PC keeps freezing when playing games

  • Hi there and welcome to PC Help Forum (PCHF), a more effective way to get the Tech Support you need!
    We have Experts in all areas of Tech, including Malware Removal, Crash Fixing and BSOD's , Microsoft Windows, Computer DIY and PC Hardware, Networking, Gaming, Tablets and iPads, General and Specific Software Support and so much more.

    Why not Click Here To Sign Up and start enjoying great FREE Tech Support.

    This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Welcome to our Community
Wanting to join the rest of our members? Feel free to sign up today.
Sign up
Status
Not open for further replies.

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
My computer keeps permanently freezing when playing games, at seemingly random times, and I have to manually power off the PC. It's been happening since a few weeks, and I still haven't figured it out why.
Things I tried already:
  • Updating drivers (cpu, bios, gpu, sound, lan)
  • Checking temperatures (all fine)
  • Checking event viewer (found nothing before the time of freeze)
Do you have any idea on how to fix it? Thanks for the help in advance.
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
Step 1:

Security Check Scan.




  • Download Security Check to your desktop.
  • Right click it run as administrator.
  • When the program completes, the tool will automatically open a log file.
  • Please post that log here in your next post.

Step 2:


Adware Cleaner Scan.


Please download AdwCleaner by Xplode onto your desktop.




  • Close all open programs and internet browsers.
  • Right Click on adwcleaner.exe and run as admin to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

Step 3:

HijackThis.



1- Please click HERE to download HijackThis.
2- Run the program.
3- Click on the Main Menu button if not already there.
4- Select Do a system scan and save a logfile.
5- Copy paste the log here.


Step 4:


Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go post the result.
 

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
Okay, I was thinking about it and looked a bit further, it might actually not be a scam site, you just make it really look like one (with typical redflags) :)
I apologize for my last comment, I can't edit it, you can remove it. I'll post the logs later.
By the way, my antivirus recognized your version of Security Check as a trojan, I had no trouble when I downloaded another version.
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
my antivirus recognized your version of Security Check as a trojan,

I assure you that it is not a virus. Please just disable your antivirus to run it. You can look through my post, I am not here to add malware to peoples machines I remove it. :)

Previous post redacted. :)
 

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
I'm using Hungarian language on Windows, I hope that's not a problem. If it is, tell me, and I'll set it to English and run these again.

SysCheck:

SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17]
WebSite: www.safezone.cc
DateLog: 16.06.2019 16:11:49
Path starting: C:\Users\User\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: User
VersionXML: 6.56is-15.06.2019
___________________________________________________________________________

Windows 10(6.3.17134) (x64) Professional Release: 1803 Lang: 040E
Installation date OS: 26.05.2018 05:21:13
LicenseStatus: Windows(R), Professional edition Volume activation will expire : 23342 minutes
LicenseStatus: Office 16, Office16ProPlusVL_KMS_Client edition Volume activation will expire : 23342 minutes
Boot Mode: Normal
Default Browser: C:\Program Files\Internet Explorer\IEXPLORE.EXE
SystemDrive: C: FS: [NTFS] Capacity: [111.3 Gb] Used: [102.5 Gb] Free: [8.8 Gb]
------------------------------- [ Windows ] -------------------------------
Internet Explorer 11.829.17134.0
User Account Control enabled
The elevation prompt for administrators disabled
^It is recommended to enable (default): Win+R typing UserAccountControlSettings and Enter^
Biztonsági központ (wscsvc) - The service is running
Távoli beállításjegyzék (RemoteRegistry) - The service has stopped
SSDP kereső (SSDPSRV) - The service is running
Távoli asztali szolgáltatások (TermService) - The service has stopped
Rendszerfelügyeleti webszolgáltatások (WinRM) - The service has stopped
------------------------------ [ MS Office ] ------------------------------
Microsoft Office 2016 x86 v.16.0.4266.1001
---------------------------- [ Antivirus_WMI ] ----------------------------
Windows Defender (enabled and up to date)
--------------------------- [ FirewallWindows ] ---------------------------
Windows Defender tűzfal (mpssvc) - The service is running
--------------------------- [ AntiSpyware_WMI ] ---------------------------
Windows Defender (enabled and up to date)
---------------------- [ AntiVirusFirewallInstall ] -----------------------
Bitdefender Agent v.1.0.1
--------------------------- [ OtherUtilities ] ----------------------------
Git version 2.16.2 v.2.16.2 Warning! Download Update
NVIDIA GeForce Experience 3.19.0.94 v.3.19.0.94
TeamViewer 13 v.13.2.26558 Warning! Download Update
VLC media player v.3.0.1 Warning! Download Update
TeamViewer 13 (TeamViewer) - The service is running
-------------------------------- [ Arch ] ---------------------------------
7-Zip 18.00 beta (x64) v.18.00 beta Warning! This software is no longer supported. Uninstall old version, download and install new one.
WinRAR 5.70 (64-bit) v.5.70.0 Warning! Download Update
7-Zip 18.01 (x64 edition) v.18.01.00.0 Warning! Download Update
Uninstall old version and install new one.
--------------------------------- [ IM ] ----------------------------------
Discord v.0.0.305
--------------------------------- [ P2P ] ---------------------------------
µTorrent v.3.5.5.45271 Warning! P2P-client.
-------------------------------- [ Java ] ---------------------------------
Java(TM) SE Development Kit 11.0.1 (64-bit) v.11.0.1.0
Java 8 Update 161 v.8.0.1610.12 Warning! Download Update
Uninstall old version and install new one (jre-8u211-windows-i586.exe).
Java 7 Update 21 v.7.0.210 Warning! This software is no longer supported. Please uninstall it and use Java SE 8 (jre-8u211-windows-i586.exe).
--------------------------- [ AdobeProduction ] ---------------------------
Adobe Acrobat Reader DC - Hungarian v.19.010.20098 Warning! Download Update
^Please run Acrobat Reader DC and go Help - Check for updates...^
------------------------------- [ Browser ] -------------------------------
Google Chrome v.74.0.3729.169 Warning! Download Update
------------------ [ AntivirusFirewallProcessServices ] -------------------
ProductAgentService (ProductAgentService) - The service is running
C:\Program Files\Bitdefender Agent\ProductAgentService.exe v.23.0.8.130
C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe v.4.18.1905.4
C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe v.4.18.1905.4
C:\Program Files\Windows Defender\MSASCuiL.exe v.4.13.17134.1
Windows Defender víruskereső szolgáltatás (WinDefend) - The service is running
A Windows Defender víruskereső hálózatvizsgáló szolgáltatása (WdNisSvc) - The service is running
----------------------------- [ End of Log ] ------------------------------





MINITB:

MiniToolBox by Farbar Version: 17-06-2016
Ran by User (administrator) on 16-06-2019 at 16:22:26
Running from "C:\Users\User\Downloads"
Microsoft Windows 10 Pro (X64)
Model: To Be Filled By O.E.M. Manufacturer: To Be Filled By O.E.M.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
0.0.0.0 91.206.200.221
0.0.0.0 bidtraffic.ru
0.0.0.0 bir3yka.narod2.ru
0.0.0.0 enet.vn.ua
0.0.0.0 rax.ru
0.0.0.0 yandex.ru
0.0.0.0 ukraine.com.ua
========================= IP Configuration: ================================

LogMeIn Hamachi Virtual Ethernet Adapter = Hamachi (Connected)
Realtek PCIe GbE Family Controller = Ethernet 3 (Connected)
TAP-Windows Adapter V9 = Ethernet 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="Ethernet (kernel-hibakeres‹)" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Hamachi" forwarding=enabled advertise=enabled metric=9000 nud=enabled ignoredefaultroutes=disabled
set subinterface interface= subinterface=ethernet_32770 mtu=1404


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : DESKTOP-NQ7JARN
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : LogMeIn Hamachi Virtual Ethernet Adapter
Physical Address. . . . . . . . . : 7A-79-19-33-54-25
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::1933:5425(Preferred)
Link-local IPv6 Address . . . . . : fe80::357f:666f:dd65:f812%8(Preferred)
Default Gateway . . . . . . . . . : 2620:9b::1900:1
25.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 117592306
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-21-FA-76-A2-F0-79-59-63-F1-AA
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Windows Adapter V9
Physical Address. . . . . . . . . : 00-FF-00-BB-3D-5D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet 3:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek PCIe GbE Family Controller #2
Physical Address. . . . . . . . . : 70-85-C2-8E-79-91
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::509c:5f16:ec33:e390%17(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.206(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 2019. jŁnius 16., vas rnap 16:18:59
Lease Expires . . . . . . . . . . : 2019. jŁnius 16., vas rnap 17:18:59
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 577799618
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-21-FA-76-A2-F0-79-59-63-F1-AA
DNS Servers . . . . . . . . . . . : 213.46.246.53
213.46.246.54
NetBIOS over Tcpip. . . . . . . . : Enabled
Server: hu-bud02a-dns03.chello.hu
Address: 213.46.246.53

