C:\Windows\System32\TieringEngineService.exe [344064 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A3201FBE-ABD5-4414-A61E-66423A3B1512} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\Windows\system32\defrag.exe [245760 2023-12-17] (Microsoft Windows -> Microsoft Corp.)
Task: {671668AD-D1B2-4DBF-B411-72074C558BC6} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [206176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2EBB0142-3E32-4398-8841-5F1180E50C39} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [206176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {48F15A51-AD2C-4EAE-B362-19FEB2694A12} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\Windows\system32\sysmain.dll [1019904 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {97A5963E-D090-4DE2-AAF2-C0BCA293631D} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\Windows\system32\sysmain.dll [1019904 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {96970532-E9E1-45CB-91CF-4F05B7B42B4C} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync => {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} C:\Windows\system32\sysmain.dll [1019904 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {04B561A2-98A4-490F-977E-F27B1E1B16F5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> sysmain.dll,PfSvWsSwapAssessmentTask
Task: {73AB9FC8-E82C-4CDB-B67B-39300E44D201} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {49399589-1137-415F-9E94-BE3CAA3BF9E5} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855FEC53-D2E4-4999-9E87-3414E9CF0FF4} C:\Windows\system32\wdc.dll [786432 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {DB844DCF-18D7-4364-A7A3-A9B1DEFBA952} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} C:\Windows\system32\MsCtfMonitor.dll [118784 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {DFC87E99-BF9B-40A8-8BE8-61192412DBC5} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\Windows\system32\TimeSyncTask.dll [40960 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {CC75EC31-F3E4-4F10-8279-0ECC1C1C37CD} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => C:\Windows\system32\sc.exe [94208 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> start w32time task_started
Task: {BB84BF9C-E5E6-4326-97B9-5E51EBEDF188} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [71680 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {33C1C63A-999F-424B-8769-66192935339B} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [339968 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {B46C3FDA-1C2C-4342-8CE7-48B451ACD573} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [339968 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {EEC49C91-BCB0-4E42-BEA6-CB620E01EB5F} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\Windows\System32\UNP\UpdateNotificationMgr.exe [370000 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {DC0F7C1C-AE1E-411D-AB2B-E5E44648DAED} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Report policies => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {BA8A6C1F-EDE0-4712-A7B7-981BDB32FDBB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {13C4FED4-4C0C-4313-837F-65D82FD6AFA9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {450B19C6-096C-4451-93CC-B27FC5B80CE1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {1428C28F-94C8-401A-8A5A-368DC123FBAB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {BEE266F8-38FD-4F5B-AC35-59EDE5E4946C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6FD64795-82E9-4AD7-A78A-9139E3AE250B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Start Oobe Expedite Work => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {60148483-8DFB-4CDF-8263-DEDC4C64B0F1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\StartOobeAppsScan => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {F4358B51-BEE8-45A8-92DC-CBB4F2E23812} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateModelTask => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {170AFDEB-7940-4B0F-9B75-DCF0899CBB18} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\Windows\system32\MusNotification.exe [782336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0BE78CF5-90A8-4B60-8B81-5442920B832A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UUS Failover Task => C:\Windows\system32\usoclient.exe [1806336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A12F8804-EE1F-4EBF-AAB1-235A9C7845EF} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => C:\Windows\system32\sc.exe [94208 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> config upnphost start= auto
Task: {0F31C967-98D1-4540-952F-0FF655B328D9} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications => {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} C:\Windows\System32\UsbTask.dll [94208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2F967308-C6C6-4A59-A2CE-D32A155D118B} - System32\Tasks\Microsoft\Windows\User Profile Service\HiveUploadTask => {BA677074-762C-444B-94C8-8C83F93F6605} C:\Windows\system32\profsvc.dll [610304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {193ABEC5-B259-486C-A860-86DD22C5C58C} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} C:\Windows\system32\WaaSMedicPS.dll [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {193ABEC5-B259-486C-A860-86DD22C5C58C} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} C:\Windows\System32\WaaSMedicSvc.dll [462848 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {71A87334-33FB-4DFE-9EF6-BD2F14EE0845} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} C:\Windows\system32\WaaSMedicPS.dll [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {71A87334-33FB-4DFE-9EF6-BD2F14EE0845} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} C:\Windows\System32\WaaSMedicSvc.dll [462848 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2BCEA892-B167-4B00-9723-BAD92B089F65} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [180560 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {65BDF6F5-C21D-48A0-B348-55233C383652} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} C:\Windows\System32\wdi.dll [114688 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {B914BB14-2280-4A37-9ACC-8A0EAE0FAB05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E64E954A-B8D6-435B-9BEF-28C782A9FE32} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8B7616A5-9710-4219-9EDB-63E120C6D901} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {64940912-56FF-4B5F-BACB-DAE6F4034685} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0AD4D43D-7F78-4186-9C53-245DA0163594} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [255360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {8C9CF13B-AFAC-4125-8F24-CE9A2DFEC25B} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => C:\Windows\system32\rundll32.exe [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation) -> bfe.dll,BfeOnServiceStartTypeChange
Task: {E0B5714A-570B-49B2-BB85-8ED35EF4787E} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [94208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {DAB9341F-981A-4906-AA70-45AA23F3F00A} - System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader => {B210D694-C8DF-490D-9576-9E20CDBC20BD} C:\Windows\System32\mscms.dll [765816 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6249818C-7F9E-492F-ACBC-4395274A2C58} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\Windows\system32\sc.exe [94208 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> start wuauserv
Task: {BBEADE12-E718-4CB4-A46C-A037B48F4E85} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358B920-0AC7-461F-98F4-58E32CD89148} C:\Windows\system32\wininet.dll [5261416 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {E1C0D8FC-17BD-46F0-965D-1B68D09C32F2} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync => {B0D2B535-12E1-439F-86B3-BADA289510F0} C:\Windows\System32\WiFiCloudStore.dll [372736 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Task: {DA462DBF-443A-480C-BA8B-775A65852F7A} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\Windows\system32\WofTasks.dll [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {9AA44D39-EF62-41EA-BA1D-BCED691B2A24} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\Windows\system32\WofTasks.dll [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6A4C50E8-305D-48F2-A167-77B38E7815C5} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97D47D56-3777-49FB-8E8F-90D7E30E1A1E} C:\Windows\System32\WorkFoldersShell.dll [249856 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {D9151E65-F64F-41E6-90FB-98CBE0AD960C} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} C:\Windows\System32\WorkFoldersShell.dll [249856 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {0CDD476C-56D8-44B3-AB66-42517E79D03A} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [450560 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {1FB8D107-6CE7-4739-B4A4-8C32E3746FCB} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {A6A4F9A6-0EEB-4D9C-9BC6-D9BF47C16897} - System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check => C:\Windows\System32\dsregcmd.exe [450560 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {79183EAE-A85B-4571-B875-A73CBFC77835} - System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask => C:\Windows\System32\WiFiTask.exe [180560 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Task: {BD3F57D1-AE70-49FA-8052-7794D705534C} - System32\Tasks\Microsoft\Windows\WwanSvc\OobeDiscovery => {C93CF9D5-031B-4AAA-AB0B-EF802347B381} C:\Windows\System32\MBMediaManager.dll [606208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {2560D36F-2BBE-411C-A98B-724D04DBC11F} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [57344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Task: {9C1CB19C-22C2-478A-938E-DAFC9E87EA5B} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2022-11-22] () [File not signed]
Task: {EC6F19A7-60B1-409D-BE3A-3A333EAC6E73} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2890305830-4224058196-3671865366-1001 => C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {106A1BE4-C2F9-40F1-B57F-F81012344097} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2890305830-4224058196-3671865366-500 => C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {C79811C8-06EA-4F1A-8B8F-71ED938CA069} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2890305830-4224058196-3671865366-1001 => C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {BFE390D5-344C-4790-B233-813A13E6BB57} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2890305830-4224058196-3671865366-500 => C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E32025CE-FAC9-4C56-A522-D374AF01B2FE} - System32\Tasks\Opera scheduled Autoupdate 1706132513 => C:\Users\user\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-18] (Opera Norway AS -> Opera Software)
Task: {6D43C403-6B0E-4D23-A1A9-47B83E2592CE} - System32\Tasks\Opera scheduled Autoupdate 1706132879 => C:\op\launcher.exe [2350496 2024-01-18] (Opera Norway AS -> Opera Software) <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
 
==================== Internet (All) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Winsock: Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [67632 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [72192 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [72192 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 04 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 05 C:\Windows\SysWOW64\winrnr.dll [44432 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 06 C:\Windows\SysWOW64\wshbth.dll [51712 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 07 C:\Windows\SysWOW64\nlansp_c.dll [83456 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [318800 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [103648 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [110592 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [110592 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 04 C:\Windows\System32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 05 C:\Windows\System32\winrnr.dll [82992 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 06 C:\Windows\system32\wshbth.dll [86016 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 07 C:\Windows\system32\nlansp_c.dll [126976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [430080 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 62.179.1.61 62.179.1.63
Tcpip\..\Interfaces\{1030be26-5c84-4953-bc91-a42277a65a1c}: [DhcpNameServer] 62.179.1.61 62.179.1.63
Tcpip\..\Interfaces\{1030be26-5c84-4953-bc91-a42277a65a1c}: [DhcpDomain] chello.pl
Tcpip\..\Interfaces\{596604d6-82d2-4fb3-8a60-50ef2103ed38}: [DhcpNameServer] 62.179.1.61 62.179.1.63
Tcpip\..\Interfaces\{596604d6-82d2-4fb3-8a60-50ef2103ed38}: [DhcpDomain] chello.pl
 
Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-27]
 
Chrome: 
=======
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2024-01-26]
CHR DownloadDir: C:\Users\user\Desktop
CHR Extension: (Dokumenty Google offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-08]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-08]
StartMenuInternet: Google Chrome - "C:\Program Files\Google\Chrome\Application\chrome.exe"
 
Opera: 
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2890305830-4224058196-3671865366-1001) OperaStable - "C:\op\Launcher.exe"
 
Brave: 
=======
BRA Profile: C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-01-27]
BRA DownloadDir: C:\Users\user\Desktop
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-01-27]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-01-27]
BRA Extension: (Brave NTP background images) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-12-17]
BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry Przeciwko Alertom o Adblocku (plaintext))) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\beeceepafhbchnbfdkfalfipoancnjkm [2023-12-17]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-01-27]
BRA Extension: (Wallet Data Files Updater) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-22]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-01-27]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2024-01-14]
BRA Extension: (Brave Ads Resources) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\feeklcgpaolphdiamjaolkkcpbeihkbh [2024-01-27]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-12-17]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-12-17]
BRA Extension: (Brave NTP sponsored images) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2024-01-27]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-01-27]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-01-27]
BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka (plaintext))) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\ngcohbdfildjnmfnicgdipopmlhdcokg [2024-01-27]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\user\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-12-17]
StartMenuInternet: Brave - "C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe"
 