Name: google.com
Addresses: 2a00:1450:400d:803::200e
216.58.214.238


Pinging google.com [172.217.20.14] with 32 bytes of data:
Reply from 172.217.20.14: bytes=32 time=12ms TTL=55
Reply from 172.217.20.14: bytes=32 time=13ms TTL=55

Ping statistics for 172.217.20.14:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 12ms, Maximum = 13ms, Average = 12ms
Server: hu-bud02a-dns03.chello.hu
Address: 213.46.246.53

Name: yahoo.com
Addresses: 2001:4998:44:41d::4
2001:4998:c:1023::4
2001:4998:c:1023::5
2001:4998:58:1836::10
2001:4998:58:1836::11
2001:4998:44:41d::3
72.30.35.10
98.138.219.231
98.137.246.7
98.138.219.232
72.30.35.9
98.137.246.8


Pinging yahoo.com [72.30.35.10] with 32 bytes of data:
Reply from 72.30.35.10: bytes=32 time=129ms TTL=50
Reply from 72.30.35.10: bytes=32 time=127ms TTL=50

Ping statistics for 72.30.35.10:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 127ms, Maximum = 129ms, Average = 128ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
8...7a 79 19 33 54 25 ......LogMeIn Hamachi Virtual Ethernet Adapter
2...00 ff 00 bb 3d 5d ......TAP-Windows Adapter V9
17...70 85 c2 8e 79 91 ......Realtek PCIe GbE Family Controller #2
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 25.0.0.1 8 9256
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.206 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
192.168.0.0 255.255.255.0 On-link 192.168.0.206 281
192.168.0.206 255.255.255.255 On-link 192.168.0.206 281
192.168.0.255 255.255.255.255 On-link 192.168.0.206 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 8 9256
224.0.0.0 240.0.0.0 On-link 192.168.0.206 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 8 9256
255.255.255.255 255.255.255.255 On-link 192.168.0.206 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 25.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
8 9015 ::/0 2620:9b::1900:1
1 331 ::1/128 On-link
8 271 2620:9b::/64 On-link
8 271 2620:9b::/96 On-link
8 271 2620:9b::1933:5425/128 On-link
8 271 fe80::/64 On-link
17 281 fe80::/64 On-link
8 271 fe80::357f:666f:dd65:f812/128
On-link
17 281 fe80::509c:5f16:ec33:e390/128
On-link
1 331 ff00::/8 On-link
8 271 ff00::/8 On-link
17 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
0 9000 ::/0 2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [24064] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [341920] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67072] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [84992] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [84992] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31232] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [401968] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/16/2019 04:20:26 PM) (Source: Software Protection Platform Service) (User: )
Description: A licencaktiválás (slui.exe) a következő hibakóddal leállt:
hr=0xC004F074
Parancssori argumentumok:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/16/2019 04:20:12 PM) (Source: Application Error) (User: )
Description: A hibát okozó alkalmazás neve: AI Suite II.exe, verzió: 2.0.0.0, időbélyeg: 0x00000000
A hibát okozó modul neve: KERNELBASE.dll, verzió: 10.0.17134.799, időbélyeg: 0x0117c7be
Kivételkód: 0x0eedfade
Hiba pozíciója: 0x00112c92
A hibát okozó folyamat azonosítója: 0x2c8c
A hibát okozó alkalmazás indításának időpontja: 0xAI Suite II.exe0
A hibát okozó alkalmazás elérési útja: AI Suite II.exe1
A hibát okozó modul elérési útja: AI Suite II.exe2
Jelentés azonosítója: AI Suite II.exe3
A hibát okozó csomag teljes neve: AI Suite II.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: AI Suite II.exe5

Error: (06/16/2019 04:19:42 PM) (Source: Application Error) (User: )
Description: A hibát okozó alkalmazás neve: TurboVHelp.exe, verzió: 1.0.1.36, időbélyeg: 0x00000000
A hibát okozó modul neve: KERNELBASE.dll, verzió: 10.0.17134.799, időbélyeg: 0x0117c7be
Kivételkód: 0x0eedfade
Hiba pozíciója: 0x00112c92
A hibát okozó folyamat azonosítója: 0x2448
A hibát okozó alkalmazás indításának időpontja: 0xTurboVHelp.exe0
A hibát okozó alkalmazás elérési útja: TurboVHelp.exe1
A hibát okozó modul elérési útja: TurboVHelp.exe2
Jelentés azonosítója: TurboVHelp.exe3
A hibát okozó csomag teljes neve: TurboVHelp.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: TurboVHelp.exe5

Error: (06/16/2019 04:19:19 PM) (Source: Software Protection Platform Service) (User: )
Description: A licencaktiválás (slui.exe) a következő hibakóddal leállt:
hr=0xC004F074
Parancssori argumentumok:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (06/16/2019 04:19:18 PM) (Source: Software Protection Platform Service) (User: )
Description: A licencaktiválás (slui.exe) a következő hibakóddal leállt:
hr=0xC004F074
Parancssori argumentumok:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/16/2019 03:47:46 PM) (Source: Application Error) (User: )
Description: A hibát okozó alkalmazás neve: AI Suite II.exe, verzió: 2.0.0.0, időbélyeg: 0x00000000
A hibát okozó modul neve: KERNELBASE.dll, verzió: 10.0.17134.799, időbélyeg: 0x0117c7be
Kivételkód: 0x0eedfade
Hiba pozíciója: 0x00112c92
A hibát okozó folyamat azonosítója: 0x26c8
A hibát okozó alkalmazás indításának időpontja: 0xAI Suite II.exe0
A hibát okozó alkalmazás elérési útja: AI Suite II.exe1
A hibát okozó modul elérési útja: AI Suite II.exe2
Jelentés azonosítója: AI Suite II.exe3
A hibát okozó csomag teljes neve: AI Suite II.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: AI Suite II.exe5

Error: (06/16/2019 03:47:16 PM) (Source: Application Error) (User: )
Description: A hibát okozó alkalmazás neve: TurboVHelp.exe, verzió: 1.0.1.36, időbélyeg: 0x00000000
A hibát okozó modul neve: KERNELBASE.dll, verzió: 10.0.17134.799, időbélyeg: 0x0117c7be
Kivételkód: 0x0eedfade
Hiba pozíciója: 0x00112c92
A hibát okozó folyamat azonosítója: 0x1fb8
A hibát okozó alkalmazás indításának időpontja: 0xTurboVHelp.exe0
A hibát okozó alkalmazás elérési útja: TurboVHelp.exe1
A hibát okozó modul elérési útja: TurboVHelp.exe2
Jelentés azonosítója: TurboVHelp.exe3
A hibát okozó csomag teljes neve: TurboVHelp.exe4
A hibát okozó csomag relatív alkalmazásazonosítója: TurboVHelp.exe5

Error: (06/16/2019 03:46:54 PM) (Source: Software Protection Platform Service) (User: )
Description: A licencaktiválás (slui.exe) a következő hibakóddal leállt:
hr=0xC004F074
Parancssori argumentumok:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (06/16/2019 03:41:22 PM) (Source: Software Protection Platform Service) (User: )
Description: A licencaktiválás (slui.exe) a következő hibakóddal leállt:
hr=0x8007139F
Parancssori argumentumok:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/16/2019 03:40:14 PM) (Source: Software Protection Platform Service) (User: )
Description: A licencaktiválás (slui.exe) a következő hibakóddal leállt:
hr=0x8007139F
Parancssori argumentumok:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable


System errors:
=============
Error: (06/16/2019 04:21:34 PM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (ASUS Com Service) a következő hiba következtében leállt:
%%1053 = A szolgáltatás nem válaszolt megfelelő időben az indítási vagy vezérlési kérésre.


Error: (06/16/2019 04:21:34 PM) (Source: Service Control Manager) (User: )
Description: Letelt egy időkorlát (30000 ms) a(z) ASUS Com Service szolgáltatás kapcsolódására való várakozás közben.

Error: (06/16/2019 04:20:12 PM) (Source: DCOM) (User: DESKTOP-NQ7JARN)
Description: 1053asComSvcNem érhető el{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}

Error: (06/16/2019 04:20:12 PM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (ASUS Com Service) a következő hiba következtében leállt:
%%1053 = A szolgáltatás nem válaszolt megfelelő időben az indítási vagy vezérlési kérésre.


Error: (06/16/2019 04:20:12 PM) (Source: Service Control Manager) (User: )
Description: Letelt egy időkorlát (30000 ms) a(z) ASUS Com Service szolgáltatás kapcsolódására való várakozás közben.

Error: (06/16/2019 04:19:42 PM) (Source: DCOM) (User: DESKTOP-NQ7JARN)
Description: 1053asComSvcNem érhető el{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}

Error: (06/16/2019 04:19:42 PM) (Source: Service Control Manager) (User: )
Description: A szolgáltatás (ASUS Com Service) a következő hiba következtében leállt:
%%1053 = A szolgáltatás nem válaszolt megfelelő időben az indítási vagy vezérlési kérésre.


Error: (06/16/2019 04:19:42 PM) (Source: Service Control Manager) (User: )
Description: Letelt egy időkorlát (30000 ms) a(z) ASUS Com Service szolgáltatás kapcsolódására való várakozás közben.

Error: (06/16/2019 04:19:31 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: alkalmazásspecifikusHelyiIndításWindows.SecurityCenter.WscBrokerManagerNem érhető elNT AUTHORITYSYSTEMS-1-5-18LocalHost (helyi állomás, LRPC használatával)Nem érhető elNem érhető el

Error: (06/16/2019 04:19:31 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: alkalmazásspecifikusHelyiIndításWindows.SecurityCenter.WscDataProtectionNem érhető elNT AUTHORITYSYSTEMS-1-5-18LocalHost (helyi állomás, LRPC használatával)Nem érhető elNem érhető el


Microsoft Office Sessions:
=========================
Error: (06/16/2019 04:20:26 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/16/2019 04:20:12 PM) (Source: Application Error)(User: )
Description: AI Suite II.exe2.0.0.000000000KERNELBASE.dll10.0.17134.7990117c7be0eedfade00112c922c8c01d5244e7c5b2128C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exeC:\WINDOWS\System32\KERNELBASE.dll66d9a8a8-3728-4a4a-b222-3eb0a9eb15f8

Error: (06/16/2019 04:19:42 PM) (Source: Application Error)(User: )
Description: TurboVHelp.exe1.0.1.3600000000KERNELBASE.dll10.0.17134.7990117c7be0eedfade00112c92244801d5244e77eed530C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exeC:\WINDOWS\System32\KERNELBASE.dll8b550a69-70ff-4daf-a174-a38bc71454fb

Error: (06/16/2019 04:19:19 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (06/16/2019 04:19:18 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/16/2019 03:47:46 PM) (Source: Application Error)(User: )
Description: AI Suite II.exe2.0.0.000000000KERNELBASE.dll10.0.17134.7990117c7be0eedfade00112c9226c801d52449f365a502C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exeC:\WINDOWS\System32\KERNELBASE.dllb369fd46-0800-4e70-862a-bd6c490ae697

Error: (06/16/2019 03:47:16 PM) (Source: Application Error)(User: )
Description: TurboVHelp.exe1.0.1.3600000000KERNELBASE.dll10.0.17134.7990117c7be0eedfade00112c921fb801d52449f013bcb4C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exeC:\WINDOWS\System32\KERNELBASE.dll29953f01-8ae8-4ece-b601-6bdb3fcaa7f0

Error: (06/16/2019 03:46:54 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (06/16/2019 03:41:22 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0x8007139FRuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (06/16/2019 03:40:14 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0x8007139FRuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable


CodeIntegrity Errors:
===================================
Date: 2018-08-14 16:19:20.546
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:20.541
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:20.536
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:20.531
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:19.848
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:19.833
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:19.827
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:17.819
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:17.814
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-14 16:19:17.809
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Overwolf\0.117.1.43\OWExplorer.dll that did not meet the Microsoft signing level requirements.


=========================== Installed Programs ============================

µTorrent (HKCU\...\uTorrent) (Version: 3.5.5.45271 - BitTorrent Inc.)
4K Textures DLC (HKLM-x32\...\1286889002_is1) (Version: 0.9.24.3.432 - GOG.com)
7.b - A játék DEMÓ (HKCU\...\7.b - A játék DEMÓ) (Version: - )
7-Zip 18.00 beta (x64) (HKLM\...\7-Zip) (Version: 18.00 beta - Igor Pavlov)
7-Zip 18.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1801-000001000000}) (Version: 18.01.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Hungarian (HKLM-x32\...\{AC76BA86-7AD7-1038-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_5) (Version: 19.1.5 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 1.5.2.0869 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 17.12 - Advanced Micro Devices, Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Artifact (HKLM\...\Steam App 583950) (Version: - Valve)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.35.1 - Asmedia Technology)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Cégnév) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
BYOND (HKLM-x32\...\BYOND) (Version: 512.1466 - BYOND)
calibre (HKLM-x32\...\{71640766-157F-4DE8-B45F-69B76B0F5FCE}) (Version: 3.31.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Core Temp 1.11 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.11 - ALCPU)
CPUID CPU-Z 1.85 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.85 - CPUID, Inc.)
Crusader Kings II (HKLM\...\Steam App 203770) (Version: - Paradox Development Studio)
Crypt of the NecroDancer (HKLM\...\Steam App 247080) (Version: - Brace Yourself Games)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0221 - Disc Soft Ltd)
Dauntless (HKLM\...\{03AFDFA7-7A23-41B1-AAC2-3898591127D3}) (Version: 1.00.0000 - Phoenix Labs)
Dead by Daylight (HKLM\...\Steam App 381210) (Version: - Behaviour Digital Inc.)
Discord (HKCU\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.36 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{93BFE5DF-776E-436F-8693-DF1F72C0E3C1}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Far.Cry.Primal.REPACK-KaOs Uninstaller v3.0 (HKLM-x32\...\Far.Cry.Primal.REPACK-KaOs_is1) (Version: 3.0 - KaOsKrew)
Game Summary (HKCU\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 123.0.11 - Overwolf app)
Git version 2.16.2 (HKLM\...\Git_is1) (Version: 2.16.2 - The Git Development Community)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
GoTo Opener (HKLM-x32\...\{1F803452-798F-49FB-A5DD-9F527F7017E4}) (Version: 1.0.473 - LogMeIn, Inc.)
GoToAssist Expert 4.4.0.1599 (HKCU\...\GoToAssist Remote Support Expert) (Version: 4.4.0.1599 - LogMeIn, Inc.)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.24.3.432 - GOG.com)
Hard Disk Sentinel (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.40 - Janos Mathe)
HearthArena Companion (HKCU\...\Overwolf_eldaohcjmecjpkpdhhoiolhhaeapcldppbdgbnbc) (Version: 1.5.0.1 - Overwolf app)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKCU\...\HearthstoneDeckTracker) (Version: 1.8.7 - HearthSim)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 6.0.3.0 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Into the Breach (HKLM\...\Steam App 590380) (Version: - Subset Games)
Jatek (HKCU\...\Jatek) (Version: - )
Java 7 Update 21 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.210 - Oracle)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java(TM) SE Development Kit 11.0.1 (64-bit) (HKLM\...\{F4039C0F-E4C1-5905-9E7D-DDA8EDE365BC}) (Version: 11.0.1.0 - Oracle Corporation)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Kingdom Come: Deliverance (HKLM\...\Steam App 379430) (Version: - Warhorse Studios)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 11.1.137.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MORDHAU (HKLM\...\Steam App 629760) (Version: - Triternion)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
MTG Arena (HKLM-x32\...\{D084B94B-3A8E-45B1-BDA7-39E1DA980687}) (Version: 0.1.1205.0 - Wizards of the Coast) Hidden
MTG Arena (HKLM-x32\...\MTG Arena 0.1.1205.0) (Version: 0.1.1205.0 - Wizards of the Coast)
NetBeans IDE 8.2 (HKLM-x32\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 - Black Tree Gaming)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.94 - NVIDIA Corporation)
NVIDIA Grafikus illesztőprogram 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.86 - NVIDIA Corporation)
NVIDIA HD audio-illesztőprogram 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA PhysX rendszerszoftver 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Opera Mobile Emulator (HKLM-x32\...\{1826D0CA-F479-4430-9EFE-86E8E783505B}_is1) (Version: - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{1481750f-8de4-48a2-beaf-269a2ce0790c}) (Version: latest - ppy Pty Ltd)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.126.0.11 - Overwolf Ltd.)
Realm Royale PTS (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF703}) (Version: 0.1.173.0 - Hi-Rez Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.31.828.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8619 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.1.0 (HKLM-x32\...\RTSS) (Version: 7.1.0 - Unwinder)
SFK Standalone 13.9 (HKLM-x32\...\{60101460-B0B7-4B50-9600-81CF9CAE33A8}_is1) (Version: 13.9 - [SFK]Dielo)
Simple Port Tester (HKLM-x32\...\Simple Port Tester3.0.0) (Version: 3.0.0 - PcWinTech.com)
Standalone Flash Player 1.2 (HKLM-x32\...\{A3B31D43-75F4-4CF4-8330-6DE62C3540FA}_is1) (Version: - StandaloneFlashPlayer.com)
Survivors Viy (HKCU\...\Survivors Viy) (Version: - )
SWF File Player (HKLM-x32\...\{6A86F611-906C-422D-B34A-103662CBC195}_is1) (Version: - swffileplayer.com)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.26558 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
The Elder Scrolls V: Skyrim Special Edition (HKLM\...\Steam App 489830) (Version: - Bethesda Game Studios)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Update for Skype for Business 2016 (KB4032255) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{699F991D-0635-4A44-9776-AEE20C6087DC}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4032255) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{699F991D-0635-4A44-9776-AEE20C6087DC}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4032255) 32-Bit Edition (HKLM-x32\...\{90160000-012B-040E-0000-0000000FF1CE}_Office16.PROPLUS_{699F991D-0635-4A44-9776-AEE20C6087DC}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C3ACFCEA-240F-4DCC-A0C3-DD55FEE6C3C2}) (Version: 2.58.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 83.0 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
VPN Unlimited 5.0 (HKLM-x32\...\{DC24521E-872B-41AF-93EA-FE477902D6FB}_is1) (Version: 5.0 - KeepSolid Inc.)
Warhammer: Vermintide 2 (HKLM\...\Steam App 552500) (Version: - Fatshark)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 36%
Total physical RAM: 8123.74 MB
Available physical RAM: 5128.09 MB
Total Virtual: 13243.74 MB
Available Virtual: 8776.07 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.25 GB) (Free:8.97 GB) NTFS
2 Drive d: (Rendszer számára fenntartott) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
3 Drive f: () (Fixed) (Total:637.98 GB) (Free:105.28 GB) NTFS
4 Drive g: () (Fixed) (Total:292.97 GB) (Free:278.72 GB) NTFS
5 Drive k: (ADATA UFD) (Removable) (Total:7.21 GB) (Free:7.2 GB) FAT32