==================== Services (All) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [177392 2023-09-13] (RealDefense, LLC -> SUPERAntiSpyware.com)
S3 AarSvc; C:\Windows\System32\AarSvc.dll [704512 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 AarSvc; C:\Windows\SysWOW64\AarSvc.dll [528896 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 AarSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 AarSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 AJRouter; C:\Windows\System32\AJRouter.dll [45056 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 ALG; C:\Windows\System32\alg.exe [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\u0371182.inf_amd64_e046f8d87ec91fad\B371034\atiesrxx.exe [537392 2021-09-07] (Advanced Micro Devices Inc. -> AMD)
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 Appinfo; C:\Windows\System32\appinfo.dll [294912 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [708608 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [5996544 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [479232 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [2011136 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 autotimesvc; C:\Windows\System32\autotimesvc.dll [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [176128 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BcastDVRUserService; C:\Windows\System32\BcastDVRUserService.dll [1527808 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BcastDVRUserService_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BcastDVRUserService_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BDESVC; C:\Windows\System32\bdesvc.dll [581632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 BFE; C:\Windows\System32\bfe.dll [925696 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 BITS; C:\Windows\System32\qmgr.dll [1662976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BluetoothUserService; C:\Windows\System32\Microsoft.Bluetooth.UserService.dll [512000 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BluetoothUserService_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BluetoothUserService_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-12-17] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-12-17] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.153\brave_vpn_helper.exe [2811416 2024-01-24] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.153\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10939928 2024-01-24] (Brave Software, Inc. -> Brave Software, Inc.)
R2 BrokerInfrastructure; C:\Windows\System32\psmsrv.dll [290816 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 BTAGService; C:\Windows\System32\BTAGService.dll [1089536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BTAGService; C:\Windows\SysWOW64\BTAGService.dll [817152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 BthAvctpSvc; C:\Windows\System32\BthAvctpSvc.dll [397312 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 bthserv; C:\Windows\system32\bthserv.dll [286720 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 camsvc; C:\Windows\system32\CapabilityAccessManager.dll [761856 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 CaptureService; C:\Windows\System32\CaptureService.dll [188416 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 CaptureService_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 CaptureService_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 cbdhsvc; C:\Windows\System32\cbdhsvc.dll [1093632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 cbdhsvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 cbdhsvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 CDPSvc; C:\Windows\System32\CDPSvc.dll [692224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 CDPUserSvc; C:\Windows\System32\CDPUserSvc.dll [561152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 CDPUserSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 CDPUserSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 CertPropSvc; C:\Windows\System32\certprop.dll [241664 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 ClipSVC; C:\Windows\System32\ClipSVC.dll [1216208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 COMSysApp; C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [45368 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 COMSysApp; C:\Windows\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [19776 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 ConsentUxUserSvc; C:\Windows\System32\ConsentUxClient.dll [212992 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 ConsentUxUserSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ConsentUxUserSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [1265784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [826392 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc; C:\Windows\system32\CredentialEnrollmentManager.exe [455936 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_5ea26; C:\Windows\system32\CredentialEnrollmentManager.exe [455936 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [126976 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [1421312 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 dcsvc; C:\Windows\system32\dcsvc.dll [835584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 defragsvc; C:\Windows\System32\defragsvc.dll [569344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\Windows\System32\deviceaccess.dll [269984 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\Windows\SysWOW64\deviceaccess.dll [194712 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 DeviceAssociationService; C:\Windows\system32\das.dll [606208 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [159744 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 DevicePickerUserSvc; C:\Windows\System32\Windows.Devices.Picker.dll [532480 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DevicePickerUserSvc; C:\Windows\SysWOW64\Windows.Devices.Picker.dll [367616 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DevicePickerUserSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevicePickerUserSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevicesFlowUserSvc; C:\Windows\System32\DevicesFlowBroker.dll [679936 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DevicesFlowUserSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevicesFlowUserSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevQueryBroker; C:\Windows\system32\DevQueryBroker.dll [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [430128 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [336944 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 diagsvc; C:\Windows\system32\DiagSvc.dll [241664 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [4419584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\Windows\System32\DispBroker.Desktop.dll [434176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 DisplayEnhancementService; C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1294336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [1290240 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [939520 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 dmwappushservice; C:\Windows\system32\dmwappushsvc.dll [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [451776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 DoSvc; C:\Windows\system32\dosvc.dll [1626112 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 dot3svc; C:\Windows\System32\dot3svc.dll [409600 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 DPS; C:\Windows\system32\dps.dll [180224 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [311296 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 DsSvc; C:\Windows\System32\DsSvc.dll [180224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [243432 2022-07-08] (DTS, Inc. -> DTS Inc.)
R2 DusmSvc; C:\Windows\System32\dusmsvc.dll [430080 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 EapHost; C:\Windows\System32\eapsvc.dll [122880 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 EFS; C:\Windows\system32\efssvc.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [188416 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [638976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 EventLog; C:\Windows\System32\wevtsvc.dll [1269760 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 EventSystem; C:\Windows\system32\es.dll [442368 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 EventSystem; C:\Windows\SysWOW64\es.dll [336896 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Fax; C:\Windows\system32\fxssvc.exe [679936 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 fdPHost; C:\Windows\system32\fdPHost.dll [40960 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 FDResPub; C:\Windows\system32\fdrespub.dll [57344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 fhsvc; C:\Windows\system32\fhsvc.dll [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 FontCache; C:\Windows\system32\FntCache.dll [1368064 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S4 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [45992 2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
S3 FrameServer; C:\Windows\system32\FrameServer.dll [1171456 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 FrameServerMonitor; C:\Windows\system32\FrameServerMonitor.dll [319488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\120.0.6099.225\elevation_service.exe [1773344 2024-01-12] (Google LLC -> Google LLC)
S2 gpsvc; C:\Windows\System32\gpsvc.dll [1351680 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 GraphicsPerfSvc; C:\Windows\System32\GraphicsPerfSvc.dll [278528 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2024-01-08] (Google LLC -> Google LLC)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2024-01-08] (Google LLC -> Google LLC)
R3 hidserv; C:\Windows\system32\hidserv.dll [57344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [30208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 HvHost; C:\Windows\System32\hvhostsvc.dll [86344 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [245760 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 IISExpressSVC; C:\Program Files (x86)\Lansweeper\IISExpress\IISexpressSVC.exe [141992 2024-01-10] (Lansweeper -> Hemoco bvba)
S3 IKEEXT; C:\Windows\System32\ikeext.dll [1511424 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 InstallService; C:\Windows\system32\InstallService.dll [2748416 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 InstallService; C:\Windows\SysWOW64\InstallService.dll [1993216 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [835584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 IpxlatCfgSvc; C:\Windows\System32\IpxlatCfg.dll [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 KeyIso; C:\Windows\system32\keyiso.dll [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [67584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [438272 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [331776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [327680 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 LansweeperLocalDbService; C:\Program Files (x86)\Lansweeper\Service\LansweeperLocalDBService.exe [62752 2024-01-10] (Lansweeper NV -> Lansweeper)
S2 lansweeperservice; C:\Program Files (x86)\Lansweeper\Service\Lansweeperservice.exe [175400 2024-01-10] (Lansweeper NV -> Lansweeper)
S3 lfsvc; C:\Windows\System32\lfsvc.dll [69632 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [77824 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [327680 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 lmhosts; C:\Windows\System32\lmhsvc.dll [58200 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 LSM; C:\Windows\System32\lsm.dll [868352 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 LxpSvc; C:\Windows\System32\LanguageOverlayServer.dll [516096 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9410296 2024-01-20] (Malwarebytes Inc. -> Malwarebytes)
S3 McpManagementService; C:\Windows\System32\McpManagementService.dll [323584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 MessagingService; C:\Windows\System32\MessagingService.dll [106496 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 MessagingService_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 MessagingService_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\Windows\System32\MixedRealityRuntime.dll [165616 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\Windows\SysWOW64\MixedRealityRuntime.dll [119776 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 mpssvc; C:\Windows\system32\mpssvc.dll [1171456 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 MSDTC; C:\Windows\System32\msdtc.exe [204800 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [172032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 msiserver; C:\Windows\system32\msiexec.exe /V [180224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe /V [145408 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NaturalAuthentication; C:\Windows\System32\NaturalAuth.dll [466944 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NcaSvc; C:\Windows\System32\ncasvc.dll [188416 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 NcbService; C:\Windows\System32\ncbservice.dll [352256 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Netlogon; C:\Windows\system32\netlogon.dll [901120 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [736768 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Netman; C:\Windows\System32\netman.dll [282624 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 netprofm; C:\Windows\System32\netprofmsvc.dll [1638400 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NetSetupSvc; C:\Windows\System32\NetSetupSvc.dll [352256 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [132520 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
S3 NgcCtnrSvc; C:\Windows\System32\NgcCtnrSvc.dll [753664 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NgcSvc; C:\Windows\system32\ngcsvc.dll [983040 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NlaSvc; C:\Windows\System32\netprofmsvc.dll [1638400 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NPSMSvc; C:\Windows\System32\npsm.dll [233472 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NPSMSvc; C:\Windows\SysWOW64\npsm.dll [163328 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 NPSMSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 NPSMSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 nsi; C:\Windows\system32\nsisvc.dll [57344 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvacig.inf_amd64_d08bf1f458ca2ea0\Display.NvContainer\NVDisplay.Container.exe [1274992 2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [389120 2021-06-04] (Microsoft Windows -> Microsoft Corporation)
R2 OneSyncSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 OneSyncSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [372736 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 p2psvc; C:\Windows\system32\p2psvc.dll [454656 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 P9RdrService; C:\Windows\system32\p9rdrservice.dll [122880 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 P9RdrService_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 P9RdrService_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [958768 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S3 PenService; C:\Windows\System32\PenService.dll [323584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PenService_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 PenService_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 perceptionsimulation; C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe [237568 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [22016 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 PhoneSvc; C:\Windows\System32\PhoneService.dll [1101824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [237568 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PimIndexMaintenanceSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 PimIndexMaintenanceSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 pla; C:\Windows\system32\pla.dll [1544192 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 pla; C:\Windows\SysWOW64\pla.dll [1543680 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [159744 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [372736 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [483328 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Power; C:\Windows\system32\umpo.dll [208896 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [3940352 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PrintWorkflowUserSvc; C:\Windows\System32\PrintWorkflowService.dll [487424 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PrintWorkflowUserSvc; C:\Windows\SysWOW64\PrintWorkflowService.dll [374784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PrintWorkflowUserSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 PrintWorkflowUserSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ProfSvc; C:\Windows\system32\profsvc.dll [610304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PushToInstall; C:\Windows\system32\PushToInstall.dll [376832 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVE; C:\Windows\system32\qwave.dll [307200 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVE; C:\Windows\SysWOW64\qwave.dll [236032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 RasAuto; C:\Windows\System32\rasauto.dll [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 RasMan; C:\Windows\System32\rasmans.dll [1073152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [520192 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [409600 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [188416 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 RetailDemo; C:\Windows\system32\RDXService.dll [774144 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 RmSvc; C:\Windows\System32\RMapi.dll [192512 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [106496 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 RpcLocator; C:\Windows\system32\locator.exe [28672 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 RpcSs; C:\Windows\system32\rpcss.dll [1421312 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 RtkAudioUniversalService; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c51a65fb5ec70f9d\RtkAudUService64.exe [1249848 2021-03-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SamSs; C:\Windows\system32\lsass.exe [84040 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SCardSvr; C:\Windows\System32\SCardSvr.dll [270336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [212992 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Schedule; C:\Windows\system32\schedsvc.dll [835584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [241664 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [204800 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 seclogon; C:\Windows\system32\seclogon.dll [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 SecurityHealthService; C:\Windows\system32\SecurityHealthService.exe [141920 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SEMgrSvc; C:\Windows\system32\SEMgrSvc.dll [1306624 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 SENS; C:\Windows\System32\sens.dll [98304 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1187840 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 SensorService; C:\Windows\system32\SensorService.dll [659456 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [196608 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 SessionEnv; C:\Windows\system32\sessenv.dll [577536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [448512 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 SgrmBroker; C:\Windows\system32\SgrmBroker.exe [409456 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [662536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SharedRealitySvc; C:\Windows\System32\SharedRealitySvc.dll [331776 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [278528 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [212480 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 shpamsvc; C:\Windows\system32\Windows.SharedPC.AccountManager.dll [253952 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 smphost; C:\Windows\System32\smphost.dll [66920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [46432 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 SmsRouter; C:\Windows\system32\SmsRouterSvc.dll [618496 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S3 SNMPTrap; C:\Windows\System32\snmptrap.exe [36864 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 spectrum; C:\Windows\system32\spectrum.exe [757760 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
R2 Spooler; C:\Windows\System32\spoolsv.exe [884736 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 sppsvc; C:\Windows\system32\sppsvc.exe [4720272 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [286720 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 SstpSvc; C:\Windows\system32\sstpsvc.dll [180224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 StateRepository; C:\Windows\system32\windows.staterepository.dll [6773744 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [5681480 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\steamservice.exe [2663272 2024-01-13] (Valve Corp. -> Valve Corporation)
S3 StiSvc; C:\Windows\System32\wiaservc.dll [819200 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 StorSvc; C:\Windows\system32\storsvc.dll [1089536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 svsvc; C:\Windows\system32\svsvc.dll [32768 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 swprv; C:\Windows\System32\swprv.dll [475136 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 SysMain; C:\Windows\system32\sysmain.dll [1019904 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
R2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [253952 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 TabletInputService; C:\Windows\System32\TabSvc.dll [262144 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [335872 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [253440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 TermService; C:\Windows\System32\termsrv.dll [1261568 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Themes; C:\Windows\system32\themeservice.dll [110592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 TieringEngineService; C:\Windows\system32\TieringEngineService.exe [344064 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 TimeBrokerSvc; C:\Windows\System32\TimeBrokerServer.dll [184320 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 TokenBroker; C:\Windows\System32\TokenBroker.dll [1785856 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 TokenBroker; C:\Windows\SysWOW64\TokenBroker.dll [1353728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 TrkWks; C:\Windows\System32\trkwks.dll [135168 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 TroubleshootingSvc; C:\Windows\system32\MitigationClient.dll [569344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [214352 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 tzautoupdate; C:\Windows\system32\tzautoupdate.dll [163840 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 tzautoupdate; C:\Windows\SysWOW64\tzautoupdate.dll [115200 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 UdkUserSvc; C:\Windows\System32\windowsudkservices.shellcommon.dll [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 UdkUserSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 UdkUserSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 UmRdpService; C:\Windows\System32\umrdp.dll [434176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1122304 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [933888 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UnistoreSvc_5ea26; C:\Windows\System32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 UnistoreSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 upnphost; C:\Windows\System32\upnphost.dll [495616 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [340480 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1585152 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UserDataSvc_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 UserDataSvc_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UserManager; C:\Windows\System32\usermgr.dll [1540096 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 UsoSvc; C:\Windows\system32\usosvc.dll [94208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 VacSvc; C:\Windows\System32\vac.dll [414616 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 VaultSvc; C:\Windows\System32\vaultsvc.dll [380928 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vds; C:\Windows\System32\vds.exe [745472 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicguestinterface; C:\Windows\System32\icsvc.dll [316776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicheartbeat; C:\Windows\System32\icsvc.dll [316776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmickvpexchange; C:\Windows\System32\icsvc.dll [316776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicrdv; C:\Windows\System32\icsvcext.dll [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicshutdown; C:\Windows\System32\icsvc.dll [316776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmictimesync; C:\Windows\System32\icsvc.dll [316776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\icsvc.dll [316776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicvss; C:\Windows\System32\icsvcvss.dll [349544 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 VSInstallerElevationService; C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe [41520 2024-01-24] (Microsoft Corporation -> Microsoft)
S3 VSS; C:\Windows\system32\vssvc.exe [1466368 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 W32Time; C:\Windows\system32\w32time.dll [544768 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WaaSMedicSvc; C:\Windows\System32\WaaSMedicSvc.dll [462848 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [466944 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WarpJITSvc; C:\Windows\System32\Windows.WARP.JITService.dll [86016 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 wbengine; C:\Windows\system32\wbengine.exe [1593344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [901120 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [1052672 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 wcncsvc; C:\Windows\System32\wcncsvc.dll [487424 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [114688 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [80896 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [114688 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [80896 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WebClient; C:\Windows\System32\webclnt.dll [253952 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [194560 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [249856 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WerSvc; C:\Windows\System32\WerSvc.dll [290816 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WFDSConMgrSvc; C:\Windows\System32\wfdsconmgrsvc.dll [704512 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [1145944 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [892552 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [245760 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2859008 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2358784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 wisvc; C:\Windows\system32\flightsettings.dll [1137688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 wisvc; C:\Windows\SysWOW64\flightsettings.dll [821712 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 WlanSvc; C:\Windows\System32\wlansvc.dll [2748416 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 wlidsvc; C:\Windows\system32\wlidsvc.dll [2109440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 wlpasvc; C:\Windows\System32\lpasvc.dll [1224704 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WManSvc; C:\Windows\system32\Windows.Management.Service.dll [1347584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [204800 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [946176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [2073960 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WpcMonSvc; C:\Windows\System32\WpcDesktopMonSvc.dll [1929216 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [126976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 WpnService; C:\Windows\system32\WpnService.dll [303104 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S2 WpnUserService; C:\Windows\System32\WpnUserService.dll [106496 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 WpnUserService_5ea26; C:\Windows\system32\svchost.exe [79944 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WpnUserService_5ea26; C:\Windows\SysWOW64\svchost.exe [48568 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 wscsvc; C:\Windows\System32\wscsvc.dll [340224 2023-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [921600 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [690176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 wuauserv; C:\Windows\system32\wuaueng.dll [3596288 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [1490944 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [1294336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1155072 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 XboxGipSvc; C:\Windows\System32\XboxGipSvc.dll [131072 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1388544 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.153\elevation_service.exe" [X]
S2 HPSIService; C:\Windows\system32\HPSIsvc.exe [X]
 
===================== Drivers (All) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [294912 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 3ware; C:\Windows\System32\drivers\3ware.sys [107344 2021-06-05] (Microsoft Windows -> LSI)
R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [836936 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 AcpiDev; C:\Windows\System32\drivers\AcpiDev.sys [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [164168 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [45056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Acx01000; C:\Windows\System32\drivers\Acx01000.sys [700416 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135432 2021-06-05] (Microsoft Windows -> PMC-Sierra)
R1 AFD; C:\Windows\system32\drivers\afd.sys [685440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 afunix; C:\Windows\system32\drivers\afunix.sys [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [31744 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [339968 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 amdacpbus; C:\Windows\System32\DriverStore\FileRepository\amdacpbus.inf_amd64_fc695a6f236b17f1\amdacpbus.sys [5654944 2021-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [46344 2020-03-16] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdi2c; C:\Windows\System32\drivers\amdi2c.sys [67376 2020-11-29] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [243008 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\u0371182.inf_amd64_e046f8d87ec91fad\B371034\amdkmdag.sys [78813520 2021-09-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [251248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [135184 2020-03-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S0 amdsata; C:\Windows\System32\drivers\amdsata.sys [83280 2021-06-05] (Microsoft Windows -> Advanced Micro Devices)
S0 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259384 2021-06-05] (Microsoft Windows -> AMD Technologies Inc.)
S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [26960 2021-06-05] (Microsoft Windows -> Advanced Micro Devices)
S3 AppID; C:\Windows\System32\drivers\appid.sys [237616 2023-12-17] (Microsoft Windows -> Microsoft Windows)
S0 AppleSSD; C:\Windows\System32\drivers\AppleSSD.sys [112440 2021-06-05] (Microsoft Windows -> Apple Inc.)
S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [45056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 arcsas; C:\Windows\System32\drivers\arcsas.sys [131912 2021-06-05] (Microsoft Windows -> PMC-Sierra, Inc.)
S3 AsyncMac; C:\Windows\System32\drivers\asyncmac.sys [57344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 atapi; C:\Windows\System32\drivers\atapi.sys [62832 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [533816 2021-06-05] (Microsoft Windows -> QLogic Corporation)
R1 bam; C:\Windows\System32\drivers\bam.sys [106808 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R1 BasicDisplay; C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_a3f9d7c24b3377b3\BasicDisplay.sys [86016 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R1 BasicRender; C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_125ef86610247b72\BasicRender.sys [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [107864 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [9728 2021-06-05] (Microsoft Windows -> Windows ® Win 7 DDK provider)
R1 Beep; C:\Windows\System32\Drivers\Beep.sys [40960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 bindflt; C:\Windows\system32\drivers\bindflt.sys [177536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [155648 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [507904 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [139264 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [180224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BthLEEnum; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [98304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 BthPan; C:\Windows\System32\drivers\bthpan.sys [155648 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 BTHPORT; C:\Windows\System32\drivers\BTHport.sys [1925120 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 BTHUSB; C:\Windows\System32\drivers\BTHUSB.sys [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 bttflt; C:\Windows\System32\drivers\bttflt.sys [75096 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 CAD; C:\Windows\System32\drivers\CAD.sys [95568 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [126976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 cdrom; C:\Windows\System32\drivers\cdrom.sys [196608 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [319800 2021-06-05] (Microsoft Windows -> Chelsio Communications)
S3 cht4vbd; C:\Windows\System32\drivers\cht4vx64.sys [1853752 2021-06-05] (Microsoft Windows -> Chelsio Communications)
R1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [161120 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 circlass; C:\Windows\System32\drivers\circlass.sys [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [540672 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 CLFS; C:\Windows\System32\drivers\CLFS.sys [447960 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 CNG; C:\Windows\System32\Drivers\cng.sys [782336 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 cnghwassist; C:\Windows\System32\DRIVERS\cnghwassist.sys [71008 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_6657edf28697c405\CompositeBus.sys [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 condrv; C:\Windows\System32\drivers\condrv.sys [86352 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S1 dam; C:\Windows\System32\drivers\dam.sys [132432 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [180224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 disk; C:\Windows\System32\drivers\disk.sys [136544 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [95600 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [51008 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [4642280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 e2kw10x64; C:\Windows\System32\drivers\e2kw10x64.sys [1146464 2020-12-14] (Realtek Semiconductor Corp. -> Realtek)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3440440 2021-06-05] (Microsoft Windows -> Marvell Semiconductor Inc.)
S0 ebdrv0; C:\Windows\System32\drivers\evbd0a.sys [3423032 2021-06-05] (Microsoft Windows -> QLogic Corporation)
R0 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [143672 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [157016 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [49152 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 ExecutionContext; C:\Windows\System32\Drivers\ExecutionContext.sys [61440 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [447872 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [451968 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 fdc; C:\Windows\System32\drivers\fdc.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [86016 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [119112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [476496 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [99688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
U0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [61768 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [869744 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [53576 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_dc3260bbd08046c4\genericusbfn.sys [57344 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [214360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [40960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [520192 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [188416 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [66912 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [86016 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 hidinterrupt; C:\Windows\System32\drivers\hidinterrupt.sys [87400 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [131072 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 HidSpiCx; C:\Windows\System32\drivers\HidSpiCx.sys [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64328 2021-06-05] (Microsoft Windows -> Hewlett-Packard Company)
S3 Hsp; C:\Windows\System32\drivers\Hsp.sys [111968 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [1701352 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 hvcrash; C:\Windows\System32\drivers\hvcrash.sys [69960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 hvservice; C:\Windows\System32\drivers\hvservice.sys [131392 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S3 HwNClx0101; C:\Windows\System32\Drivers\mshwnclx.sys [57344 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [78144 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [57672 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 HyperVideo; C:\Windows\System32\drivers\HyperVideo.sys [74040 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [155648 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 iagpio; C:\Windows\System32\drivers\iagpio.sys [36352 2021-06-05] (Microsoft Windows -> Intel® Corporation)
S3 iai2c; C:\Windows\System32\drivers\iai2c.sys [91136 2021-06-05] (Microsoft Windows -> Intel® Corporation)
S3 iaLPSS2i_GPIO2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [79360 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_GPIO2_BXT_P; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [171520 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2021-06-05] (Microsoft Windows -> Intel Corporation)
S4 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128 2021-06-05] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [113152 2021-06-05] (Microsoft Windows -> Intel Corporation)
S0 iaStorAVC; C:\Windows\System32\drivers\iaStorAVC.sys [884552 2021-06-05] (Microsoft Windows -> Intel Corporation)
S0 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [411976 2021-06-05] (Microsoft Windows -> Intel Corporation)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [558928 2021-06-05] (Microsoft Windows -> Mellanox)
S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 IntcAzAudAddService; C:\Windows\system32\drivers\RTKVHD64.sys [6398952 2021-03-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S0 intelide; C:\Windows\System32\drivers\intelide.sys [54632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [476680 2023-12-17] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 IntelPMT; C:\Windows\System32\drivers\IntelPMT.sys [75272 2023-12-17] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 intelppm; C:\Windows\System32\drivers\intelppm.sys [284032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 iorate; C:\Windows\System32\drivers\iorate.sys [83280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [144744 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [249856 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 IPT; C:\Windows\System32\drivers\ipt.sys [94520 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 isapnp; C:\Windows\System32\drivers\isapnp.sys [53560 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [324992 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 ItSas35i; C:\Windows\System32\drivers\ItSas35i.sys [176952 2021-06-05] (Microsoft Windows -> Avago Technologies)
R3 kbdclass; C:\Windows\System32\drivers\kbdclass.sys [91488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 kdnic; C:\Windows\System32\drivers\kdnic.sys [65864 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [177472 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [210304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 lltdio; C:\Windows\System32\drivers\lltdio.sys [98304 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108880 2021-06-05] (Microsoft Windows -> LSI Corporation)
S0 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [124240 2021-06-05] (Microsoft Windows -> LSI Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [137552 2021-06-05] (Microsoft Windows -> Avago Technologies)
R2 luafv; C:\Windows\system32\drivers\luafv.sys [176128 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 mausbhost; C:\Windows\System32\drivers\mausbhost.sys [561480 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 mausbip; C:\Windows\System32\drivers\mausbip.sys [90440 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223296 2024-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-01-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [425984 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [80696 2021-06-05] (Microsoft Windows -> Avago Technologies)
S0 megasas35i; C:\Windows\System32\drivers\megasas35i.sys [100176 2021-06-05] (Microsoft Windows -> Broadcom Inc)
S0 megasr; C:\Windows\System32\drivers\megasr.sys [575824 2021-06-05] (Microsoft Windows -> LSI Corporation, Inc.)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [94208 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [1131344 2021-06-05] (Microsoft Windows -> Mellanox)
R2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Modem; C:\Windows\System32\drivers\modem.sys [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 monitor; C:\Windows\System32\drivers\monitor.sys [114688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 mouclass; C:\Windows\System32\drivers\mouclass.sys [91488 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 mouhid; C:\Windows\System32\drivers\mouhid.sys [65536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [131400 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 mpi3drvi; C:\Windows\System32\drivers\mpi3drvi.sys [87352 2021-06-05] (Microsoft Windows -> Broadcom Limited)
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [110592 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [196608 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [636272 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [308624 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [155648 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [74056 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 msgpiowin32; C:\Windows\System32\drivers\msgpiowin32.sys [91480 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [45056 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [45056 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [53576 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [65536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [98304 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [49152 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 MsQuic; C:\Windows\System32\drivers\msquic.sys [420328 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [423280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [74040 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [53248 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [49152 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterx64; C:\Windows\system32\DRIVERS\mtkbtfilterx.sys [284496 2022-02-28] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\Windows\System32\drivers\mtkwl6ex.sys [1408472 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R0 Mup; C:\Windows\System32\Drivers\mup.sys [164168 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 mvumis; C:\Windows\System32\drivers\mvumis.sys [63816 2021-06-05] (Microsoft Windows -> Marvell Semiconductor, Inc.)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
R3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [749568 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [146256 2021-06-05] (Microsoft Windows -> Mellanox)
R0 NDIS; C:\Windows\System32\drivers\ndis.sys [1578352 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [163840 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 Ndisuio; C:\Windows\System32\drivers\ndisuio.sys [98304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [53248 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 NdisWan; C:\Windows\System32\drivers\ndiswan.sys [233472 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 ndiswanlegacy; C:\Windows\System32\DRIVERS\ndiswan.sys [233472 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 NDKPerf; C:\Windows\System32\drivers\NDKPerf.sys [79192 2023-12-17] (Microsoft Windows -> )
S3 NDKPing; C:\Windows\System32\drivers\NDKPing.sys [103776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 ndproxy; C:\Windows\System32\DRIVERS\NDProxy.sys [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 Ndu; C:\Windows\System32\drivers\Ndu.sys [163840 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [352256 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 NetBIOS; C:\Windows\System32\drivers\netbios.sys [90440 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [364544 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 netvsc; C:\Windows\System32\drivers\netvsc.sys [337264 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 npcap; C:\Windows\system32\DRIVERS\npcap.sys [69984 2024-01-18] (WDKTestCert Nmap,133147429230506937 -> Insecure.Com LLC.)
S4 npcap_wifi; C:\Windows\system32\DRIVERS\npcap.sys [69984 2024-01-18] (WDKTestCert Nmap,133147429230506937 -> Insecure.Com LLC.)
R1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [120280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [61440 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [73728 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [3192176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 Null; C:\Windows\System32\Drivers\Null.sys [40960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 nvdimm; C:\Windows\System32\drivers\nvdimm.sys [202088 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 NVHDA; C:\Windows\system32\drivers\nvhda64v.sys [144504 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvacig.inf_amd64_d08bf1f458ca2ea0\nvlddmkm.sys [58741280 2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
S0 nvmedisk; C:\Windows\System32\drivers\nvmedisk.sys [83296 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [245512 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S0 nvraid; C:\Windows\System32\drivers\nvraid.sys [150344 2021-06-05] (Microsoft Windows -> NVIDIA Corporation)
S0 nvstor; C:\Windows\System32\drivers\nvstor.sys [166216 2021-06-05] (Microsoft Windows -> NVIDIA Corporation)
S3 P9Rdr; C:\Windows\System32\drivers\p9rdr.sys [136528 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Parport; C:\Windows\System32\drivers\parport.sys [126976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [214360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 pci; C:\Windows\System32\drivers\pci.sys [544816 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 pciide; C:\Windows\System32\drivers\pciide.sys [50536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [152912 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 pcw; C:\Windows\System32\drivers\pcw.sys [95592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 pdc; C:\Windows\System32\drivers\pdc.sys [193880 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [843776 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58704 2021-06-05] (Microsoft Windows -> Avago Technologies)
S0 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [68432 2021-06-05] (Microsoft Windows -> Avago Technologies)
S3 PktMon; C:\Windows\System32\drivers\PktMon.sys [169304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 pmem; C:\Windows\System32\drivers\pmem.sys [181592 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 PNPMEM; C:\Windows\System32\drivers\pnpmem.sys [49152 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 portcfg; C:\Windows\System32\drivers\portcfg.sys [57344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 PptpMiniport; C:\Windows\System32\drivers\raspptp.sys [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 PRM; C:\Windows\System32\DriverStore\FileRepository\prm.inf_amd64_7fc9bb8ba2b73803\PRM.sys [61752 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 Processor; C:\Windows\System32\drivers\processr.sys [255344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [80408 2024-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
R1 Psched; C:\Windows\System32\drivers\pacer.sys [184640 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 Ramdisk; C:\Windows\System32\DRIVERS\ramdisk.sys [71000 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 RasAgileVpn; C:\Windows\System32\drivers\AgileVpn.sys [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 Rasl2tp; C:\Windows\System32\drivers\rasl2tp.sys [147456 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 RasSstp; C:\Windows\System32\drivers\rassstp.sys [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [484672 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [61440 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [192512 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [62848 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [319816 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [2295256 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 ReFSv1; C:\Windows\System32\Drivers\ReFSv1.sys [1013224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [245760 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 rhproxy; C:\Windows\System32\drivers\rhproxy.sys [143360 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 rspndr; C:\Windows\System32\drivers\rspndr.sys [110592 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [700416 2021-06-05] (Microsoft Windows -> Realtek)
S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [53576 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [18160 2023-08-25] (RealDefense, LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [15600 2023-08-25] (RealDefense, LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S0 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [144728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [73728 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 scmbus; C:\Windows\System32\drivers\scmbus.sys [210280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 sdbus; C:\Windows\System32\drivers\sdbus.sys [337240 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [65856 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 sdstor; C:\Windows\System32\drivers\sdstor.sys [132456 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SerCx; C:\Windows\System32\drivers\SerCx.sys [115016 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [200752 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Serenum; C:\Windows\System32\drivers\serenum.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Serial; C:\Windows\System32\drivers\serial.sys [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [53248 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 SgrmAgent; C:\Windows\System32\drivers\SgrmAgent.sys [119112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44872 2021-06-05] (Microsoft Windows -> Silicon Integrated Systems Corp.)
S0 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81736 2021-06-05] (Microsoft Windows -> Silicon Integrated Systems)
S0 SmartSAMD; C:\Windows\System32\drivers\SmartSAMD.sys [209736 2021-06-05] (Microsoft Windows -> Microsemi Corportation)
S3 spaceparser; C:\Windows\System32\drivers\spaceparser.sys [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 spaceport; C:\Windows\System32\drivers\spaceport.sys [857560 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 SpatialGraphFilter; C:\Windows\System32\drivers\SpatialGraphFilter.sys [127304 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 SpbCx; C:\Windows\System32\drivers\SpbCx.sys [119096 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [847872 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [360448 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 stexstor; C:\Windows\System32\drivers\stexstor.sys [31032 2021-06-05] (Microsoft Windows -> Promise Technology, Inc.)
R0 storahci; C:\Windows\System32\drivers\storahci.sys [210272 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 storflt; C:\Windows\System32\drivers\vmstorfl.sys [83304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 stornvme; C:\Windows\System32\drivers\stornvme.sys [238976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [115024 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 storufs; C:\Windows\System32\drivers\storufs.sys [107904 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 storvsc; C:\Windows\System32\drivers\storvsc.sys [82248 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_3bf6c0d173eb26c6\swenum.sys [57672 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S4 SynRMIHID; C:\Windows\System32\drivers\SynRMIHID.sys [65984 2020-05-14] (Synaptics Incorporated -> Synaptics Incorporated)
R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [3220848 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Tcpip6; C:\Windows\System32\drivers\tcpip.sys [3220848 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [151888 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
S3 terminpt; C:\Windows\System32\drivers\terminpt.sys [71000 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 TPM; C:\Windows\System32\drivers\tpm.sys [345424 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [90112 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [65536 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [155648 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 UASPStor; C:\Windows\System32\drivers\uaspstor.sys [111960 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [200704 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [212992 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [65536 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [139264 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 Ucx01000; C:\Windows\System32\drivers\ucx01000.sys [291144 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [81920 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [376832 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 UEFI; C:\Windows\System32\DriverStore\FileRepository\uefi.inf_amd64_6693f32a658a859a\UEFI.sys [75104 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Ufx01000; C:\Windows\System32\drivers\ufx01000.sys [356688 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UfxChipidea; C:\Windows\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_a517b810ee0e44a2\UfxChipidea.sys [135496 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 ufxsynopsys; C:\Windows\System32\drivers\ufxsynopsys.sys [188744 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 umbus; C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_0a89aff902a5c3a9\umbus.sys [90112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 UmPass; C:\Windows\System32\drivers\umpass.sys [45056 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 UrsChipidea; C:\Windows\System32\DriverStore\FileRepository\urschipidea.inf_amd64_4bd4df2779fd9e16\urschipidea.sys [61752 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UrsCx01000; C:\Windows\System32\drivers\urscx01000.sys [106808 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 UrsSynopsys; C:\Windows\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_28522251903b4825\urssynopsys.sys [61752 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 Usb4DeviceRouter; C:\Windows\System32\DriverStore\FileRepository\usb4devicerouter.inf_amd64_d8f35ef90c83032f\Usb4DeviceRouter.sys [877912 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 Usb4HostRouter; C:\Windows\System32\DriverStore\FileRepository\usb4hostrouter.inf_amd64_ea264d21e6b3e5db\Usb4HostRouter.sys [595280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbaudio; C:\Windows\system32\drivers\usbaudio.sys [266240 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [380928 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 usbccgp; C:\Windows\System32\drivers\usbccgp.sys [222528 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbehci; C:\Windows\System32\drivers\usbehci.sys [116080 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbhub; C:\Windows\System32\drivers\usbhub.sys [550224 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 USBHUB3; C:\Windows\System32\drivers\UsbHub3.sys [697688 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbser; C:\Windows\System32\drivers\usbser.sys [118784 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 USBSTOR; C:\Windows\System32\drivers\USBSTOR.SYS [169280 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [69632 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [365912 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 USBXHCI; C:\Windows\System32\drivers\USBXHCI.SYS [656880 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [102728 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 VerifierExt; C:\Windows\System32\drivers\VerifierExt.sys [308584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [857456 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 vhf; C:\Windows\System32\drivers\vhf.sys [81920 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 Vid; C:\Windows\System32\drivers\Vid.sys [755184 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 VirtualRender; C:\Windows\System32\DriverStore\FileRepository\vrd.inf_amd64_346f3764318c1681\vrd.sys [45056 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 vmbus; C:\Windows\System32\drivers\vmbus.sys [202096 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [65856 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 vmgid; C:\Windows\System32\drivers\vmgid.sys [53568 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [120168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [415072 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [480584 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 volume; C:\Windows\System32\drivers\volume.sys [53576 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S0 vpci; C:\Windows\System32\drivers\vpci.sys [116032 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166712 2021-06-05] (Microsoft Windows -> VIA Technologies Inc.,Ltd)
S0 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305488 2021-06-05] (Microsoft Windows -> VIA Corporation)