========================= Users: ========================================

\\DESKTOP-NQ7JARN felhaszn l˘i fi˘kjai

Alap‚rtelmezett fi˘k Peti Rendszergazda
User Vend‚g WDAGUtilityAccount
A parancs sikeresen v‚grehajtva.


**** End of log ****
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
Just run Adware cleaner and Hijack this. My laptop is about to die, I have my friend bringing me my power cord soon. You could look over this guide which should basically tune up your machine cause I wont be online till my cord gets here.


 

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
Oops, I somehow managed to not include them. Sorry, here they are:

AdwCleaner:

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-05-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-16-2019
# Duration: 00:00:00
# OS: Windows 10 Pro
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\User\Desktop\serv

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1280 octets] - [16/06/2019 16:17:59]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########




HijackThis:

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.19

Platform: x64 Windows 10 (Pro), 10.0.17134.829 (ReleaseId: 1803), Service Pack: 0
Time: 16.06.2019 - 16:21 (UTC+02:00)
Language: OS: Hungarian (0x40E). Display: Hungarian (0x40E). Non-Unicode: Hungarian (0x40E)
Elevated: Yes
Ran by: User (group: Administrator) on DESKTOP-NQ7JARN, FirstRun: yes

Chrome: 74.0.3729.169
Edge: 11.0.17134.799
Internet Explorer: 11.0.17134.1
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
1 C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
1 C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
1 C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
1 C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
1 C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
1 C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
1 C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
1 C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
1 C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
1 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1 C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
1 C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
1 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
18 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
1 C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
1 C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
1 C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
1 C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
1 C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
1 C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
1 C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe
1 C:\Program Files\Bitdefender Agent\ProductAgentService.exe
1 C:\Program Files\CCleaner\CCleaner64.exe
2 C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
2 C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
1 C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
1 C:\Program Files\WinRAR\WinRAR.exe
1 C:\Program Files\Windows Defender\MSASCuiL.exe
1 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
1 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
1 C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe
1 C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe
1 C:\Users\User\Desktop\HiJackThis\HiJackThis.exe
2 C:\Windows\System32\RtkAudUService64.exe
4 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchIndexer.exe
2 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SecurityHealthService.exe
2 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\dasHost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\notepad.exe
1 C:\Windows\System32\rundll32.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
66 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\wbem\WmiApSrv.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wbem\unsecapp.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\explorer.exe
1 F:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe

O1 - Hosts: 0.0.0.0 91.206.200.221
O1 - Hosts: 0.0.0.0 bidtraffic.ru
O1 - Hosts: 0.0.0.0 bir3yka.narod2.ru
O1 - Hosts: 0.0.0.0 enet.vn.ua
O1 - Hosts: 0.0.0.0 rax.ru
O1 - Hosts: 0.0.0.0 yandex.ru
O1 - Hosts: 0.0.0.0 ukraine.com.ua
O2-32 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll
O2-32 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] = C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun (file missing)
O4 - HKCU\..\Run: [Discord] = C:\Users\User\AppData\Local\Discord\app-0.0.305\Discord.exe
O4 - HKCU\..\Run: [GoToAssist Remote Support Expert] = C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe "/Trigger RunAtLogon"
O4 - HKCU\..\Run: [Overwolf] = F:\\Overwolf\OverwolfLauncher.exe -overwolfsilent
O4 - HKCU\..\Run: [VPN Unlimited] = C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-launcher.exe
O4 - HKCU\..\Run: [uTorrent] = C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [RtkAudUService] = C:\WINDOWS\System32\RtkAudUService64.exe -background
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4-32 - HKLM\..\Run: [ASUS WiFi GO! FileTransfer Execute] = C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
O4-32 - HKLM\..\Run: [LogMeIn Hamachi Ui] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O5 - HKCU\Control Panel\don't load: [RTSnMg64.cpl] (file missing)
O9-32 - Button: HKLM\..\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}: OneNote – c&satolt feljegyzések - (no file)
O9-32 - Tools menu item: HKLM\..\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}: OneNote – c&satolt feljegyzések - (no file)
O17 - DHCP DNS 1: 213.46.246.53
O17 - DHCP DNS 2: 213.46.246.54
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
O23 - Service R2: ASUS Com Service - (asComSvc) - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service R2: ASUS HM Com Service - (asHmComSvc) - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service R2: ASUS System Control Service - (AsSysCtrlService) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AsusFanControlService - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
O23 - Service R2: Hi-Rez Studios Authenticate and Update Service - (HiPatchService) - F:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service R2: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe -s
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: NVIDIA Telemetry Container - (NvTelemetryContainer) - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
O23 - Service R2: ProductAgentService - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\WINDOWS\System32\RtkAudUService64.exe
O23 - Service R2: TeamViewer 13 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R2: VPN Unlimited Service - (VPNUnlimitedService) - C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe
O23 - Service S2: Google frissítés Szolgáltatás (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: ICEsound Service - (ICEsoundService) - C:\WINDOWS\system32\ICEsoundService64.exe (file missing)
O23 - Service S2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (file missing)
O23 - Service S2: Windows Remediation Service - (sedsvc) - C:\Program Files\rempl\sedsvc.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: Disc Soft Lite Bus Service - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: GalaxyClientService - F:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
O23 - Service S3: GalaxyCommunication - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\elevation_service.exe
O23 - Service S3: Google frissítés Szolgáltatás (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe (file missing)
O23 - Service S3: Overwolf Updater Windows SCM - (OverwolfUpdater) - F:\Overwolf\OverwolfUpdater.exe /RunningFrom SCM
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService


--
End of file - Time spent: 20,8 sec. - 27952 bytes, CRC32: FFFFFFFF. Sign: 帍䬉
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
I see a few things that need to be taken care of, but my laptop is dead and the power cord won’t be here for a couple hours. Not much I can do from my phone. I’d suggest just going through the internet guide I posted until I get my power cord and prepare you a proper reply. But judging by what I see I am fairly certain I can help your issue.
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
Clean up temp files and reduce startup load with CCleaner.


Note: This tool will clean your browsing history as well.


  • Download CCleaner from here.
  • After install Click Options.
  • Go to monitoring.
  • Uncheck All Monitoring items.
  • Go to advanced -- Click close program after cleaning.
  • Go to settings -- click run ccleaner when the computer starts.
  • Now that you have ccleaner installed and set-up:
  • Open the program.
  • Go to Tools
  • Go to Startup
  • Now double click each item. To Disable.
  • Leave only your antivirus enabled.
  • Then disable All items in your scheduled task as well.
  • Unless they are related to windows defender.Or your antivirus.
  • Reboot the machine.




The site is in French so the download button is the same as the picture below..


4848



ZHP Diag Scan Click here to download.


1. Right Click Run as Admin.

2. Click the Options button.

Click on Check All
Then Click Validate
Then click close.

















2. Click the Scanner button.















When complete please push the report button.
A notepad will open... copy and paste the report in your next reply.
 