R3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [57344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R1 vwififlt; C:\Windows\System32\drivers\vwififlt.sys [106496 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 vwifimp; C:\Windows\System32\drivers\vwifimp.sys [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [61440 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R2 wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [118784 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [118784 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 wcifs; C:\Windows\system32\drivers\wcifs.sys [238976 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [869720 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [1007616 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdmCompanionFilter; C:\Windows\System32\drivers\WdmCompanionFilter.sys [54624 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R0 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [206312 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WifiCx; C:\Windows\System32\drivers\WifiCx.sys [802816 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [65872 2021-11-04] (Microsoft Windows -> Microsoft Corporation)
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [103960 2023-12-17] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [53744 2021-06-05] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [36152 2021-06-05] (Microsoft Windows -> Mellanox)
S3 WinNat; C:\Windows\System32\drivers\winnat.sys [307176 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 WINUSB; C:\Windows\System32\drivers\WinUSB.SYS [135168 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [73016 2021-06-05] (Microsoft Windows -> Mellanox)
R3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [49152 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [275792 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WpdUpFltr; C:\Windows\System32\drivers\WpdUpFltr.sys [66896 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [57344 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [159744 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [344064 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [385024 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [77824 2023-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 MicrosoftDoSvc; \??\C:\Users\user\AppData\Roaming\OpenArk\kernel\MicrosoftDoSvc.sys [X]
S3 OpenArkDrv64; \??\C:\Users\user\AppData\Roaming\OpenArk\kernel\OpenArkDrv64.sys [X]
S3 PORTMON; \??\C:\Users\user\Desktop\SysinternalsSuite\PORTMSYS.SYS [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) (All) =========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2024-01-27 06:11 - 2024-01-27 06:11 - 000000000 ____D C:\Program Files\Windows Defender
2024-01-27 06:11 - 2024-01-27 06:11 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-01-27 06:11 - 2023-12-17 16:51 - 000507904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys
2024-01-27 06:11 - 2023-12-17 16:51 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthHfEnum.sys
2024-01-27 06:11 - 2023-12-17 16:51 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys
2024-01-27 05:28 - 2024-01-27 05:28 - 001933072 _____ (O&O Software GmbH) C:\Users\user\Desktop\OOSU10.exe
2024-01-27 05:28 - 2024-01-27 05:28 - 000000000 ____D C:\Users\user\AppData\Local\OO Software
2024-01-27 05:27 - 2024-01-27 05:27 - 001933072 _____ (O&O Software GmbH) C:\Users\user\Downloads\OOSU10.exe
2024-01-27 05:05 - 2024-01-27 05:05 - 007686335 _____ C:\Users\user\Desktop\ESETSirefefCleaner.exe_20240127.050533.4732.zip
2024-01-27 05:04 - 2024-01-27 05:04 - 007686292 _____ C:\Users\user\Desktop\ESETSirefefCleaner.exe_20240127.050418.3784.zip
2024-01-26 23:58 - 2024-01-26 23:58 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Comms
2024-01-26 23:57 - 2024-01-26 23:57 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\AMD
2024-01-26 23:54 - 2024-01-26 23:58 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\PlaceholderTileLogoFolder
2024-01-26 23:54 - 2024-01-26 23:54 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2890305830-4224058196-3671865366-500
2024-01-26 23:54 - 2024-01-26 23:54 - 000003394 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2890305830-4224058196-3671865366-500
2024-01-26 23:54 - 2024-01-26 23:54 - 000002479 _____ C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-01-26 23:54 - 2024-01-26 23:54 - 000000000 ___RD C:\Users\Administrator.DESKTOP-7PHMD89\OneDrive
2024-01-26 23:53 - 2024-01-27 03:56 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Packages
2024-01-26 23:53 - 2024-01-27 03:56 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\D3DSCache
2024-01-26 23:53 - 2024-01-26 23:54 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89
2024-01-26 23:53 - 2024-01-26 23:53 - 000000020 ___SH C:\Users\Administrator.DESKTOP-7PHMD89\ntuser.ini
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Ustawienia lokalne
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Szablony
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Moje dokumenty
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Menu Start
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Documents\Moje wideo
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Documents\Moje obrazy
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Documents\Moja muzyka
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\Dane aplikacji
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Tymczasowe pliki internetowe
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Historia
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 _SHDL C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Dane aplikacji
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ___SD C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\SystemCertificates
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ___SD C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Protect
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ___SD C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Crypto
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ___SD C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Credentials
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Vault
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Adobe
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\LocalLow\NVIDIA
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Publishers
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Malwarebytes
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Google
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\ConnectedDevicesPlatform
2024-01-26 23:53 - 2024-01-26 23:53 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\BraveSoftware
2024-01-26 23:53 - 2021-06-05 13:10 - 000000000 ____D C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Spelling
2024-01-26 23:53 - 2021-06-05 13:04 - 000001281 _____ C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2024-01-26 23:53 - 2021-06-05 13:04 - 000000407 _____ C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2024-01-26 21:15 - 2024-01-26 21:15 - 000000000 ___HD C:\$WINDOWS.~BT
2024-01-26 09:22 - 2024-01-26 09:22 - 000000000 ___HD C:\$WinREAgent
2024-01-25 02:23 - 2023-12-17 06:15 - 000001299 _____ C:\Users\user\Desktop\Unity 2022.3.15f1.lnk
2024-01-25 02:21 - 2024-01-25 02:21 - 007686294 _____ C:\Users\user\Desktop\ESETSirefefCleaner.exe_20240125.022122.3948.zip
2024-01-25 02:20 - 2024-01-27 01:35 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2024-01-25 02:05 - 2024-01-25 02:05 - 007686344 _____ C:\Users\user\Desktop\ESETSirefefCleaner.exe_20240125.020512.2244.zip
2024-01-25 02:04 - 2024-01-25 02:04 - 007686307 _____ C:\Users\user\Desktop\ESETSirefefCleaner.exe_20240125.020429.2120.zip
2024-01-25 02:02 - 2024-01-25 02:02 - 007686355 _____ C:\Users\user\Desktop\ESETSirefefCleaner.exe_20240125.020209.18356.zip
2024-01-25 02:00 - 2024-01-25 02:01 - 007686351 _____ C:\Users\user\Desktop\ESETSirefefCleaner.exe_20240125.020057.16592.zip
2024-01-25 02:00 - 2024-01-25 02:00 - 000430280 _____ (ESET) C:\Users\user\Desktop\ESETSirefefCleaner.exe
2024-01-25 01:53 - 2024-01-25 01:53 - 001897205 _____ C:\Users\user\Downloads\uefiopt_v1.0.0.15.exe.zip
2024-01-25 00:35 - 2024-01-27 06:30 - 000000000 ___HD C:\Users\user\Downloads\.opera
2024-01-25 00:35 - 2024-01-27 06:30 - 000000000 ___HD C:\Users\user\.opera
2024-01-24 22:47 - 2024-01-24 22:49 - 000000000 ____D C:\op
2024-01-24 22:47 - 2024-01-24 22:47 - 000004170 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1706132879
2024-01-24 22:41 - 2024-01-24 22:47 - 000000783 _____ C:\Users\user\Desktop\Przeglądarka Opera.lnk
2024-01-24 22:41 - 2024-01-24 22:47 - 000000783 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk
2024-01-24 22:41 - 2024-01-24 22:41 - 002734920 _____ (Opera Software) C:\Users\user\Desktop\OperaSetup.exe
2024-01-24 22:41 - 2024-01-24 22:41 - 000004244 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1706132513
2024-01-24 22:41 - 2024-01-24 22:41 - 000000000 ____D C:\Users\user\AppData\Roaming\Opera Software
2024-01-24 22:41 - 2024-01-24 22:41 - 000000000 ____D C:\Users\user\AppData\Local\Opera Software
2024-01-24 21:34 - 2024-01-24 21:34 - 000000000 ____D C:\Users\user\.idlerc
2024-01-24 21:32 - 2024-01-24 21:33 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12
2024-01-24 21:32 - 2024-01-24 21:32 - 026589696 _____ (Python Software Foundation) C:\Users\user\Desktop\python-3.12.1-amd64.exe
2024-01-24 21:32 - 2024-01-24 21:32 - 000000000 ____D C:\Users\user\AppData\Local\Package Cache
2024-01-24 21:19 - 2024-01-24 21:19 - 000255090 _____ C:\Users\user\Desktop\psutil-5.9.8-cp37-abi3-win_amd64.whl
2024-01-24 20:13 - 2024-01-24 22:53 - 000000000 ____D C:\Users\user\My project2
2024-01-24 19:56 - 2024-01-27 01:44 - 001214660 _____ C:\Windows\ntbtlog.txt
2024-01-23 11:33 - 2024-01-23 11:33 - 187756912 _____ (SUPERAntiSpyware) C:\Users\user\Desktop\SUPERAntiSpyware.exe
2024-01-23 11:33 - 2024-01-23 11:33 - 000001849 _____ C:\Users\user\Desktop\SUPERAntiSpyware Free Edition.lnk
2024-01-23 11:33 - 2024-01-23 11:33 - 000000000 ____D C:\Users\user\AppData\Roaming\SUPERAntiSpyware.com
2024-01-23 11:33 - 2024-01-23 11:33 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2024-01-23 11:33 - 2024-01-23 11:33 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2024-01-23 11:33 - 2024-01-23 11:33 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2024-01-23 10:00 - 2024-01-23 10:00 - 000000000 ____D C:\Users\user\Desktop\All_BIOS_ACER_NITRO_5_AN515-45-R0SE_10.12.2022_13.44
2024-01-23 09:59 - 2024-01-23 09:59 - 092642222 _____ C:\Users\user\Desktop\All_BIOS_ACER_NITRO_5_AN515-45-R0SE_10.12.2022_13.44.zip
2024-01-23 01:21 - 2024-01-23 01:21 - 000000000 ___RD C:\Users\user\Recorded Calls
2024-01-23 01:21 - 2024-01-23 01:21 - 000000000 ___RD C:\Users\user\3D Objects
2024-01-23 01:19 - 2024-01-23 01:21 - 000000000 ____D C:\Users\user\Desktop\BCUninstaller_5.7_portable
2024-01-23 01:19 - 2024-01-23 01:19 - 147940264 _____ C:\Users\user\Desktop\BCUninstaller_5.7_portable.zip
2024-01-23 01:09 - 2024-01-23 01:09 - 000039962 _____ C:\Users\user\Desktop\Win11Debloat-master.zip
2024-01-23 01:09 - 2024-01-23 01:09 - 000000000 ____D C:\Users\user\Desktop\Win11Debloat-master
2024-01-22 23:17 - 2024-01-22 23:17 - 000000000 ____D C:\Users\user\AppData\Roaming\Hex-Rays
2024-01-22 22:41 - 2024-01-22 22:41 - 000000000 ____D C:\Users\user\AppData\Local\OleViewDotNet
2024-01-22 22:40 - 2024-01-22 22:40 - 000020360 _____ (Sysinternals) C:\Windows\system32\Drivers\Dbgv.sys
2024-01-22 22:01 - 2024-01-22 23:20 - 000000000 ____D C:\Users\user\AppData\Roaming\OpenArk
2024-01-22 22:01 - 2024-01-22 22:01 - 010833920 _____ (hxxps://github.com/BlackINT3) C:\Users\user\Desktop\OpenArk64.exe
2024-01-22 18:07 - 2024-01-25 02:20 - 000223296 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2024-01-20 16:01 - 2024-01-18 13:24 - 000000000 ____D C:\Users\user\Desktop\GPT-SoVITS
2024-01-20 15:50 - 2024-01-22 18:07 - 000000000 ____D C:\Program Files\7-Zip
2024-01-20 15:50 - 2024-01-20 15:50 - 001589510 _____ (Igor Pavlov) C:\Users\user\Desktop\7z2301-x64.exe
2024-01-20 15:50 - 2024-01-20 15:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2024-01-20 15:48 - 2024-01-20 15:50 - 667974456 _____ C:\Users\user\Desktop\GPT-SoVITS-beta.7z
2024-01-20 13:58 - 2024-01-23 09:50 - 000000000 ____D C:\Users\user\AppData\Roaming\ASCOMP Software
2024-01-20 13:58 - 2024-01-20 13:58 - 006843840 _____ (ASCOMP Software GmbH ) C:\Users\user\Downloads\sEraser.exe
2024-01-20 13:26 - 2024-01-26 20:41 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps
2024-01-20 13:22 - 2024-01-20 13:39 - 000002232 _____ C:\Users\user\Desktop\Nmap - Zenmap GUI.lnk
2024-01-20 13:22 - 2024-01-20 13:38 - 000000000 ____D C:\Users\user\.zenmap
2024-01-20 13:22 - 2024-01-20 13:22 - 032459224 _____ (Insecure.org) C:\Users\user\Desktop\nmap-7.94-setup.exe
2024-01-20 13:22 - 2024-01-20 13:22 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nmap
2024-01-20 13:22 - 2024-01-20 13:22 - 000000000 ____D C:\Program Files (x86)\Nmap
2024-01-20 13:19 - 2024-01-26 22:49 - 000000000 ____D C:\Users\user\AppData\Local\Malwarebytes
2024-01-20 13:19 - 2024-01-20 13:19 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-01-20 13:19 - 2024-01-20 13:19 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-01-20 13:19 - 2024-01-20 13:19 - 000000000 ____D C:\Users\user\AppData\Local\mbam
2024-01-20 13:18 - 2024-01-25 02:26 - 000239576 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2024-01-20 13:18 - 2024-01-20 13:18 - 002582384 _____ (Malwarebytes) C:\Users\user\Desktop\MBSetup.exe
2024-01-20 13:18 - 2024-01-20 13:18 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2024-01-20 13:18 - 2024-01-20 13:18 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2024-01-20 13:18 - 2024-01-20 13:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-01-20 13:18 - 2024-01-20 13:18 - 000000000 ____D C:\Program Files\Malwarebytes
2024-01-20 13:05 - 2024-01-20 13:05 - 000000000 ____D C:\Users\user\AppVerifierLogs
2024-01-19 22:45 - 2024-01-19 22:45 - 000000000 ____D C:\Windows\SysWOW64\Npcap
2024-01-19 22:45 - 2024-01-19 22:45 - 000000000 ____D C:\Windows\system32\Npcap
2024-01-19 22:44 - 2024-01-19 22:44 - 001162272 _____ C:\Users\user\Downloads\npcap-1.79.exe
2024-01-18 22:15 - 2024-01-18 22:15 - 000491392 _____ C:\Windows\system32\wpcap.dll
2024-01-18 22:15 - 2024-01-18 22:15 - 000266624 _____ (Insecure.Com LLC.) C:\Windows\system32\WlanHelper.exe
2024-01-18 22:15 - 2024-01-18 22:15 - 000156544 _____ (Insecure.Com LLC.) C:\Windows\system32\NpcapHelper.exe
2024-01-18 22:14 - 2024-01-18 22:14 - 000420224 _____ C:\Windows\SysWOW64\wpcap.dll
2024-01-18 22:14 - 2024-01-18 22:14 - 000220032 _____ (Insecure.Com LLC.) C:\Windows\system32\Packet.dll
2024-01-18 22:14 - 2024-01-18 22:14 - 000216448 _____ (Insecure.Com LLC.) C:\Windows\SysWOW64\WlanHelper.exe
2024-01-18 22:14 - 2024-01-18 22:14 - 000174464 _____ (Insecure.Com LLC.) C:\Windows\SysWOW64\Packet.dll
2024-01-18 22:14 - 2024-01-18 22:14 - 000129920 _____ (Insecure.Com LLC.) C:\Windows\SysWOW64\NpcapHelper.exe
2024-01-16 23:09 - 2024-01-16 23:09 - 000000000 _____ C:\Users\user\Desktop\Nowy Dokument tekstowy.txt
2024-01-16 21:37 - 2024-01-19 22:44 - 000000028 _____ C:\Windows\ODBC.INI
2024-01-16 21:37 - 2024-01-19 22:44 - 000000023 _____ C:\Windows\ODBCINST.INI
2024-01-16 21:37 - 2024-01-16 21:37 - 015699568 _____ (Copyright © 1999-2018 by ClearApps ) C:\Users\user\Desktop\network_inventory_advisor.exe
2024-01-16 21:37 - 2024-01-16 21:37 - 000000000 ____D C:\ProgramData\ClearApps
2024-01-16 21:37 - 2024-01-16 21:37 - 000000000 ____D C:\ProgramData\AutoUpdate
2024-01-16 21:34 - 2024-01-25 00:29 - 000000000 ____D C:\inetpub
2024-01-16 21:33 - 2024-01-20 13:22 - 000000000 ____D C:\Program Files\Npcap
2024-01-16 21:33 - 2024-01-19 22:45 - 000003460 _____ C:\Windows\system32\Tasks\npcapwatchdog
2024-01-16 21:33 - 2024-01-16 21:33 - 251041088 _____ (Lansweeper.com ) C:\Users\user\Desktop\LansweeperSetup.exe
2024-01-16 21:33 - 2024-01-16 21:33 - 000000788 _____ C:\Windows\system32\InstallUtil.InstallLog
2024-01-16 21:33 - 2024-01-16 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lansweeper
2024-01-16 21:33 - 2024-01-16 21:33 - 000000000 ____D C:\Program Files (x86)\Lansweeper
2024-01-16 01:57 - 2024-01-16 01:58 - 000000000 ____D C:\Windows\Minidump
2024-01-16 01:57 - 2024-01-16 01:57 - 1241968164 _____ C:\Windows\MEMORY.DMP
2024-01-16 01:57 - 2024-01-16 01:57 - 003212100 _____ C:\Windows\Minidump\011624-8500-01.dmp
2024-01-16 01:56 - 2024-01-22 23:06 - 000037240 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS
2024-01-16 01:56 - 2024-01-16 01:56 - 003514508 _____ C:\Users\user\Desktop\ProcessExplorer.zip
2024-01-16 01:56 - 2024-01-16 01:56 - 000000000 ____D C:\Users\user\Desktop\ProcessExplorer
2024-01-16 01:41 - 2024-01-16 01:41 - 000017298 _____ C:\Users\user\Desktop\setupplatform.cfg.txt
2024-01-16 00:23 - 2024-01-16 00:23 - 001376304 _____ (Google LLC) C:\Users\user\Downloads\ChromeSetup.exe
2024-01-15 22:00 - 2024-01-15 22:00 - 000000000 ____D C:\Users\user\AppData\Local\pypoetry
2024-01-15 21:54 - 2024-01-15 21:54 - 000000000 ____D C:\Users\user\privateGPT
2024-01-14 19:15 - 2024-01-23 09:50 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2024-01-14 19:15 - 2024-01-14 19:15 - 002786328 _____ (Skillbrains ) C:\Users\user\Desktop\setup-lightshot.exe
2024-01-14 19:15 - 2024-01-14 19:15 - 000000424 _____ C:\Users\user\AppData\Local\UserProducts.xml
2024-01-14 19:15 - 2024-01-14 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2024-01-14 19:03 - 2024-01-14 19:08 - 000000000 ____D C:\Users\user\Desktop\audio-webui-Installers
2024-01-14 19:03 - 2024-01-14 19:03 - 000236469 _____ C:\Users\user\Desktop\audio-webui-Installers.zip
2024-01-14 18:59 - 2024-01-14 18:59 - 000000000 ____D C:\Users\user\Desktop\audio-webui
2024-01-14 18:58 - 2024-01-14 18:58 - 000000431 _____ C:\Users\user\Desktop\audio-webui.zip
2024-01-14 15:13 - 2024-01-14 15:13 - 000000000 ____D C:\Users\user\.cache
2024-01-14 15:00 - 2024-01-14 15:00 - 000000000 ____D C:\Users\user\AppData\Local\pypa
2024-01-14 14:59 - 2024-01-14 15:21 - 000000000 ____D C:\Users\user\AppData\Roaming\StabilityMatrix
2024-01-14 14:59 - 2024-01-14 14:59 - 000000000 ____D C:\Users\user\AppData\Local\Sentry
2024-01-14 14:59 - 2024-01-14 14:59 - 000000000 ____D C:\Users\user\AppData\Local\pip
2024-01-14 14:59 - 2024-01-14 14:59 - 000000000 ____D C:\Users\user\.matplotlib
2024-01-14 14:58 - 2024-01-14 14:58 - 112482655 _____ C:\Users\user\Desktop\StabilityMatrix-win-x64.zip
2024-01-14 14:54 - 2024-01-14 14:54 - 000000000 ____D C:\Users\user\AppData\Local\npm-cache
2024-01-14 14:41 - 2024-01-14 14:41 - 029814784 _____ (Microsoft Corporation) C:\Windows\system32\DXCaptureReplay.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 005263360 _____ (Microsoft Corporation) C:\Windows\system32\d3d12SDKLayers.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 005042176 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsRemoteEngine.exe
2024-01-14 14:41 - 2024-01-14 14:41 - 003947520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d12SDKLayers.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 002121728 _____ (Microsoft Corporation) C:\Windows\system32\DXToolsOfflineAnalysis.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 001208320 _____ (Microsoft Corporation) C:\Windows\system32\DXCap.exe
2024-01-14 14:41 - 2024-01-14 14:41 - 000630784 _____ (Microsoft Corporation) C:\Windows\system32\d2d1debug3.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 000445440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1debug3.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsExperiment.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 000212992 _____ (Microsoft Corporation) C:\Windows\system32\DXToolsMonitor.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 000196608 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsCapture.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\DXToolsReporting.dll
2024-01-14 14:41 - 2024-01-14 14:41 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2024-01-14 14:41 - 2024-01-14 14:41 - 000000000 ____D C:\Program Files\Application Verifier
2024-01-14 14:41 - 2024-01-14 14:41 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2024-01-14 14:41 - 2021-06-05 01:35 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\perf_gputiming.dll
2024-01-14 14:41 - 2021-06-05 00:02 - 000287232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf_gputiming.dll
2024-01-14 14:41 - 2021-06-04 19:45 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\DxToolsReportGenerator.dll
2024-01-14 14:41 - 2021-06-04 19:20 - 000397312 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\DXCpl.exe
2024-01-14 14:41 - 2021-06-04 19:19 - 000438272 _____ (Microsoft Corporation) C:\Windows\system32\d3dconfig.exe
2024-01-14 14:41 - 2021-06-04 19:19 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsProxyStub.dll
2024-01-14 14:41 - 2021-06-04 19:18 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\VSD3DWARPDebug.dll
2024-01-14 14:41 - 2021-06-04 19:14 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\DXGIDebug.dll
2024-01-14 14:41 - 2021-06-04 19:13 - 001421312 _____ (Microsoft Corporation) C:\Windows\system32\d3d11_3SDKLayers.dll
2024-01-14 14:41 - 2021-06-04 19:10 - 000095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DxToolsReportGenerator.dll
2024-01-14 14:41 - 2021-06-04 19:09 - 005931008 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsDesktopEngine.exe
2024-01-14 14:41 - 2021-06-04 18:45 - 000042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsProxyStub.dll
2024-01-14 14:41 - 2021-06-04 18:43 - 000353792 _____ (Windows ® Win 7 DDK provider) C:\Windows\SysWOW64\DXCpl.exe
2024-01-14 14:41 - 2021-06-04 18:42 - 000371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dconfig.exe
2024-01-14 14:41 - 2021-06-04 18:42 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VSD3DWARPDebug.dll
2024-01-14 14:41 - 2021-06-04 18:40 - 000250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXGIDebug.dll
2024-01-14 14:41 - 2021-06-04 18:39 - 000914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXCap.exe
2024-01-14 14:41 - 2021-06-04 18:39 - 000222208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsExperiment.dll
2024-01-14 14:41 - 2021-06-04 18:39 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXToolsMonitor.dll
2024-01-14 14:41 - 2021-06-04 18:39 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsCapture.dll
2024-01-14 14:41 - 2021-06-04 18:38 - 001444352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXToolsOfflineAnalysis.dll
2024-01-14 14:41 - 2021-06-04 18:38 - 001142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_3SDKLayers.dll
2024-01-14 14:41 - 2021-06-04 18:36 - 000120832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXToolsReporting.dll
2024-01-14 14:41 - 2021-06-04 18:35 - 013907968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXCaptureReplay.dll
2024-01-14 14:41 - 2021-06-04 18:35 - 003561984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsRemoteEngine.exe
2024-01-14 14:41 - 2021-06-04 18:34 - 004389888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsDesktopEngine.exe
2024-01-14 14:41 - 2021-06-04 17:58 - 000526848 _____ (Microsoft Corporation) C:\Windows\system32\DirectML.Debug.dll
2024-01-14 14:41 - 2021-06-04 17:56 - 000407552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DirectML.Debug.dll
2024-01-14 14:39 - 2024-01-25 00:29 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2024-01-14 14:39 - 2024-01-24 21:50 - 000001433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2024-01-14 14:39 - 2024-01-23 01:31 - 000000000 ____D C:\Users\user\AppData\Roaming\Visual Studio Setup
2024-01-14 14:39 - 2024-01-14 14:42 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2024-01-14 14:39 - 2024-01-14 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2024-01-14 14:39 - 2024-01-14 14:39 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2024-01-14 14:38 - 2024-01-14 14:38 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
2024-01-14 14:37 - 2024-01-14 14:37 - 000000000 ____D C:\Users\user\.conda
2024-01-14 14:36 - 2024-01-14 14:36 - 000000043 _____ C:\Users\user\.condarc
2024-01-14 14:36 - 2024-01-14 14:36 - 000000000 ____D C:\Users\user\AppData\Roaming\NVIDIA
2024-01-14 14:36 - 2024-01-14 14:36 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miniconda3 (64-bit)
2024-01-14 14:36 - 2024-01-14 14:36 - 000000000 ____D C:\Users\user\AppData\Local\conda
2024-01-14 14:35 - 2024-01-14 16:04 - 000000000 ____D C:\Users\user\AppData\Roaming\Pinokio
2024-01-14 14:35 - 2024-01-14 15:18 - 000000000 ____D C:\Users\user\pinokio
2024-01-14 14:35 - 2024-01-14 14:35 - 083806632 _____ C:\Users\user\Desktop\Pinokio-1.0.16-win32.zip
2024-01-14 14:35 - 2024-01-14 14:35 - 000002252 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinokio.lnk
2024-01-14 14:35 - 2024-01-14 14:35 - 000002244 _____ C:\Users\user\Desktop\Pinokio.lnk
2024-01-14 14:35 - 2024-01-14 14:35 - 000000000 ____D C:\Users\user\AppData\Local\pinokio-updater
2024-01-13 22:24 - 2024-01-23 09:36 - 000003654 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2024-01-11 17:09 - 2024-01-11 17:09 - 000920088 _____ C:\Users\user\Desktop\1tigsystemy-operacyjne23.03.20-1584991821.pdf
2024-01-11 04:30 - 2024-01-24 20:14 - 000000000 ____D C:\Users\user\AppData\LocalLow\DefaultCompany
2024-01-11 04:30 - 2024-01-11 04:30 - 000000000 ____D C:\Users\user\AppData\Local\plastic4
2024-01-11 04:28 - 2024-01-11 06:49 - 000000000 ____D C:\Users\user\My project
2024-01-11 02:09 - 2024-01-11 02:09 - 000000000 ____D C:\ProgramData\Dbg
2024-01-11 02:05 - 2024-01-11 02:11 - 000000000 ____D C:\Users\user\AppData\Local\dbg
2024-01-11 02:05 - 2024-01-11 02:05 - 000000685 _____ C:\Users\user\Desktop\windbg.appinstaller
2024-01-11 02:05 - 2024-01-11 02:05 - 000000000 ____D C:\Users\user\AppData\Local\IsolatedStorage
2024-01-11 01:53 - 2024-01-11 01:53 - 000000000 ____D C:\Users\user\AppData\Local\Sysinternals
2024-01-11 01:50 - 2024-01-19 22:40 - 000080408 ____H (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCMON24.SYS
2024-01-08 21:59 - 2024-01-25 01:53 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-08 21:59 - 2024-01-19 16:05 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-01-08 21:59 - 2024-01-08 21:59 - 000003940 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{8AC6A759-23A4-45BC-B153-47BA1FB95A3F}
2024-01-08 21:59 - 2024-01-08 21:59 - 000003816 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{B5E075CF-123E-4AD7-A5E7-ACFC57408194}
2024-01-08 21:59 - 2024-01-08 21:59 - 000000000 ____D C:\Users\user\AppData\Local\Google
2024-01-08 21:59 - 2024-01-08 21:59 - 000000000 ____D C:\Program Files\Google
2024-01-08 21:58 - 2024-01-27 07:04 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-08 21:19 - 2024-01-08 21:58 - 000000000 ____D C:\Users\user\Desktop\zdjecia pruszcz
2024-01-06 17:30 - 2024-01-06 17:30 - 000024009 _____ C:\Users\user\Desktop\Print.pdf
2024-01-06 17:29 - 2012-08-21 16:07 - 000074240 _____ C:\Windows\system32\spool\prtprocs\x64\HP1100PP.dll
2024-01-06 17:29 - 2012-08-21 09:13 - 000350720 _____ C:\Windows\system32\mvhlewsi.dll
2024-01-06 17:29 - 2012-08-21 08:57 - 000082944 _____ C:\Windows\system32\mvusbews.dll
2024-01-06 17:29 - 2012-08-21 08:57 - 000020480 _____ (Marvell Semiconductor, Inc.) C:\Windows\system32\Drivers\mvusbews.sys
2024-01-06 17:29 - 2012-06-21 08:38 - 001490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2024-01-05 19:22 - 2023-12-06 20:36 - 001766012 _____ C:\Users\user\Documents\products.xml
2023-12-29 05:51 - 2023-12-29 05:51 - 000000000 ____D C:\Users\user\AppData\Local\Apps\2.0
2023-12-29 05:46 - 2023-12-29 05:46 - 151275000 _____ (Microsoft Corporation) C:\Users\user\Desktop\MSERT.exe
2023-12-29 05:43 - 2023-12-29 05:43 - 002205619 _____ C:\Users\user\Desktop\[MS-CDP].pdf
2023-12-29 00:07 - 2023-12-29 00:09 - 000001310 _____ C:\Users\user\Desktop\Ubisoft Connect.lnk
2023-12-29 00:07 - 2023-12-29 00:09 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2023-12-28 23:37 - 2023-12-28 23:37 - 000000222 _____ C:\Users\user\Desktop\Far Cry 5.url
2023-12-28 23:13 - 2023-12-28 23:13 - 000000000 ____H C:\Users\user\Documents\Default.rdp
2023-12-28 06:10 - 2023-12-28 06:10 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\HTML Help
2023-12-28 05:43 - 2023-12-28 05:43 - 000000000 ____D C:\Windows\pss
2023-12-28 05:41 - 2023-12-28 05:41 - 000223878 _____ C:\Users\Administrator\Downloads\MicrosoftProgram_Install_and_Uninstall.meta.diagcab
2023-12-28 05:41 - 2023-12-28 05:41 - 000000000 ____D C:\Users\Administrator\AppData\Local\ElevatedDiagnostics
2023-12-28 05:41 - 2023-12-28 05:41 - 000000000 ____D C:\Users\Administrator\AppData\Local\AMD
2023-12-28 05:36 - 2023-12-28 05:48 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2023-12-28 05:23 - 2023-12-28 05:25 - 000000000 ___RD C:\Users\Administrator\OneDrive
2023-12-28 05:23 - 2023-12-28 05:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2023-12-28 05:23 - 2023-12-28 05:23 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\NVIDIA
2023-12-28 05:23 - 2023-12-28 05:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2023-12-28 05:23 - 2023-12-28 05:23 - 000000000 ____D C:\Users\Administrator\AppData\Local\BraveSoftware
2023-12-28 05:22 - 2023-12-28 06:08 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2023-12-28 05:22 - 2023-12-28 06:08 - 000000000 ____D C:\Users\Administrator
2023-12-28 05:22 - 2023-12-28 05:23 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Ustawienia lokalne
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Szablony
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Moje dokumenty
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Menu Start
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Documents\Moje wideo
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Documents\Moje obrazy
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Documents\Moja muzyka
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\Dane aplikacji
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Tymczasowe pliki internetowe
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Historia
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Dane aplikacji
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\SystemCertificates
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Protect
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Crypto
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 ___SD C:\Users\Administrator\AppData\Roaming\Microsoft\Credentials
2023-12-28 05:22 - 2023-12-28 05:22 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Vault
2023-12-28 05:22 - 2021-06-05 13:10 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Spelling
2023-12-28 02:51 - 2023-12-28 02:51 - 000000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics
2023-12-28 00:23 - 2024-01-19 22:14 - 000000000 ____D C:\Users\user\Desktop\SysinternalsSuite
2023-12-28 00:22 - 2023-12-28 00:23 - 053045437 _____ C:\Users\user\Desktop\SysinternalsSuite.zip
 
==================== One month (modified) ==================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2024-01-27 07:22 - 2023-12-17 16:33 - 000175766 _____ C:\Users\user\Desktop\FRST.txt
2024-01-27 07:22 - 2023-12-17 16:33 - 000000000 ____D C:\FRST
2024-01-27 07:21 - 2023-12-17 16:35 - 000042793 _____ C:\Users\user\Desktop\Shortcut.txt
2024-01-27 07:21 - 2023-12-17 16:34 - 000042300 _____ C:\Users\user\Desktop\Addition.txt
2024-01-27 07:19 - 2023-12-17 06:59 - 000000000 ____D C:\Program Files (x86)\Steam
2024-01-27 07:18 - 2023-12-17 16:33 - 002389504 _____ (Farbar) C:\Users\user\Desktop\EnglishFRST64.exe
2024-01-27 07:18 - 2023-12-17 16:33 - 000000000 ____D C:\Users\user\Desktop\FRST-OlderVersion
2024-01-27 07:18 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SystemTemp
2024-01-27 07:12 - 2023-12-17 04:38 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-01-27 06:27 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-27 06:25 - 2023-12-17 06:05 - 000000000 ____D C:\ProgramData\NVIDIA
2024-01-27 06:25 - 2023-12-17 04:38 - 000012288 ___SH C:\DumpStack.log.tmp
2024-01-27 06:25 - 2023-12-17 04:38 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-01-27 06:25 - 2021-06-05 13:01 - 000524288 _____ C:\Windows\system32\config\BBI
2024-01-27 04:24 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\AppReadiness
2024-01-27 04:01 - 2021-06-05 13:01 - 000000000 ____D C:\Windows\CbsTemp
2024-01-27 00:09 - 2023-12-17 04:47 - 000000000 ____D C:\ProgramData\Packages
2024-01-26 23:58 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-26 23:53 - 2023-12-17 04:47 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-01-26 23:53 - 2021-06-05 13:10 - 000000000 ___RD C:\Windows\PrintDialog
2024-01-26 23:53 - 2021-06-05 13:10 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-01-26 22:13 - 2023-12-17 04:47 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache
2024-01-26 21:15 - 2023-12-17 05:51 - 000001908 _____ C:\Windows\diagwrn.xml
2024-01-26 21:15 - 2023-12-17 05:51 - 000001908 _____ C:\Windows\diagerr.xml
2024-01-26 21:15 - 2023-12-17 04:37 - 000000000 ____D C:\Windows\Panther
2024-01-26 20:42 - 2023-12-17 06:05 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-01-26 20:42 - 2023-12-17 06:05 - 000002329 _____ C:\Users\Public\Desktop\Brave.lnk
2024-01-26 09:26 - 2023-12-17 04:43 - 001793460 _____ C:\Windows\system32\PerfStringBackup.INI
2024-01-26 09:26 - 2021-06-05 18:35 - 000797866 _____ C:\Windows\system32\perfh015.dat
2024-01-26 09:26 - 2021-06-05 18:35 - 000157868 _____ C:\Windows\system32\perfc015.dat
2024-01-26 09:26 - 2021-06-05 13:09 - 000000000 ____D C:\Windows\INF
2024-01-25 00:29 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2024-01-25 00:29 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\inetsrv
2024-01-25 00:16 - 2023-12-17 06:08 - 000000000 ____D C:\Users\user\AppData\Roaming\UnityHub
2024-01-24 23:05 - 2023-12-17 04:47 - 000000000 ____D C:\Users\user\AppData\Local\Packages
2024-01-24 22:53 - 2023-12-17 16:43 - 000000000 ____D C:\Users\user\AppData\LocalLow\Unity
2024-01-24 21:49 - 2023-12-17 07:30 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2024-01-24 20:23 - 2023-12-17 16:43 - 000000000 ____D C:\Users\user\AppData\Roaming\Unity
2024-01-23 09:53 - 2023-12-17 06:02 - 000000000 ____D C:\Users\user\AppData\Local\PlaceholderTileLogoFolder
2024-01-23 09:33 - 2023-12-17 06:05 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2024-01-23 00:53 - 2023-12-17 21:43 - 001204328 _____ C:\Users\user\Desktop\Fixlog.txt
2024-01-23 00:47 - 2023-12-17 21:43 - 000028672 _____ C:\exportBCDfile
2024-01-20 13:18 - 2021-06-05 13:10 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-01-20 13:05 - 2023-12-23 03:52 - 000007605 _____ C:\Users\user\AppData\Local\resmon.resmoncfg
2024-01-19 22:44 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-01-18 21:21 - 2021-08-30 19:23 - 000069984 _____ (Insecure.Com LLC.) C:\Windows\system32\Drivers\npcap.sys
2024-01-16 21:33 - 2023-12-17 04:38 - 000000000 ____D C:\Windows\ServiceProfiles
2024-01-16 21:19 - 2023-12-17 15:46 - 000000000 ____D C:\Users\user\Downloads\SysinternalsSuite
2024-01-16 01:28 - 2023-12-17 04:54 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\MMC
2024-01-14 19:00 - 2023-07-02 22:23 - 000000059 _____ C:\Users\user\Desktop\install_windows.bat
2024-01-14 14:41 - 2023-12-17 07:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2024-01-14 14:41 - 2023-12-17 06:11 - 000000000 ____D C:\ProgramData\Package Cache
2024-01-14 14:39 - 2023-12-17 06:16 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-01-13 20:46 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\NDF
2024-01-13 11:30 - 2023-12-17 06:58 - 000918944 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2024-01-11 04:29 - 2023-12-17 06:08 - 000000000 ____D C:\Users\user\AppData\Local\Unity
2024-01-10 17:22 - 2023-12-17 16:55 - 000000000 ____D C:\Windows\system32\MRT
2024-01-10 17:21 - 2023-12-17 16:55 - 189718008 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-01-04 22:18 - 2023-12-23 00:01 - 000000000 ____D C:\Users\user\AppData\Local\Ubisoft Game Launcher
2023-12-28 06:09 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\Com
2023-12-28 06:09 - 2021-06-05 13:01 - 000000000 ____D C:\Windows\servicing
2023-12-28 06:08 - 2023-12-17 06:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2023-12-28 06:08 - 2023-12-17 06:16 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2023-12-28 06:08 - 2023-12-17 06:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2022.3.15f1
2023-12-28 06:08 - 2023-12-17 04:47 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows
2023-12-28 06:08 - 2021-06-05 13:10 - 000000000 ___SD C:\Windows\system32\Configuration
2023-12-28 06:08 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\Sysprep
2023-12-28 06:08 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\system32\Pbr
2023-12-28 06:08 - 2021-06-05 13:10 - 000000000 ____D C:\Windows\registration
 