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
~ ZHPDiag v2019.6.15.85 By Nicolas Coolman (2019/06/15)
~ Run by User (Administrator) (2019/06/17 00:19:42)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\User\Desktop\ZHPDiag.txt
~ Report: C:\Users\User\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 17134) =>.Microsoft Corporation


---\ Internet Browsers (3) - 0s
~ GCIE: Google Chrome v74.0.3729.169
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.829.17134.0

---\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\ System protection software (2) - 1s
Windows Defender W10 (Activate) (Protection)
Bitdefender Agent v1.0.1 (Protection)

---\ Surveillance software (1) - 1s
~ Adobe Acrobat Reader DC - Hungarian (Surveillance)

---\ System optimization software (1) - 1s
~ CCleaner v5.51 (Optimisation)

---\ Sharing software PeerToPeer (1) - 1s
~ µTorrent v3.5.5.45271 (P2P)

---\ Informations on the system (6) - 0s
~ Operating System: AMD64 Family 23 Model 1 Stepping 1, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8318.708 MB (61% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 6 GB (5%) free of 113 GB : ATTENTION =>Warning Disk Space

---\ Connection to the system mode (3) - 0s
~ Computer Name: DESKTOP-NQ7JARN
~ User Name: User
~ Logged in as Administrator

---\ Enumeration of the disk units (5) - 0s
~ Drive C: has 6 GB free of 113 GB (System)
~ Drive D: has 0 GB free of 0 GB
~ Drive F: has 107 GB free of 653 GB
~ Drive G: has 285 GB free of 299 GB
~ Drive K: has 7 GB free of 7 GB

---\ State of the Windows Security Center (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\ Search Generic System Files (24) - 1s
[MD5.C8FB56B60458B09C1CAEBD4DAF1AC8BB] - 14/03/2019 - (.Microsoft Corporation - Windows Intéző.) -- C:\WINDOWS\Explorer.exe [3933296] =>.Microsoft Windows®
[MD5.73C519F050C20580F8A62C849D49215A] - 12/04/2018 - (.Microsoft Corporation - Windows gazdafolyamat (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [69632] =>.Microsoft Corporation
[MD5.A58B0CB069DA7840B935872ADCD7F0C2] - 12/04/2018 - (.Microsoft Corporation - Windows-indítóalkalmazás.) -- C:\WINDOWS\System32\Wininit.exe [366792] =>.Microsoft Corporation
[MD5.8DA81943DAA4CE6BD1DE91F56BE72EE7] - 17/05/2019 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [4937216] =>.Microsoft Corporation
[MD5.749CA1F1B638E4E4A8A1F0990377012F] - 08/09/2018 - (.Microsoft Corporation - Windows bejelentkeztető alkalmazás.) -- C:\WINDOWS\System32\Winlogon.exe [677888] =>.Microsoft Corporation
[MD5.7A377800FF15426B7D89768A8727CFEF] - 12/04/2018 - (.Microsoft Corporation - Szoftverlicencelési kódtár.) -- C:\WINDOWS\System32\sppcomapi.dll [415232] =>.Microsoft Corporation
[MD5.86FE93AFDD8B2BCD389E30839A652181] - 09/11/2018 - (.Microsoft Corporation - DNS-ügyfél API DLL-je.) -- C:\WINDOWS\System32\dnsapi.dll [766704] =>.Microsoft Windows®
[MD5.B668D6FD24465E11155B47808553DA61] - 09/11/2018 - (.Microsoft Corporation - DNS-ügyfél API DLL-je.) -- C:\WINDOWS\Syswow64\dnsapi.dll [573504] =>.Microsoft Windows®
[MD5.7FCE169D96CE4AA1009A459661EAE109] - 06/03/2019 - (.Microsoft Corporation - Kiegészítő funkciók illesztőprogramja a Win.) -- C:\WINDOWS\System32\drivers\AFD.sys [626488] =>.Microsoft Corporation
[MD5.90AB4ED8EBD72A1C096A40CC35404B91] - 12/04/2018 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Corporation
[MD5.54821BC6FD2D26ECC3081109AF1AEAD5] - 06/03/2019 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93696] =>.Microsoft Corporation
[MD5.6834DBBA2A1DBA5B9B6360D0B9A3CBB5] - 15/06/2018 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.8A1C10410FDA4287A76EC5A64371E221] - 15/06/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [141312] =>.Microsoft Corporation
[MD5.DED74127C7A2266715C0B8EA2EE75214] - 12/04/2018 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.DA179667B8CEC22E4ECBBF4210DC0E35] - 12/04/2018 - (.Microsoft Corporation - i8082-port illesztőprogramja.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7408B83959A4B8271EF67FD06A6B366B] - 12/04/2018 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.6C321DB795F5EF5FF870737177825FC9] - 20/09/2018 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [500536] =>.Microsoft Corporation
[MD5.EDA5D5221622818816FC006097CC5A18] - 02/04/2019 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [310272] =>.Microsoft Corporation
[MD5.D1EC917BA8861AE9DB655232422146F8] - 14/03/2019 - (.Microsoft Corporation - NT fájlrendszer-illesztő.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2421048] =>.Microsoft Corporation
[MD5.13B175715A4391E4E5D2AB2EBC8CDBB5] - 12/04/2018 - (.Microsoft Corporation - Párhuzamos port illesztőprogramja.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.775ED7E51B58CF9EB415A1DBA540DACF] - 12/04/2018 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.172A40D2A354F328F08264543E9D57A6] - 14/03/2019 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.16071C42E21CE3378FA449322FB9AB1D] - 12/04/2018 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121248] =>.Microsoft Corporation
[MD5.F0EE4E6028CCA58BEA9A04E7BEAB7DB4] - 12/04/2018 - (.Microsoft Corporation - Kötet árnyékmásolatának illesztőprogramja.) -- C:\WINDOWS\System32\drivers\volsnap.sys [398240] =>.Microsoft Corporation