==================== Files in the root of some directories ========
 
2023-12-23 03:52 - 2024-01-20 13:05 - 000007605 _____ () C:\Users\user\AppData\Local\resmon.resmoncfg
2024-01-14 19:15 - 2024-01-14 19:15 - 000000003 _____ () C:\Users\user\AppData\Local\updater.log
2024-01-14 19:15 - 2024-01-14 19:15 - 000000424 _____ () C:\Users\user\AppData\Local\UserProducts.xml
 
==================== SigCheckExt =========================
 
2020-12-02 04:41 - 2020-12-02 04:41 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\d3dref9.dll
2024-01-06 17:29 - 2012-08-21 09:13 - 000350720 _____ C:\Windows\system32\mvhlewsi.dll
2009-06-25 09:27 - 2009-06-25 09:27 - 000541184 _____ (Marvell Semiconductor, Inc.) C:\Windows\system32\mvtcpmon.dll
2009-06-25 09:27 - 2009-06-25 09:27 - 000868864 _____ (Marvell Semiconductor, Inc.) C:\Windows\system32\mvtcpui.dll
2009-06-25 09:25 - 2009-06-25 09:25 - 000144896 _____ (OpenSLP) C:\Windows\system32\slp64.dll
2020-11-25 19:37 - 2020-11-25 19:37 - 000332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D2D1Debug2.dll
2020-06-23 16:54 - 2020-06-23 16:54 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11sdklayers.dll
2020-06-23 16:54 - 2020-06-23 16:54 - 000698368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_1sdklayers.dll
2020-06-23 16:54 - 2020-06-23 16:54 - 000936960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_2sdklayers.dll
2020-12-02 04:14 - 2020-12-02 04:14 - 000376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dref9.dll
2024-01-06 17:29 - 2012-08-21 16:07 - 000074240 _____ C:\Windows\system32\spool\prtprocs\x64\HP1100PP.dll
2024-01-20 15:50 - 2024-01-20 15:50 - 001589510 _____ (Igor Pavlov) C:\Users\user\Desktop\7z2301-x64.exe
2023-12-17 16:33 - 2024-01-27 07:18 - 002389504 _____ (Farbar) C:\Users\user\Desktop\EnglishFRST64.exe
2024-01-22 22:01 - 2024-01-22 22:01 - 010833920 _____ (hxxps://github.com/BlackINT3) C:\Users\user\Desktop\OpenArk64.exe
2023-12-17 07:17 - 2023-12-17 07:17 - 001589510 _____ (Igor Pavlov) C:\Users\user\Downloads\7z2301-x64.exe
 
==================== SigCheck ============================
 
(There is no automatic fix for files that do not pass verification.)
 
 
==================== BCD ================================
 
==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25.01.2024
Ran by user (27-01-2024 07:22:59)
Running from C:\Users\user\Desktop
Windows 10 Home Version 21H2 22000.2538 (X64) (2023-12-17 03:39:21)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
 
(If an entry is included in the fixlist, it will be removed.)
 
Administrator (S-1-5-21-2890305830-4224058196-3671865366-500 - Administrator - Enabled) => C:\Users\Administrator.DESKTOP-7PHMD89
Gość (S-1-5-21-2890305830-4224058196-3671865366-501 - Limited - Disabled)
Konto domyślne (S-1-5-21-2890305830-4224058196-3671865366-503 - Limited - Disabled)
user (S-1-5-21-2890305830-4224058196-3671865366-1001 - Administrator - Enabled) => C:\Users\user
WDAGUtilityAccount (S-1-5-21-2890305830-4224058196-3671865366-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7-Zip 23.01 (x64) (HKLM\...\7-Zip) (Version: 23.01 - Igor Pavlov)
Application Verifier x64 External Package (HKLM\...\{8A4CD158-E6B3-6D91-D7DE-10098BC980E2}) (Version: 10.1.19041.685 - Microsoft) Hidden
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 121.1.62.153 - Autorzy Brave)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.225 - Google LLC)
Kits Configuration Installer (HKLM-x32\...\{E75A9998-E979-760B-6AEB-49763F279EDD}) (Version: 10.1.19041.685 - Microsoft) Hidden
Lansweeper (HKLM-x32\...\Lansweeper_is1) (Version: 11.1 - Lansweeper.com)
Lightshot-5.5.0.7 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 - Skillbrains)
Malwarebytes version 4.6.8.311 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.8.311 - Malwarebytes)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 90.0.818.66 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2890305830-4224058196-3671865366-500\...\OneDriveSetup.exe) (Version: 21.220.1024.0005 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{ACF2602E-BD31-4BE5-AC03-9C8FDB638ADA}) (Version: 4.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30153 (HKLM-x32\...\{e3aefa8b-a2ea-42b8-a384-95f2ff6df681}) (Version: 14.29.30153.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931 (HKLM-x32\...\{d4cecf3b-b68f-4995-8840-52ea0fab646e}) (Version: 14.34.31931.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Debug Runtime - 14.29.30153 (HKLM\...\{36C28914-B045-41DB-8966-1C1692AF3BB7}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30153 (HKLM-x32\...\{F263DEED-F2D3-4AB2-9D1C-C47ED5AA8BFC}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Debug Runtime - 14.29.30153 (HKLM-x32\...\{CA4E811F-BFF9-43CC-894C-D4D2EC262E49}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30153 (HKLM-x32\...\{F3E4AF00-C81D-4253-B947-67DD661932EC}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31931 (HKLM\...\{EAE242B1-0A26-485A-BFEB-0292EE9F03CB}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31931 (HKLM\...\{CF4C347D-954E-4543-88D2-EC17F07F466F}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.8.2122.37638 - Microsoft Corporation)
Microsoft Visual Studio Setup Configuration (HKLM-x32\...\{6AC5612A-D067-44B9-9C8E-2C1B3473B429}) (Version: 3.7.2182.35401 - Microsoft Corporation) Hidden
Microsoft Visual Studio Setup WMI Provider (HKLM-x32\...\{E281F6E2-136B-4AF0-895B-253279711697}) (Version: 3.7.2182.35401 - Microsoft Corporation) Hidden
Miniconda3 py310_23.5.2-0 (Python 3.10.12 64-bit) (HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\Miniconda3 py310_23.5.2-0 (Python 3.10.12 64-bit)) (Version: py310_23.5.2-0 - Anaconda, Inc.)
Nmap 7.94 (HKLM-x32\...\Nmap) (Version: 7.94 - Nmap Project)
Npcap (HKLM-x32\...\NpcapInst) (Version: 1.79 - Nmap Project)
NVIDIA Sterownik graficzny 512.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.74 - NVIDIA Corporation)
Opera Stable 106.0.4998.52 (HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\Opera 106.0.4998.52) (Version: 106.0.4998.52 - Opera Software)
Opera Stable 106.0.4998.52 (HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\Opera 106.0.4998.521) (Version: 106.0.4998.52 - Opera Software)
Pinokio 1.0.16 (HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\f78f0b07-434a-5120-b014-8caf2017cc1a) (Version: 1.0.16 - hxxps://twitter.com/cocktailpeanut)
Python 3.12.1 (64-bit) (HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\{86e52725-ef45-452f-ac4c-b8958718bfea}) (Version: 3.12.1150.0 - Python Software Foundation)
Python 3.12.1 Core Interpreter (64-bit) (HKLM\...\{AC82C1A3-9597-40F2-893D-F02F778FBA4D}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Development Libraries (64-bit) (HKLM\...\{8C53CBDD-4DAF-426F-9478-6C7C2920CDDA}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Documentation (64-bit) (HKLM\...\{62667662-A580-409C-8044-55B06F774AE2}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Executables (64-bit) (HKLM\...\{44BC9F9C-15C2-46C1-B88D-3135A9DA555F}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 pip Bootstrap (64-bit) (HKLM\...\{1662F43B-2337-4FD8-8CE6-BEA38FC94DD4}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Standard Library (64-bit) (HKLM\...\{47957EE3-0E23-4075-B825-F202E913670F}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Tcl/Tk Support (64-bit) (HKLM\...\{926CDC62-3AE2-422B-9858-D6EC3BAD473F}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python 3.12.1 Test Suite (64-bit) (HKLM\...\{E309AE00-4FB1-4817-9172-7E198668375D}) (Version: 3.12.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{4C8D4EC3-F620-4CEE-8BAD-B59A3C6815F3}) (Version: 3.12.1150.0 - Python Software Foundation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1260 - SUPERAntiSpyware.com)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 50.0 - Ubisoft)
Unity 2022.3.15f1 (HKLM-x32\...\Unity 2022.3.15f1) (Version: 2022.3.15f1 - Unity Technologies ApS)
Unity Hub 3.7.0 (HKLM\...\Unity Technologies - Hub) (Version: 3.7.0 - Unity Technologies Inc.)
Universal CRT Extension SDK (HKLM-x32\...\{4D69FB64-4443-F2DD-DE1C-F14FD98AAC59}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{6B56745A-F6A4-C51C-933A-AD96C00683EA}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{A57CD0A6-4297-FD30-34A4-34758B6F5F69}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{CD06199B-41C1-AE6D-7567-984CC68792C3}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{BD75F257-50A4-E0CD-9942-C3550CA3E66A}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{A7E95C47-B5F4-110C-D27A-DECB03412B96}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{67363793-3A21-4910-A653-2DE29D531DAE}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Visual Studio Build Tools 2019 (HKLM-x32\...\4f6747f4) (Version: 16.11.33 - Microsoft Corporation)
VS Script Debugging Common (HKLM\...\{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{5C127D2C-BC0B-44B8-A1A5-34E9E7A116FC}) (Version: 16.11.31911 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{D30C4C86-AFC6-41F9-B833-7A33A28AA2B0}) (Version: 16.10.31213 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{102E83BD-B6A0-4C74-AD22-7D594A3435D3}) (Version: 16.11.31503 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{6CBDE7BE-E956-4E0E-81FB-2CB79190C924}) (Version: 16.11.31503 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{05CA3463-0B45-425D-9AF2-E1964AB85CBB}) (Version: 16.10.31303 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{883D29E5-9A41-4C45-A192-C10B8078BF0C}) (Version: 16.10.31306 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{8D5F2001-0BFF-4319-B939-785F13A23A2E}) (Version: 16.11.34407 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{50160702-82C1-4A10-88EE-FFD96B8FC259}) (Version: 16.10.31303 - Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32\...\{2ADF1977-BF31-E127-B651-AC28A8658317}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows App Certification Kit Native Components (HKLM\...\{D2886D0B-F38D-EB07-2108-B6218761F8F9}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows App Certification Kit SupportedApiList x86 (HKLM-x32\...\{26D02D07-8007-2FD2-6DFE-14B29D09B5FD}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows App Certification Kit x64 (HKLM-x32\...\{6487BFDF-6FA4-7CC5-0341-AA5D1AB69856}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows Content Versioned (HKLM-x32\...\{67D6E35C-5CB8-7B33-F4D5-8EBFA982A3F4}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows Debugging WDK Integration Versioned (HKLM-x32\...\{9948AF7D-17D2-BAFD-A7DA-31284B1FC018}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows Deployment Image Servicing and Management Tools (OnecoreUAP) (HKLM-x32\...\{B40A05C8-9C3F-D4A5-08E3-46BF05263366}) (Version: 10.1.22621.2428 - Microsoft) Hidden
Windows Desktop Extension SDK (HKLM-x32\...\{D3B54AAA-2B64-5DE2-EA64-9900152E5282}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows Desktop Extension SDK Contracts (HKLM-x32\...\{A34A6580-86EF-A26A-33A5-80E1919B7F75}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows Driver Framework Headers and Libs (HKLM-x32\...\{A46E4877-DABB-522C-921B-0C6F7102693B}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows Driver Kit - Windows 10.0.22621.2428 (HKLM-x32\...\{bd70a1e8-c15a-4854-a8ee-2e7b94c8a006}) (Version: 10.1.22621.2428 - Microsoft Corporation)
Windows Driver Kit (HKLM-x32\...\{5313B7F3-20DA-4F5F-72E3-7F890842C32C}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows Driver Kit Binaries (HKLM-x32\...\{6EF24903-22AC-78CD-180B-5C7E57186499}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows Driver Kit Headers and Libs (HKLM-x32\...\{A36AAD3D-A99B-805E-39B6-BF8FC852B7B0}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows Driver Kit Logger (HKLM-x32\...\{D71911EB-4389-5B35-0BBB-692C83E496C3}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows Driver Kit SxS Content (HKLM-x32\...\{700D31B1-2D32-3557-0732-DD3C440A2628}) (Version: 10.1.22621.2428 - Microsoft Corporation) Hidden
Windows IoT Extension SDK (HKLM-x32\...\{084094EF-6AC9-480A-7CC1-04199047BBDD}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows IoT Extension SDK Contracts (HKLM-x32\...\{497B2D49-F5C2-CA3B-05FF-22ABF39F2873}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows Mobile Extension SDK (HKLM-x32\...\{718C25EB-084C-6341-1C3E-589DA641C28F}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows Mobile Extension SDK Contracts (HKLM-x32\...\{7A9E937D-9757-80CB-A6E3-F4AB6081AEA6}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK (HKLM-x32\...\{7B891B74-6BE8-1581-357C-72DD8A82F0F7}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32\...\{E18618EC-D9DB-4BCE-B382-85ADA2CBB340}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows SDK ARM Desktop Tools (HKLM-x32\...\{940042ED-CB90-8E03-BE68-DF8A76E661FD}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Headers arm (HKLM-x32\...\{4BD2B107-B0D3-850C-7135-ACA153D30C78}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Headers arm64 (HKLM-x32\...\{C88797F9-0AD8-E022-5BBB-596BC78D4C76}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Headers x64 (HKLM-x32\...\{C81D239D-863A-D4B4-3562-BC8D3D7C271E}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Headers x86 (HKLM-x32\...\{3D5981B5-ABF0-1495-7FC3-102D1C75B9C8}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Libs arm (HKLM-x32\...\{2AC29D7B-F29F-34FA-4434-C5DF1F086264}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Libs arm64 (HKLM-x32\...\{9555AB64-6A00-776F-CA44-568E0E7B9632}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Libs x64 (HKLM-x32\...\{170B023D-7C1B-2EF4-D3E9-B974A26752AC}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Libs x86 (HKLM-x32\...\{7DD1F495-F1BF-6A30-620F-AC064DD302D8}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Tools arm64 (HKLM-x32\...\{06E580FA-F3B2-08E9-4DC0-0AB55D985CBB}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Tools x64 (HKLM-x32\...\{F9BDEC71-9E56-CFBF-0AE8-E7AF032D07C7}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Desktop Tools x86 (HKLM-x32\...\{1C966E96-8553-EF1E-A06F-A8174B3CAA60}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK DirectX x64 Remote (HKLM\...\{EBD149F6-9F46-49E4-ED99-25D2A0ECDBBD}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK DirectX x86 Remote (HKLM-x32\...\{313B416A-97E7-F3EF-EDFC-A903A8CA4BC2}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK EULA (HKLM-x32\...\{A50A075D-973C-1867-4228-738205D555C8}) (Version: 10.1.19041.685 - Microsoft Corporations) Hidden
Windows SDK Facade Windows WinMD Versioned (HKLM-x32\...\{2D296649-CFBE-CF23-EA8E-E24554187B3F}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Apps (HKLM-x32\...\{A5E4C2C0-D963-40D6-8E5F-60A4DD995331}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Apps Contracts (HKLM-x32\...\{2A8533B3-8D16-67E4-E729-5BB04EDD2FE4}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Apps DirectX x86 Remote (HKLM-x32\...\{0E2FEA3B-C853-DE2A-8A04-BB7D5BF010E0}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Apps Headers (HKLM-x32\...\{8E9DD3FE-3338-8012-81C5-F3AA9B617BAE}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Apps Libs (HKLM-x32\...\{1FBBD022-F751-FE7B-54DF-9FED23892B2F}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Apps Metadata (HKLM-x32\...\{2CFB2180-7C20-5470-4B8A-747512A6AB70}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Apps Tools (HKLM-x32\...\{4AC6C7FB-D848-9D68-DCB0-1376083FEA3A}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK for Windows Store Managed Apps Libs (HKLM-x32\...\{FF7D4409-CF59-34AE-BDC7-8A6146A9BA36}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Modern Non-Versioned Developer Tools (HKLM-x32\...\{43AA42C2-D292-CF91-6264-63B7A99CDE99}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Modern Versioned Developer Tools (HKLM-x32\...\{FC5A59F8-6BEE-FBB4-C720-47C565A92798}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Redistributables (HKLM-x32\...\{43B3CDF5-CD8F-9A5E-4598-765F8CB27170}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows SDK Signing Tools (HKLM-x32\...\{B62A26BB-90A0-82FB-2DDC-3157ADF07833}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows Software Development Kit - Windows 10.0.19041.685 (HKLM-x32\...\{4591faf1-a2db-4a3d-bfda-aa5a4ebb1587}) (Version: 10.1.19041.685 - Microsoft Corporation)
Windows Team Extension SDK (HKLM-x32\...\{CE7E4A6A-45A2-2968-4B34-D0D4CFCC0E1D}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
Windows Team Extension SDK Contracts (HKLM-x32\...\{5F616EBF-DF09-A2DA-AB66-3A5341FA611C}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{BCF7CA0F-E53C-2A4F-B128-A751EC9A1016}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{B42BF427-AFDB-C00F-DB60-6F51395D74A1}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{3335615C-ABEB-960E-2226-4274CD28E046}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{216D5F47-257D-6284-5849-B51037875EFA}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{443FF51E-16C3-F23B-18FC-0D1D66024B0B}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{15E29AFF-CB19-A20B-9A81-B0765A63115F}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{FF2B49B7-0254-3D6A-4BE0-EF4C59DBCC2B}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{0AF3B821-474B-1885-473A-6E3FB4F1CF71}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{8832F8ED-1035-9ABE-FD73-4E5ABAA84A5C}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden
 