---\ No disabled Windows Services (77) - 3s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Adobe Genuine Monitor Service (AGMService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe =>.Adobe Inc.®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Inc.®
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe =>.ASUSTeK Computer Inc.®
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - .) - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe =>.ASUSTeK Computer Inc.®
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe =>.ASUSTeK
O23 - Service: AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe =>.ASUSTek Computer Inc.
O23 - Service: C:\WINDOWS\System32\AudioEndpointBuilder.dll (AudioEndpointBuilder) . (.Microsoft Corporation - Windows-hangvégpontépítő.) - C:\WINDOWS\System32\AudioEndpointBuilder.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\audiosrv.dll (Audiosrv) . (.Microsoft Corporation - Windows audioszolgáltatás.) - C:\WINDOWS\System32\Audiosrv.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\bfe.dll (BFE) . (.Microsoft Corporation - Alap szűrőprogram.) - C:\WINDOWS\System32\bfe.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\qmgr.dll (BITS) . (.Microsoft Corporation - Háttérben futó intelligens átviteli szolgál.) - C:\WINDOWS\System32\qmgr.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\system32\bisrv.dll (BrokerInfrastructure) . (.Microsoft Corporation - Háttérfeladatok infrastruktúra-szolgáltatás.) - C:\WINDOWS\System32\bisrv.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\cdpusersvc.dll (CDPUserSvc) . (.Microsoft Corporation - Microsoft(R) CDP – felhasználói összetevők.) - C:\WINDOWS\System32\CDPUserSvc.dll =>.Microsoft Corporation
O23 - Service: Csatlakoztatott eszközök platformja (CDP) felhasználói szol (CDPUserSvc_5c598) . (.Microsoft Corporation - Windows-szolgáltatások gazdafolyamata.) - C:\Windows\System32\svchost.exe =>.Microsoft Windows Publisher®
O23 - Service: C:\Windows\System32\coremessaging.dll (CoreMessagingRegistrar) . (.Microsoft Corporation - Microsoft CoreMessaging Dll.) - C:\Windows\System32\coremessaging.dll =>.Microsoft Windows®
O23 - Service: C:\WINDOWS\System32\cryptsvc.dll (CryptSvc) . (.Microsoft Corporation - Kriptográfiai szolgáltatások.) - C:\WINDOWS\System32\cryptsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\das.dll (DeviceAssociationService) . (.Microsoft Corporation - Eszköztársítási szolgáltatás.) - C:\WINDOWS\System32\das.dll =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\dhcpcore.dll (Dhcp) . (.Microsoft Corporation - DHCP-ügyfélszolgáltatás.) - C:\Windows\System32\dhcpcore.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\diagtrack.dll (DiagTrack) . (.Microsoft Corporation - Microsoft Windows diagnosztikai nyomkövetés.) - C:\WINDOWS\System32\diagtrack.dll =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\dnsapi.dll (Dnscache) . (.Microsoft Corporation - DNS-gyosítótárazás feloldási szolgáltatása.) - C:\WINDOWS\System32\dnsrslvr.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\dosvc.dll (DoSvc) . (.Microsoft Corporation - Windows-szolgáltatások gazdafolyamata.) - C:\Windows\System32\svchost.exe =>.Microsoft Windows Publisher®
O23 - Service: C:\WINDOWS\System32\dusmsvc.dll (DusmSvc) . (.Microsoft Corporation - Adatforgalom-szolgáltatás.) - C:\WINDOWS\System32\dusmsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\wevtsvc.dll (EventLog) . (.Microsoft Corporation - Windows-szolgáltatások gazdafolyamata.) - C:\Windows\System32\svchost.exe =>.Microsoft Windows Publisher®
O23 - Service: @comres.dll,-2450 (EventSystem) . (.Microsoft Corporation - COM+.) - C:\Windows\System32\es.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\FntCache.dll (FontCache) . (.Microsoft Corporation - Windows betűtípus-gyorsítótár szolgáltatás.) - C:\WINDOWS\System32\FntCache.dll =>.Microsoft Corporation
O23 - Service: @gpapi.dll,-112 (gpsvc) . (.Microsoft Corporation - Csoportházirend ügyfél.) - C:\WINDOWS\System32\gpsvc.dll =>.Microsoft Corporation
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) . (.Google Inc. - Google telepítő.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe =>.LogMeIn, Inc.®
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) . (.Hi-Rez Studios - HiPatchService.) - F:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe =>.Hi-Rez Studios
O23 - Service: ICEsound Service (ICEsoundService) . (...) - C:\WINDOWS\system32\ICEsoundService64.exe (.not file.)
O23 - Service: C:\WINDOWS\System32\ikeext.dll (IKEEXT) . (.Microsoft Corporation - IKE bővítmény.) - C:\WINDOWS\System32\ikeext.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\iphlpsvc.dll (iphlpsvc) . (.Microsoft Corporation - IPv4-hálózatokon IPv6-kapcsolódási lehetősé.) - C:\WINDOWS\System32\iphlpsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\srvsvc.dll (LanmanServer) . (.Microsoft Corporation - Kiszolgáló szolgáltatás DLL-je.) - C:\WINDOWS\System32\srvsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\wkssvc.dll (LanmanWorkstation) . (.Microsoft Corporation - Munkaállomás szolgáltatás DLL-je.) - C:\WINDOWS\System32\wkssvc.dll =>.Microsoft Corporation
O23 - Service: LMIGuardianSvc (LMIGuardianSvc) . (.LogMeIn, Inc. - LMIGuardianSvc.) - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe =>.LogMeIn, Inc.®
O23 - Service: C:\WINDOWS\system32\lsm.dll (LSM) . (.Microsoft Corporation - Helyi munkamenet-kezelő szolgáltatás.) - C:\WINDOWS\System32\lsm.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\moshost.dll (MapsBroker) . (.Microsoft Corporation - Letöltött térképek kezelése.) - C:\WINDOWS\System32\moshost.dll =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\FirewallAPI.dll (mpssvc) . (.Microsoft Corporation - Microsoft védelmi szolgáltatás.) - C:\WINDOWS\System32\mpssvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\nlasvc.dll (NlaSvc) . (.Microsoft Corporation - 2. hálózati helyfigyelés.) - C:\WINDOWS\System32\nlasvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\nsisvc.dll (nsi) . (.Microsoft Corporation - Hálózatitároló-adapter RPC-kiszolgáló.) - C:\WINDOWS\System32\nsisvc.dll =>.Microsoft Corporation
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe =>.NVIDIA Corporation®
O23 - Service: C:\WINDOWS\System32\APHostRes.dll (OneSyncSvc) . (.Microsoft Corporation - Accounts Host Service.) - C:\WINDOWS\System32\APHostService.dll =>.Microsoft Corporation
O23 - Service: Állomás szinkronizálása_5c598 (OneSyncSvc_5c598) . (.Microsoft Corporation - Windows-szolgáltatások gazdafolyamata.) - C:\Windows\System32\svchost.exe =>.Microsoft Windows Publisher®
O23 - Service: Origin Web Helper Service (Origin Web Helper Service) . (...) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (.not file.)
O23 - Service: C:\WINDOWS\System32\umpo.dll (Power) . (.Microsoft Corporation - Felhasználói módú energiagazdálkodási szolg.) - C:\WINDOWS\System32\umpo.dll =>.Microsoft Corporation
O23 - Service: ProductAgentService (ProductAgentService) . (.Bitdefender - Bitdefender Agent.) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe =>.Bitdefender SRL®
O23 - Service: C:\WINDOWS\System32\profsvc.dll (ProfSvc) . (.Microsoft Corporation - ProfSvc.) - C:\WINDOWS\System32\profsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\rasmans.dll (RasMan) . (.Microsoft Corporation - Távelérési csatlakozáskezelő.) - C:\WINDOWS\System32\rasmans.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\system32\RpcEpMap.dll (RpcEptMapper) . (.Microsoft Corporation - RPC végpontleképező.) - C:\WINDOWS\System32\RpcEpMap.dll =>.Microsoft Corporation
O23 - Service: @combase.dll,-5010 (RpcSs) . (.Microsoft Corporation - Distributed COM Services.) - C:\WINDOWS\System32\rpcss.dll =>.Microsoft Corporation
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) . (.Realtek Semiconductor - Realtek HD Audio Universal Service.) - C:\WINDOWS\System32\RtkAudUService64.exe =>.Realtek Semiconductor
O23 - Service: C:\WINDOWS\System32\schedsvc.dll (Schedule) . (.Microsoft Corporation - Feladatütemező szolgáltatás.) - C:\WINDOWS\System32\schedsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\SecurityHealthAgent.dll (SecurityHealthService) . (.Microsoft Corporation - Windows Security Health Service.) - C:\WINDOWS\System32\SecurityHealthService.exe =>.Microsoft Corporation
O23 - Service: Windows Remediation Service (sedsvc) . (.Microsoft Corporation - sedsvc.) - C:\Program Files\rempl\sedsvc.exe =>.Microsoft Windows®
O23 - Service: C:\WINDOWS\System32\Sens.dll (SENS) . (.Microsoft Corporation - Rendszeresemény-jelző szolgáltatás (SENS).) - C:\WINDOWS\System32\sens.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\SgrmBroker.exe,-100 (SgrmBroker) . (.Microsoft Corporation - Rendszerőr futásidejű figyelésszervezője sz.) - C:\WINDOWS\System32\SgrmBroker.exe =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\shsvcs.dll (ShellHWDetection) . (.Microsoft Corporation - Windows felület szolgáltatási DLL-je.) - C:\Windows\System32\shsvcs.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\spoolsv.exe,-1 (Spooler) . (.Microsoft Corporation - Várólista-alrendszer kezelőalkalmazása.) - C:\WINDOWS\System32\spoolsv.exe =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\sppsvc.exe,-101 (sppsvc) . (.Microsoft Corporation - Microsoft Szoftvervédelmi platform szolgált.) - C:\WINDOWS\System32\sppsvc.exe =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\wiaservc.dll (stisvc) . (.Microsoft Corporation - Állóképeszközök szolgáltatás.) - C:\WINDOWS\System32\wiaservc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\sysmain.dll (SysMain) . (.Microsoft Corporation - Előtöltési szolgáltatás.) - C:\WINDOWS\System32\sysmain.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\system32\SystemEventsBrokerServer.dll (SystemEventsBroker) . (.Microsoft Corporation - Rendszeresemény-szervező.) - C:\WINDOWS\System32\SystemEventsBrokerServer.dll =>.Microsoft Corporation
O23 - Service: TeamViewer 13 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 13.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O23 - Service: C:\WINDOWS\System32\themeservice.dll (Themes) . (.Microsoft Corporation - Windows felületi téma szolgáltatási DLL-je.) - C:\WINDOWS\System32\themeservice.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\usermgr.dll (UserManager) . (.Microsoft Corporation - Felhasználókezelő.) - C:\WINDOWS\System32\usermgr.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\usocore.dll (UsoSvc) . (.Microsoft Corporation - Munkamenet-vezénylő alapprogram frissítése.) - C:\WINDOWS\System32\usocore.dll =>.Microsoft Corporation
O23 - Service: VPN Unlimited Service (VPNUnlimitedService) . (.KeepSolid Inc. - VPN Unlimited Service.) - C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe =>.KeepSolid Inc.®
O23 - Service: C:\WINDOWS\System32\wcmsvc.dll (Wcmsvc) . (.Microsoft Corporation - A Windows csatlakozáskezelő szolgáltatás DL.) - C:\WINDOWS\System32\wcmsvc.dll =>.Microsoft Corporation
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) . (.Microsoft Corporation - Antimalware Service Executable.) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe =>.Microsoft Windows Publisher®
O23 - Service: C:\WINDOWS\System32\wbem\wmisvc.dll (Winmgmt) . (.Microsoft Corporation - WMI.) - C:\WINDOWS\System32\wbem\WMIsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\wpnservice.dll (WpnService) . (.Microsoft Corporation - A Windows leküldéses értesítéseit kezelő re.) - C:\WINDOWS\System32\WpnService.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\WpnUserService.dll (WpnUserService) . (.Microsoft Corporation - A Windows leküldéses értesítéseit kezelő fe.) - C:\WINDOWS\System32\WpnUserService.dll =>.Microsoft Corporation
O23 - Service: A Windows leküldéses értesítéseit kezelő felhasználói szolg (WpnUserService_5c598) . (.Microsoft Corporation - Windows-szolgáltatások gazdafolyamata.) - C:\Windows\System32\svchost.exe =>.Microsoft Windows Publisher®
O23 - Service: C:\WINDOWS\System32\wscsvc.dll (wscsvc) . (.Microsoft Corporation - A Windows Biztonsági központ szolgáltatása.) - C:\WINDOWS\System32\wscsvc.dll =>.Microsoft Corporation
O23 - Service: C:\WINDOWS\System32\SearchIndexer.exe,-103 (WSearch) . (.Microsoft Corporation - A Microsoft Windows Search szolgáltatás ind.) - C:\Windows\System32\SearchIndexer.exe =>.Microsoft Corporation

---\ Services not Microsoft (SR=Run, SS=Stop) (107) - 7s
SR - Boot [12/04/2018] [ 107416] (3ware) . (.LSI.) - C:\WINDOWS\System32\drivers\3ware.sys =>.Microsoft Windows®
SR - Auto [16/12/2018] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Boot [12/04/2018] [ 1135520] (ADP80XX) . (.PMC-Sierra.) - C:\WINDOWS\System32\drivers\ADP80XX.SYS =>.Microsoft Windows®
SR - Auto [04/05/2019] [ 3117648] Adobe Genuine Monitor Service (AGMService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe =>.Adobe Inc.®
SR - Auto [04/05/2019] [ 2888272] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Inc.®
SR - Demand [28/01/2013] [ 14848] AiChargerPlus (AiChargerPlus) . (.ASUSTek Computer Inc..) - C:\Windows\SysWOW64\drivers\AiChargerPlus.sys =>.ASUSTeK Computer Inc.®
SR - Demand [16/06/2019] [ 46384] ALSysIO (ALSysIO) . (.Arthur Liberman.) - C:\Users\User\AppData\Local\Temp\ALSysIO64.sys =>.ALCPU (Arthur Liberman)®
SR - Demand [25/04/2018] [ 34664] AMD GPIO Client Driver (amdgpio2) . (.Advanced Micro Devices, Inc.) - C:\WINDOWS\System32\drivers\amdgpio2.sys =>.Advanced Micro Devices Inc.®
SR - Demand [25/04/2018] [ 33120] AMD GPIO Client Driver (amdgpio3) . (.Advanced Micro Devices, Inc.) - C:\WINDOWS\System32\drivers\amdgpio3.sys =>.AMD PMP-PE CB Code Signer v20160415®
SR - Demand [12/06/2017] [ 101232] AMD Kernel Mode CSP Service (amdkmcsp) . (.Advanced Micro Devices, Inc..) - C:\WINDOWS\System32\DRIVERS\amdkmcsp.sys =>.Advanced Micro Devices Inc.®
SR - Demand [26/04/2018] [ 31592] AMD PCI (AMDPCIDev) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\AMDPCIDev.sys =>.Advanced Micro Devices Inc.®
SR - Auto [25/10/2018] [ 71152] AMDRyzenMasterDriverV13 (AMDRyzenMasterDriverV13) . (.Advanced Micro Devices.) - C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys =>.Advanced Micro Devices Inc.®
SR - Boot [12/04/2018] [ 83360] (amdsata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdsata.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 259480] (amdsbs) . (.AMD Technologies Inc..) - C:\WINDOWS\System32\drivers\amdsbs.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 27032] (amdxata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdxata.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 132000] Adaptec SAS/SATA-II RAID S (arcsas) . (.PMC-Sierra, Inc..) - C:\WINDOWS\System32\drivers\arcsas.sys =>.Microsoft Windows®
SR - Auto [13/03/2014] [ 920736] ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe =>.ASUSTeK Computer Inc.®
SR - Auto [13/03/2014] [ 951936] ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe =>.ASUSTeK Computer Inc.®
SR - System [08/05/2015] [ 15232] AsIO (AsIO) . (...) - C:\Windows\SysWOW64\drivers\AsIO.sys =>.ASUSTeK Computer Inc.®
SR - Demand [14/04/2016] [ 150272] ASMedia USB3.1 Hub (asmthub3) . (.ASMedia Technology Inc.) - C:\WINDOWS\System32\drivers\asmthub3.sys =>.ASMedia Technology Inc.®
SR - Demand [14/04/2016] [ 453880] ASMedia XHCI Servi (asmtxhci) . (.ASMedia Technology Inc.) - C:\WINDOWS\System32\drivers\asmtxhci.sys =>.ASMedia Technology Inc.®
SR - Boot [17/06/2015] [ 88936] (asstahci64) . (.Asmedia Technology.) - C:\WINDOWS\System32\drivers\asstahci64.sys =>.ASMedia Technology Inc.®
SR - Auto [24/04/2014] [ 1360016] ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe =>.ASUSTeK
SR - System [15/01/2013] [ 14464] AsUpIO (AsUpIO) . (...) - C:\Windows\SysWOW64\drivers\AsUpIO.sys =>.ASUSTeK Computer Inc.®
SR - Auto [13/03/2014] [ 1632256] AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe =>.ASUSTek Computer Inc.
SR - Demand [20/09/2011] [ 46152] ASUSFILTER (ASUSFILTER) . (.MCCI Corporation.) - C:\Windows\SysWOW64\drivers\ASUSFILTER.sys =>.MCCI Corporation®
SR - Boot [12/04/2018] [ 533912] QLogic Network Adapter VBD (b06bdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\bxvbda.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 9728] bcmfn2 Service (bcmfn2) . (...) - C:\WINDOWS\System32\drivers\bcmfn2.sys =>.Broadcom Corporation
SS - Demand [08/02/2019] [ 8403672] BattlEye Service (BEService) . (...) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe =>.BattlEye Innovations e.K.®
SR - Boot [12/04/2018] [ 321432] (cht4iscsi) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4sx64.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 1836952] Chelsio Virtual Bus Driver (cht4vbd) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4vx64.sys =>.Microsoft Windows®
SR - Demand [18/05/2017] [ 131984] SAMSUNG Mobile USB Com (dg_ssudbus) . (.Samsung Electronics Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\ssudbus.sys =>.Samsung Electronics Co., Ltd.®
SS - Demand [21/11/2016] [ 1472704] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe =>.Disc Soft Ltd®
SR - Demand [16/02/2018] [ 30264] DAEMON Tools Lite Virt (dtlitescsibus) . (.Disc Soft Ltd.) - C:\WINDOWS\System32\drivers\dtlitescsibus.sys =>.Disc Soft Ltd®
SR - Demand [16/02/2018] [ 47672] DAEMON Tools Lite Virtu (dtliteusbbus) . (.Disc Soft Ltd.) - C:\WINDOWS\System32\drivers\dtliteusbbus.sys =>.Disc Soft Ltd®
SS - Demand [09/12/2018] [ 781440] EasyAntiCheat (EasyAntiCheat) . (.EasyAntiCheat Ltd.) - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe =>.EasyAntiCheat Oy®
SR - Boot [12/04/2018] [ 3419032] QLogic 10 Gigabit Ethernet Ada (ebdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\evbda.sys =>.Microsoft Windows®
SS - Demand [05/02/2018] [ 662600] GalaxyClientService (GalaxyClientService) . (.GOG.com.) - F:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe =>.GOG Sp. z o.o.®
SS - Demand [13/06/2018] [ 8174664] GalaxyCommunication (GalaxyCommunication) . (.GOG.com.) - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe =>.GOG Sp. z o.o.®
SS - Demand [21/05/2019] [ 1267696] Google Chrome Elevation Service (GoogleChromeElevationService) . (.Google Inc..) - C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\elevation_service.exe =>.Google LLC®
SR - Auto [11/02/2018] [ 153168] Google frissítés Szolgáltatás (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [11/02/2018] [ 153168] Google frissítés Szolgáltatás (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Demand [29/06/2017] [ 45680] LogMeIn Hamachi Virtu (Hamachi) . (.LogMeIn Inc..) - C:\WINDOWS\System32\drivers\Hamdrv.sys =>.Microsoft Windows Hardware Compatibility Publisher®
SR - Auto [02/04/2019] [ 3361736] LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe =>.LogMeIn, Inc.®
SR - Demand [17/04/2016] [ 25288] USB Mouse Rate Adjuster Lower Filter by SweetLow (hidusbf) . (.SweetLow.) - C:\WINDOWS\System32\DRIVERS\hidusbf.sys =>.Jeshua Starr Scully®
SR - Auto [11/06/2018] [ 9728] Hi-Rez Studios Authenticate and Update Service (HiPatchService) . (.Hi-Rez Studios.) - F:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe =>.Hi-Rez Studios
SR - Boot [12/04/2018] [ 64408] (HpSAMD) . (.Hewlett-Packard Company.) - C:\WINDOWS\System32\drivers\HpSAMD.sys =>.Microsoft Windows®
SR - System [16/06/2019] [ 66336] HWiNFO Kernel Driver (HWiNFO) . (.REALiX(tm).) - C:\WINDOWS\system32\drivers\HWiNFO64A.SYS =>.Martin Malik - REALiX®
SR - Demand [12/04/2018] [ 36864] Intel Serial IO GPIO Controlle (iagpio) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iagpio.sys =>.Intel(R) Corporation
SR - Demand [12/04/2018] [ 91648] Intel(R) Serial IO I2C Host Cont (iai2c) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iai2c.sys =>.Intel(R) Corporation
SR - Demand [12/04/2018] [ 79360] Intel(R) S (iaLPSS2i_GPIO2) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 88576] In (iaLPSS2i_GPIO2_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 171520] Intel(R) Seria (iaLPSS2i_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 174592] Intel( (iaLPSS2i_I2C_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 38128] Intel(R) Serial IO (iaLPSSi_GPIO) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys =>.Intel Corporation - Client Components Group®
SR - Demand [12/04/2018] [ 113152] Intel(R) Serial IO I (iaLPSSi_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys =>.Intel Corporation