Packages:
=========
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.40028.0_x64__0a9344xs7nr4m [2024-01-27] (Advanced Micro Devices Inc.) [Startup Task]
DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.12.0.0_x64__t5j2fzbtdg37r [2024-01-27] (DTS, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-12-28] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2024-01-27] (Realtek Semiconductor Corp)
WinDbg -> C:\Program Files\WindowsApps\Microsoft.WinDbg_1.2308.2002.0_x64__8wekyb3d8bbwe [2024-01-11] (Microsoft Corporation)
 
==================== Custom CLSID (Whitelisted): ==============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2890305830-4224058196-3671865366-1001_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 ->  => No File
CustomCLSID: HKU\S-1-5-21-2890305830-4224058196-3671865366-1001_Classes\CLSID\{BEA218D2-6950-497B-9434-61683EC065FE}\InprocServer32 -> C:\Users\user\AppData\Local\Programs\Python\Launcher\pyshellext.amd64.dll (Python Software Foundation -> Python Software Foundation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-01-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-09-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvacig.inf_amd64_d08bf1f458ca2ea0\nvshext.dll [2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-01-20] (Malwarebytes Inc. -> Malwarebytes)
 
==================== Codecs (Whitelisted) ====================
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miniconda3 (64-bit)\Anaconda Prompt (miniconda).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\user\pinokio\bin\miniconda\Scripts\activate.bat C:\Users\user\pinokio\bin\miniconda
 
==================== Loaded Modules (Whitelisted) =============
 
2024-01-06 17:29 - 2012-08-21 16:07 - 000074240 _____ () [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\HP1100PP.DLL
2024-01-20 15:51 - 2023-06-20 09:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
 
==================== Alternate Data Streams (Whitelisted) ========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\Users\user\Desktop\7z2301-x64.exe:MBAM.Zone.Identifier [50]
AlternateDataStreams: C:\Users\user\Desktop\ESETSirefefCleaner.exe:MBAM.Zone.Identifier [282]
AlternateDataStreams: C:\Users\user\Desktop\nmap-7.94-setup.exe:MBAM.Zone.Identifier [50]
AlternateDataStreams: C:\Users\user\Desktop\OpenArk64.exe:MBAM.Zone.Identifier [642]
AlternateDataStreams: C:\Users\user\Desktop\OperaSetup.exe:MBAM.Zone.Identifier [50]
AlternateDataStreams: C:\Users\user\Desktop\python-3.12.1-amd64.exe:MBAM.Zone.Identifier [50]
AlternateDataStreams: C:\Users\user\Desktop\SUPERAntiSpyware.exe:MBAM.Zone.Identifier [50]
AlternateDataStreams: C:\Users\user\Downloads\sEraser.exe:MBAM.Zone.Identifier [168]
 
==================== Safe Mode (Whitelisted) ==================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
==================== Association (Whitelisted) =================
 
==================== Internet Explorer (Whitelisted) ==========
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKU\S-1-5-21-2890305830-4224058196-3671865366-500\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2890305830-4224058196-3671865366-500\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-2890305830-4224058196-3671865366-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKU\S-1-5-80-3871198407-3985681096-187537395-327373503-1498934226\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-80-3871198407-3985681096-187537395-327373503-1498934226\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
URLSearchHook: HKU\S-1-5-21-2890305830-4224058196-3671865366-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-2890305830-4224058196-3671865366-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-2890305830-4224058196-3671865366-500 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-2890305830-4224058196-3671865366-500 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-80-3871198407-3985681096-187537395-327373503-1498934226 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-80-3871198407-3985681096-187537395-327373503-1498934226 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-2890305830-4224058196-3671865366-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-2890305830-4224058196-3671865366-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2023-12-17] (Microsoft Windows -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2021-06-05] (Microsoft Windows -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe
 
==================== Hosts content: =========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2021-06-05 13:08 - 2024-01-23 00:51 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1       localhost
 
==================== Other Areas ===========================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %SystemRoot%\system32;%SystemRoot%;
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2890305830-4224058196-3671865366-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-3871198407-3985681096-187537395-327373503-1498934226\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 62.179.1.61 - 62.179.1.63
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(If an entry is included in the fixlist, it will be removed.)
 
HKLM\...\StartupApproved\Run32: => "Lightshot"
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2890305830-4224058196-3671865366-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"
 
==================== FirewallRules (Whitelisted) ================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{3F165590-748F-4BC8-8AFF-B28878693318}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A2C41793-658B-4D6F-852F-8EAC9083A17A}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AF80CC6A-F53D-4485-86C8-6AD4DF375A5B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8BEC08EB-956E-4CB5-905C-A4FDA3D4048D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{0F197852-6EAB-4C00-85B9-08EB355FA9F7}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Allow) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [UDP Query User{CB6788F4-465C-47C7-A07D-F7FA9AB3932B}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Allow) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [TCP Query User{9818C261-C40A-4A6D-83A4-9E91C053F0D0}C:\windows\system32\netsh.exe] => (Allow) C:\windows\system32\netsh.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{E1A6D3EA-EEA6-4770-AD79-520695CE07D1}C:\windows\system32\netsh.exe] => (Allow) C:\windows\system32\netsh.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{7757E0F7-9590-4C0C-BBE1-67C91B5B1474}C:\program files\unity\hub\editor\2022.3.15f1\editor\unity.exe] => (Allow) C:\program files\unity\hub\editor\2022.3.15f1\editor\unity.exe (Unity Technologies ApS -> Unity Technologies)
FirewallRules: [UDP Query User{4AB61DFA-1EE7-40A8-8377-CD25F0EC0502}C:\program files\unity\hub\editor\2022.3.15f1\editor\unity.exe] => (Allow) C:\program files\unity\hub\editor\2022.3.15f1\editor\unity.exe (Unity Technologies ApS -> Unity Technologies)
FirewallRules: [TCP Query User{B7194C63-19F3-4ADA-A966-4552A559C835}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{F3E8946E-6ACE-4AF5-A70A-C97CD00BEA64}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5CD8571B-F215-4CD0-8809-D9C46D4B6504}] => (Allow) C:\Users\user\AppData\Local\Programs\Opera\106.0.4998.52\opera.exe => No File
FirewallRules: [{7149E4BB-9938-46EF-BA0C-F13C29DC1792}] => (Allow) C:\op\106.0.4998.52\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{13FA1E56-FAA4-485E-89AF-BD4BE2F714DE}C:\op\opera.exe] => (Block) C:\op\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{C180A87F-711B-45EE-BAC9-0BB55FB3366B}C:\op\opera.exe] => (Block) C:\op\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{F654F5FC-CAF9-4915-AA2E-03F6317A60CC}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [TCP Query User{89805CE3-D121-485E-948B-0421FDE465A5}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E0B6ECF5-8053-4564-858C-968A78CFE898}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A2250D39-A43B-48CB-A75E-09327BB67634}C:\op\opera.exe] => (Block) C:\op\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{F000DCA1-CCA3-459D-AFD1-16B8B5D2175B}C:\op\opera.exe] => (Block) C:\op\opera.exe (Opera Norway AS -> Opera Software)
 
==================== Restore Points =========================
 
Could not list restore points
Check "winmgmt" service or repair WMI.
 
 
==================== Faulty Device Manager Devices ============
 
 
==================== Event log errors: ========================
 
Application errors:
==================
Error: (01/27/2024 06:34:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: svchost.exe_wscsvc, wersja: 10.0.22000.527, sygnatura czasowa: 0xe6f2ec65
Nazwa modułu powodującego błąd: wscsvc.dll, wersja: 10.0.22000.2124, sygnatura czasowa: 0x51a54780
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0000000000019851
Identyfikator procesu powodującego błąd: 0x223c
Godzina uruchomienia aplikacji powodującej błąd: 0x01da50e27e717edf
Ścieżka aplikacji powodującej błąd: C:\Windows\System32\svchost.exe
Ścieżka modułu powodującego błąd: c:\windows\system32\wscsvc.dll
Identyfikator raportu: 1d91eee6-ee6d-4579-977e-9687aaf06f52
Pełna nazwa pakietu powodującego błąd: 
Identyfikator aplikacji względem pakietu powodującego błąd:
 
Error: (01/27/2024 06:29:27 AM) (Source: LansweeperLocalDbService) (EventID: 0) (User: )
Description: Nie można uruchomić usługi. Nieprawidłowe dojście
 
Error: (01/27/2024 06:29:27 AM) (Source: LansweeperLocalDbService) (EventID: 0) (User: )
Description: Nie można uruchomić usługi. System.ApplicationException:  not found. Is Microsoft SQL Server 2014 Express LocalDB installed?
   w LansweeperLocalDbService.LocalDbManager.HostDatabase()
   w LansweeperLocalDbService.LansweeperLocalDbService.OnStart(String[] )
   w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (01/27/2024 06:29:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: svchost.exe_wscsvc, wersja: 10.0.22000.527, sygnatura czasowa: 0xe6f2ec65
Nazwa modułu powodującego błąd: wscsvc.dll, wersja: 10.0.22000.2124, sygnatura czasowa: 0x51a54780
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0000000000019851
Identyfikator procesu powodującego błąd: 0x11f0
Godzina uruchomienia aplikacji powodującej błąd: 0x01da50e1cb143cff
Ścieżka aplikacji powodującej błąd: C:\Windows\System32\svchost.exe
Ścieżka modułu powodującego błąd: c:\windows\system32\wscsvc.dll
Identyfikator raportu: 198a8fc0-5c9f-424a-bd82-a672b9aa6274
Pełna nazwa pakietu powodującego błąd: 
Identyfikator aplikacji względem pakietu powodującego błąd:
 
Error: (01/27/2024 06:27:37 AM) (Source: LansweeperLocalDbService) (EventID: 0) (User: )
Description: Nie można uruchomić usługi. Nieprawidłowe dojście
 
Error: (01/27/2024 06:27:37 AM) (Source: LansweeperLocalDbService) (EventID: 0) (User: )
Description: Nie można uruchomić usługi. System.ApplicationException:  not found. Is Microsoft SQL Server 2014 Express LocalDB installed?
   w LansweeperLocalDbService.LocalDbManager.HostDatabase()
   w LansweeperLocalDbService.LansweeperLocalDbService.OnStart(String[] )
   w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (01/27/2024 06:27:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: svchost.exe_wscsvc, wersja: 10.0.22000.527, sygnatura czasowa: 0xe6f2ec65
Nazwa modułu powodującego błąd: wscsvc.dll, wersja: 10.0.22000.2124, sygnatura czasowa: 0x51a54780
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0000000000019851
Identyfikator procesu powodującego błąd: 0x5ec
Godzina uruchomienia aplikacji powodującej błąd: 0x01da50e182ea9110
Ścieżka aplikacji powodującej błąd: C:\Windows\System32\svchost.exe
Ścieżka modułu powodującego błąd: c:\windows\system32\wscsvc.dll
Identyfikator raportu: 4c951025-10a7-48cb-a784-fbb269db49ca
Pełna nazwa pakietu powodującego błąd: 
Identyfikator aplikacji względem pakietu powodującego błąd:
 
Error: (01/27/2024 06:25:36 AM) (Source: CertEnroll) (EventID: 86) (User: ZARZĄDZANIE NT)
Description: Inicjowanie rejestracji certyfikatu SCEP dla elementu WORKGROUP\DESKTOP-7PHMD89$ za pośrednictwem elementu https://AMD-KeyId-52...plates/Aik/scepnie powiodło się:
 
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Sat, 27 Jan 2024 05:25:42 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 287a9b99-af38-4e1e-998f-f23a202766a3
 
Metoda: GET(344ms)
Etap: GetCACaps
Nieznaleziony (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
 
 
System errors:
=============
Error: (01/27/2024 06:34:28 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa Centrum zabezpieczeń niespodziewanie zakończyła pracę. Wystąpiło to razy: 3.
 
Error: (01/27/2024 06:31:15 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa Lansweeper Server niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
 
Error: (01/27/2024 06:29:27 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Centrum zabezpieczeń niespodziewanie zakończyła pracę. Wystąpiło to razy: 2. W przeciągu 300000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
 
Error: (01/27/2024 06:27:26 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Centrum zabezpieczeń niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
 
Error: (01/27/2024 06:27:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa IIS Express service niespodziewanie zakończyła pracę. Wystąpiło to razy: 3.
 
Error: (01/27/2024 06:26:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa IIS Express service niespodziewanie zakończyła pracę. Wystąpiło to razy: 2. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
 
Error: (01/27/2024 06:25:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa DtsApo4Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
 
Error: (01/27/2024 06:25:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa IIS Express service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.
 
 
Windows Defender:
================
Date: 2024-01-27 07:18:45
Description: 
Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem.
Identyfikator skanowania: {658C1D52-581F-4C02-BB9F-D29DCB207928}
Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
Parametry skanowania: Szybkie skanowanie
Użytkownik: ZARZĄDZANIE NT\SYSTEM
 
Date: 2024-01-27 07:12:51
Description: 
Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem.
Identyfikator skanowania: {A500BD09-8637-42E1-8C79-F73F1C15B85A}
Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
Parametry skanowania: Szybkie skanowanie
Użytkownik: ZARZĄDZANIE NT\SYSTEM
 
Date: 2024-01-27 06:22:03
Description: 
Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem.
Identyfikator skanowania: {9630BF96-CD36-4B39-A570-34379B6F2ECB}
Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
Parametry skanowania: Szybkie skanowanie
Użytkownik: ZARZĄDZANIE NT\SYSTEM
 
Date: 2024-01-27 05:01:48
Description: 
Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem.
Identyfikator skanowania: {59A04638-196C-4281-BB76-F3FAEFE5FDB9}
Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
Parametry skanowania: Szybkie skanowanie
Użytkownik: ZARZĄDZANIE NT\SYSTEM
 
Date: 2024-01-27 04:51:43
Description: 
Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem.
Identyfikator skanowania: {C8FF1E5D-E7C9-4A4D-8944-649755041F21}
Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
Parametry skanowania: Szybkie skanowanie
Użytkownik: ZARZĄDZANIE NT\SYSTEM
Event[0]
 
Date: 2024-01-27 01:35:51
Description: 
Agent ochrony w czasie rzeczywistym produktu Program antywirusowy Microsoft Defender wykrył błąd i jego uruchomienie nie powiodło się.
Funkcja: Przy dostępie
Kod błędu: 0x8007043c
Opis błędu: Tej usługi nie można uruchomić w trybie awaryjnym 
Przyczyna: Analiza zabezpieczeń dla oprogramowania chroniącego przed złośliwym kodem przestała działać z nieznanej przyczyny. W niektórych przypadkach problem można rozwiązać, uruchamiając ponownie usługę.
 