SR - Boot [12/04/2018] [ 885144] Intel Chipset SATA RAI (iaStorAVC) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorAVC.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 412064] Intel RAID Controller Wi (iaStorV) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorV.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 526232] Mellanox InfiniBand Bus/A (ibbus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ibbus.sys =>.Microsoft Windows®
SR - Auto [00/00/0000] [ 0] ICEsound Service (ICEsoundService) . (...) - C:\WINDOWS\system32\ICEsoundService64.exe (.not file.)
SR - Demand [16/01/2019] [ 6554416] Service for Realtek HD Audio (WDM) (IntcAzAudAddService) . (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\drivers\RTKVHD64.sys =>.Realtek Semiconductor Corp.®
SR - Boot [12/04/2018] [ 145816] (ItSas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\ItSas35i.sys =>.Microsoft Windows®
SR - Auto [27/05/2016] [ 419248] LMIGuardianSvc (LMIGuardianSvc) . (.LogMeIn, Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe =>.LogMeIn, Inc.®
SR - Boot [12/04/2018] [ 108952] (LSI_SAS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 124312] (LSI_SAS2i) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 128408] (LSI_SAS3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\lsi_sas3i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 82848] (LSI_SSS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sss.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 59800] (megasas) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 75160] (megasas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\MegaSas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 82328] (megasas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas35i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 575896] (megasr) . (.LSI Corporation, Inc..) - C:\WINDOWS\System32\drivers\megasr.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 842648] Mellanox ConnectX Bus E (mlx4_bus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\mlx4_bus.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 63904] (mvumis) . (.Marvell Semiconductor, Inc..) - C:\WINDOWS\System32\drivers\mvumis.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 108952] NetworkDirect Service (ndfltr) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ndfltr.sys =>.Microsoft Windows®
SR - System [21/02/2013] [ 32840] WinpkFilter LightWeight Filter (ndisrd) . (.NT Kernel Resources.) - C:\WINDOWS\System32\DRIVERS\ndisrd.sys =>.Realtek Semiconductor Corp®
SR - Auto [27/02/2019] [ 782136] NVIDIA LocalSystem Container (NvContainerLocalSystem) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
SS - Demand [27/02/2019] [ 782136] NVIDIA NetworkService Container (NvContainerNetworkService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
SR - Auto [22/05/2019] [ 782136] NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
SR - Demand [23/05/2019] [ 228608] Service for NVIDIA High Definiti (NVHDA) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvhda64v.sys =>.NVIDIA Corporation®
SR - Demand [23/05/2019] [21836032] (nvlddmkm) . (.NVIDIA Corporation.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b49751b9038af669\nvlddmkm.sys =>.NVIDIA Corporation®
SR - Boot [12/04/2018] [ 150424] (nvraid) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvraid.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 166304] (nvstor) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvstor.sys =>.Microsoft Windows®
SR - Demand [10/05/2019] [ 30336] NVIDIA KMS (NvStreamKms) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys =>.NVIDIA Corporation®
SR - Auto [22/05/2019] [ 782136] NVIDIA Telemetry Container (NvTelemetryContainer) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe =>.NVIDIA Corporation®
SR - Demand [17/04/2019] [ 69840] NVIDIA Virtual Au (nvvad_WaveExtensible) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvvad64v.sys =>.NVIDIA Corporation®
SR - Demand [17/04/2019] [ 75600] NVVHCI Enumerator Service (nvvhci) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvvhci.sys =>.NVIDIA Corporation®
SS - Demand [00/00/0000] [ 0] Origin Client Service (Origin Client Service) . (...) - C:\Program Files (x86)\Origin\OriginClientService.exe (.not file.)
SR - Auto [00/00/0000] [ 0] Origin Web Helper Service (Origin Web Helper Service) . (...) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (.not file.)
SS - Demand [06/03/2019] [ 2436936] Overwolf Updater Windows SCM (OverwolfUpdater) . (.Overwolf LTD.) - F:\Overwolf\OverwolfUpdater.exe =>.Overwolf Ltd®
SR - Boot [12/04/2018] [ 58776] (percsas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 61848] (percsas3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas3i.sys =>.Microsoft Windows®
SR - Auto [15/11/2018] [ 1293936] ProductAgentService (ProductAgentService) . (.Bitdefender.) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe =>.Bitdefender SRL®
SR - Demand [23/10/2018] [ 1131024] Realtek RT640 NT Driver (rt640x64) . (.Realtek.) - C:\WINDOWS\System32\drivers\rt640x64.sys =>.Realtek Semiconductor Corp.®
SR - Auto [16/01/2019] [ 857376] Realtek Audio Universal Service (RtkAudioUniversalService) . (.Realtek Semiconductor.) - C:\WINDOWS\System32\RtkAudUService64.exe =>.Realtek Semiconductor Corp.®
SR - Boot [12/04/2018] [ 44952] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\WINDOWS\System32\drivers\SiSRaid2.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 81816] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\WINDOWS\System32\drivers\sisraid4.sys =>.Microsoft Windows®
SR - Demand [18/05/2017] [ 166288] SAMSUNG Mobile USB Modem Dr (ssudmdm) . (.Samsung Electronics Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\ssudmdm.sys =>.Samsung Electronics Co., Ltd.®
SS - Demand [15/06/2019] [ 1695008] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Boot [12/04/2018] [ 31128] (stexstor) . (.Promise Technology, Inc..) - C:\WINDOWS\System32\drivers\stexstor.sys =>.Microsoft Windows®
SR - Demand [22/08/2013] [ 40664] TAP-Windows Adapter V9 (tap0901) . (.The OpenVPN Project.) - C:\WINDOWS\System32\drivers\tap0901.sys =>.OpenVPN Technologies, Inc.®
SR - Auto [10/09/2018] [11644656] TeamViewer 13 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
SR - Demand [02/09/2014] [ 41192] @oem20.inf,%DeviceName% (WDM);VB-Audio Virtual Cable (WDM) (VBAudioVACMME) . (...) - C:\WINDOWS\System32\DRIVERS\vbaudio_cable64_win7.sys =>.Vincent Burel®
SR - Auto [15/10/2018] [ 57200] VPN Unlimited Service (VPNUnlimitedService) . (.KeepSolid Inc..) - C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe =>.KeepSolid Inc.®
SR - Boot [12/04/2018] [ 166808] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\WINDOWS\System32\drivers\vsmraid.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 305560] VIA StorX Storage RAID Co (VSTXRAID) . (.VIA Corporation.) - C:\WINDOWS\System32\drivers\vstxraid.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 32152] WinMad Service (WinMad) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winmad.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 64920] WinVerbs Service (WinVerbs) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winverbs.sys =>.Microsoft Windows®

---\ Task Planned Automatically (Register) (52) - 8s
O38 - TASK: {01EAF71B-0E3D-4D11-8B10-7DC3C36602B2} [64Bits][\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA GeForce Experience.) -- C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3787304] =>.NVIDIA Corporation
O38 - TASK: {0CA78772-5AE4-4342-9E76-0C0F2B1289D8} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544] =>.Adobe Systems Incorporated
O38 - TASK: {0D5672EC-9D43-4441-AF48-80551A92FBE3} [64Bits][\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA driver profile updater.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056] =>.NVIDIA Corporation
O38 - TASK: {21F6A008-A25D-4174