Date: 2024-01-25 02:20:25
Description: 
Agent ochrony w czasie rzeczywistym produktu Program antywirusowy Microsoft Defender wykrył błąd i jego uruchomienie nie powiodło się.
Funkcja: Przy dostępie
Kod błędu: 0x8007043c
Opis błędu: Tej usługi nie można uruchomić w trybie awaryjnym 
Przyczyna: Analiza zabezpieczeń dla oprogramowania chroniącego przed złośliwym kodem przestała działać z nieznanej przyczyny. W niektórych przypadkach problem można rozwiązać, uruchamiając ponownie usługę.
 
CodeIntegrity:
===============
Date: 2024-01-27 06:34:28
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\fcon.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2024-01-27 06:25:13
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\SUPERAntiSpyware\sasdifsv64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
Date: 2024-01-27 06:25:12
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\SUPERAntiSpyware\saskutil64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
==================== Memory info =========================== 
 
BIOS: Insyde Corp. V1.10 08/02/2022
Motherboard: CZ Scala_CAS
Processor: AMD Ryzen 7 5800H with Radeon Graphics 
Percentage of memory in use: 30%
Total physical RAM: 15724.06 MB
Available physical RAM: 10993.45 MB
Total Virtual: 22380.06 MB
Available Virtual: 15938.05 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:953.15 GB) (Free:622.42 GB) NTFS
 
\\?\Volume{3de64607-c1ef-4f3f-97e0-1c96b81ba17b}\ () (Fixed) (Total:0.6 GB) (Free:0.59 GB) NTFS
\\?\Volume{fecc6817-1627-44eb-835e-56d0045257a0}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Partition Table ====================
 
==========================================================
Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of Addition.txt =======================

Users shortcut scan result (x64) Version: 25.01.2024
Ran by user (27-01-2024 07:23:47)
Running from C:\Users\user\Desktop
Boot Mode: Normal
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
 
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\Links\Desktop.lnk -> C:\Users\user\Desktop ()
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\Links\Downloads.lnk -> C:\Users\user\Downloads ()
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\SendTo\Transfer plików Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity Hub.lnk -> C:\Program Files\Unity Hub\Unity Hub.exe (Unity Technologies Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk -> C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe (Microsoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows Software Development Kit\Documentation for Desktop Apps.lnk -> C:\Program Files (x86)\Windows Kits\10\Shortcuts\DesktopDevCenterLearn.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows Software Development Kit\Documentation for Windows Store Apps.lnk -> C:\Program Files (x86)\Windows Kits\10\Shortcuts\WindowsStoreAppDevCenterLearn.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows Software Development Kit\Samples for Desktop Apps.lnk -> C:\Program Files (x86)\Windows Kits\10\Shortcuts\DesktopDevCenterSamples.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows Software Development Kit\Samples for Windows Store Apps.lnk -> C:\Program Files (x86)\Windows Kits\10\Shortcuts\WindowsStoreAppDevCenterSamples.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows Software Development Kit\Tools for Desktop Apps.lnk -> C:\Program Files (x86)\Windows Kits\10\Shortcuts\DesktopDevCenterToolsDocumentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows Software Development Kit\Tools for Windows Store Apps.lnk -> C:\Program Files (x86)\Windows Kits\10\Shortcuts\WindowsStoreAppDevCenterToolsDocumentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows App Certification Kit\Windows App Cert Kit.lnk -> C:\Program Files (x86)\Windows Kits\10\App Certification Kit\appcertui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (X86)\Debugging Help.lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\debugger.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (X86)\Global Flags (X86).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\gflags.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (X86)\WinDbg (X86).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\windbg.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (X64)\Debugging Help.lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\debugger.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (X64)\Global Flags (X64).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\gflags.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (X64)\WinDbg (X64).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\windbg.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (ARM64)\Global Flags (ARM64).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\arm64\gflags.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (ARM64)\WinDbg (ARM64).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\arm64\windbg.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (ARM)\Debugging Help.lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\arm\debugger.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (ARM)\Global Flags (ARM).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\arm\gflags.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Debugging Tools for Windows (ARM)\WinDbg (ARM).lnk -> C:\Program Files (x86)\Windows Kits\10\Debuggers\arm\windbg.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\bin\Windows Kits Feedback.lnk -> C:\Program Files (x86)\Windows Kits\10\bin\microsoft.windowskits.feedback.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Application Verifier (X86)\Application Verifier (WOW).lnk -> C:\Windows\SysWOW64\appverif.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Application Verifier (X64)\Application Verifier (X64).lnk -> C:\Windows\System32\appverif.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Application Verifier (X64)\Application Verifier Help.lnk -> C:\Windows\System32\appverif.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2022.3.15f1\Report a Problem with Unity.lnk -> C:\Program Files\Unity\Hub\Editor\2022.3.15f1\Editor\BugReporter\UnityBugReporter.exe (Unity Technologies ApS)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2022.3.15f1\Unity.lnk -> C:\Program Files\Unity\Hub\Editor\2022.3.15f1\Editor\Unity.exe (Unity Technologies)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot\Dezinstalacja aplikacji Lightshot.lnk -> C:\Program Files (x86)\Skillbrains\lightshot\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot\Lightshot.lnk -> C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lansweeper\Lansweeper Start.lnk -> C:\Program Files (x86)\Lansweeper\Start\Lansweeper_Start.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip File Manager.lnk -> C:\Program Files\7-Zip\7zFM.exe (Igor Pavlov)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip Help.lnk -> C:\Program Files\7-Zip\7-zip.chm ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Public\Desktop\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\Users\Public\Desktop\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Public\Desktop\Unity 2022.3.15f1.lnk -> C:\Program Files\Unity\Hub\Editor\2022.3.15f1\Editor\Unity.exe (Unity Technologies)
Shortcut: C:\Users\Public\Desktop\Unity Hub.lnk -> C:\Program Files\Unity Hub\Unity Hub.exe (Unity Technologies Inc.)
Shortcut: C:\Users\user\Links\Desktop.lnk -> C:\Users\user\Desktop ()
Shortcut: C:\Users\user\Links\Downloads.lnk -> C:\Users\user\Downloads ()
Shortcut: C:\Users\user\Desktop\Pinokio.lnk -> C:\Users\user\AppData\Local\Programs\Pinokio\Pinokio.exe (hxxps://twitter.com/cocktailpeanut)
Shortcut: C:\Users\user\Desktop\Przeglądarka Opera.lnk -> C:\op\launcher.exe (Opera Software)
Shortcut: C:\Users\user\Desktop\SUPERAntiSpyware Free Edition.lnk -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
Shortcut: C:\Users\user\Desktop\Ubisoft Connect.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft)
Shortcut: C:\Users\user\Desktop\Unity 2022.3.15f1.lnk -> C:\Program Files\Unity\Hub\Editor\2022.3.15f1\Editor\Unity.exe (Unity Technologies)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinokio.lnk -> C:\Users\user\AppData\Local\Programs\Pinokio\Pinokio.exe (hxxps://twitter.com/cocktailpeanut)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk -> C:\op\launcher.exe (Opera Software)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uninstall.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe (Ubisoft)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Ubisoft Connect.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Uninstall.lnk -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Alternate Start.lnk -> C:\Program Files\SUPERAntiSpyware\RUNSAS.EXE (SUPERAdBlocker.com and SUPERAntiSpyware.com)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Free Edition.lnk -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12\Python 3.12 (64-bit).lnk -> C:\Users\user\AppData\Local\Programs\Python\Python312\python.exe (Python Software Foundation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12\Python 3.12 Manuals (64-bit).lnk -> C:\Users\user\AppData\Local\Programs\Python\Python312\Doc\html\index.html ()
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\SendTo\Transfer plików Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Przeglądarka Opera.lnk -> C:\op\launcher.exe (Opera Software)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d356105fac5527ef\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
 
 
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\Developer Command Prompt for VS 2019.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Microsoft Visual Studio\2019\BuildTools\Common7\Tools\VsDevCmd.bat"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\VC\x64 Native Tools Command Prompt for VS 2019.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Microsoft Visual Studio\2019\BuildTools\VC\Auxiliary\Build\vcvars64.bat"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\VC\x64_x86 Cross Tools Command Prompt for VS 2019.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Microsoft Visual Studio\2019\BuildTools\VC\Auxiliary\Build\vcvarsamd64_x86.bat"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\VC\x86 Native Tools Command Prompt for VS 2019.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Microsoft Visual Studio\2019\BuildTools\VC\Auxiliary\Build\vcvars32.bat"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\VC\x86_x64 Cross Tools Command Prompt for VS 2019.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Microsoft Visual Studio\2019\BuildTools\VC\Auxiliary\Build\vcvarsx86_amd64.bat"
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miniconda3 (64-bit)\Anaconda Prompt (miniconda).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\user\pinokio\bin\miniconda\Scripts\activate.bat C:\Users\user\pinokio\bin\miniconda
 
 
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAbout
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Administrator.DESKTOP-7PHMD89\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits\Windows Software Development Kit\Windows Software Development Kit.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "C:\Program Files (x86)\Windows Kits\10\"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\Debuggable Package Manager.lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -Command "& { Import-Module Appx; Import-Module .\AppxDebug.dll; Show-AppxDebug}"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\Developer PowerShell for VS 2019.lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -noe -c "&{Import-Module """C:\Program Files (x86)\Microsoft Visual Studio\2019\BuildTools\Common7\Tools\Microsoft.VisualStudio.DevShell.dll"""; Enter-VsDevShell 4f6747f4}"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAbout
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\user\Desktop\Nmap - Zenmap GUI.lnk -> C:\Program Files (x86)\Nmap\zenmap\bin\pythonw.exe (Python Software Foundation) -> -c "from zenmapGUI.App import run;run()"
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware) ->  /register
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12\IDLE (Python 3.12 64-bit).lnk -> C:\Users\user\AppData\Local\Programs\Python\Python312\pythonw.exe (Python Software Foundation) -> "C:\Users\user\AppData\Local\Programs\Python\Python312\Lib\idlelib\idle.pyw"
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12\Python 3.12 Module Docs (64-bit).lnk -> C:\Users\user\AppData\Local\Programs\Python\Python312\python.exe (Python Software Foundation) -> -m pydoc -b
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nmap\Nmap - Zenmap GUI.lnk -> C:\Program Files (x86)\Nmap\zenmap\bin\pythonw.exe (Python Software Foundation) -> -c "from zenmapGUI.App import run;run()"
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miniconda3 (64-bit)\Anaconda Powershell Prompt (miniconda).lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -ExecutionPolicy ByPass -NoExit -Command "& 'C:\Users\user\pinokio\bin\miniconda\shell\condabin\conda-hook.ps1' ; conda activate 'C:\Users\user\pinokio\bin\miniconda' "
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Git Bash.lnk -> C:\Users\user\pinokio\bin\miniconda\python.exe (Python Software Foundation) -> C:\Users\user\pinokio\bin\miniconda\cwp.py C:\Users\user\pinokio\bin\miniconda C:\Users\user\pinokio\bin\miniconda\Library\bin\bash.exe --login -i --
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAbout
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\user\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
 
 
InternetURL: C:\Users\Administrator\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Administrator.DESKTOP-7PHMD89\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2022.3.15f1\Unity Release Notes.url -> URL: hxxp://unity3d.com/whatsnew.html
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot\Learn More.url -> URL: hxxp://app.prntscr.com/learnmore.html
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot\Screenshot history.url -> URL: hxxp://app.prntscr.com/about-gallery.html
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lansweeper\Lansweeper Knowledgebase.url -> URL: hxxps://www.lansweeper.com/kb/
InternetURL: C:\Users\user\pinokio\bin\miniconda\pkgs\gettext-0.21.1-h5728263_0\Library\share\gettext\projects\TP\teams.url -> 
InternetURL: C:\Users\user\pinokio\bin\miniconda\pkgs\gettext-0.21.1-h5728263_0\Library\share\gettext\projects\KDE\teams.url -> 
InternetURL: C:\Users\user\pinokio\bin\miniconda\pkgs\gettext-0.21.1-h5728263_0\Library\share\gettext\projects\GNOME\teams.url -> 
InternetURL: C:\Users\user\pinokio\bin\miniconda\Library\share\gettext\projects\TP\teams.url -> 
InternetURL: C:\Users\user\pinokio\bin\miniconda\Library\share\gettext\projects\KDE\teams.url -> 
InternetURL: C:\Users\user\pinokio\bin\miniconda\Library\share\gettext\projects\GNOME\teams.url -> 
InternetURL: C:\Users\user\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\user\Desktop\Counter-Strike 2.url -> URL: steam://rungameid/730
InternetURL: C:\Users\user\Desktop\Far Cry 5.url -> URL: steam://rungameid/552520
InternetURL: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Counter-Strike 2.url -> URL: steam://rungameid/730
InternetURL: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Far Cry 5.url -> URL: steam://rungameid/552520
 
==================== End of Shortcut.txt =============================
 

 


  • 0

Advertisements

#2
RKinner
Posted 27 January 2024 - 08:04 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Looks like you unchecked some or all of the boxes in FRST's Whitelist section and checked some or all of the boxes in the Optional Scan section  That what makes the scan log so complicated.

 

Go in to Settings, Update & Security, Pause Updates for 7 days.  Then reboot

 

The reason I ask you to do that is because there is an update called 22H2 which is not installing on a lot of systems.  The process of downloading, installing and then backing out the update puts a major load on the CPU which slows things down and can even cause it to overheat.  If you already have 22H2 installed then you can skip this step.

 

You have a program called LanSweeper which is causing problems.  I would uninstall it for now.  You can try a new version later.
 
The other source of errors is a windows program so let's check the system files:
 
Download the attached fixlist.txt to the same location as FRST
 
Attached File  fixlist.txt   414bytes   41 downloads
 
Run FRST and press Fix. The fix will run and usually takes about 35 minutes.  On a really slow computer it will time out after 1 hour so be patient.
A fix log will be generated please post that .
 
 
Run FRST again but this time make sure you have all of the boxes in the Whitelist section checked and that only  Addition.txt is checked in the Optional Scan section before you  hit Scan.  Post both logs.
 
I don't see any malware but we can't see everything.  Go to 
Click on One Time Scan.  Download and Save the file then go to the Downloads folder and right click on the file and Run As Admin.  Follow the instructions.  Allow it to quarantine anything it finds.
Does it find anything?
 
If things are still slow then do the following.
Multiple replies are OK.  Best to post a log as you get it.
 
Get Process Explorer
 
 
Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  
View and check Show Processes From All Users 
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.
 
 
Copy the next 2 lines:
 
TASKLIST /SVC  > \junk.txt
notepad \junk.txt
 
Open an Elevated Command Prompt:
Win 7: Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator
 
Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply. 
 
 
CrystalDiskInfo:
 
 
 
 
 
 
Scroll down a bit and you will see a picture of a black window with Samsung SSD in it.  Underneath the black window 
is a button that says Vista+.  That's the button you need to use to download the installer.  
Save the file then go to the download folder and right click on the file and run as admin.  
The program will install and then start up.   Once it reads the drives you just hit File then Save Text.  
Save the file to your desktop and then attach it or open it then copy and paste the text to a reply.  
 
 
Latency Monitor:
 
Go to
 
 
Scroll down to
 
System Monitoring Tools
 
and then find
 
LatencyMon 7.0 (or it may be a higher number if they update)
 
Click on Download free home edition
 
Save it then right click and Run As Admin.  It will install and then start the program.  
It will tell you to click on the Start button but there isn't one.  
Instead click on the green arrowhead (looks like a Play button).   Let it run for at least 20 seconds.  Then hit the red box to stop it. 
 
Edit, Copy Report text to Clipboard then move to a REPLY and Ctrl + v to paste the text into a reply.  
 
 
Click on the Drivers Tab.  Click on the column header for "Total execution (ms)" once or twice until the biggest numbers are at the top of the column then take a screen shot (save as type jpg) and attach it.  
Click on the Processes tab then click on the  "Hard Pagefaults" column header once or twice until the big numbers are at the top of the column.  Take a screen shot (save as type jpg) and attach it. 
 
To attach a file:
First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.
 
Only files with .txt, .jpg or .zip are allowed.

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP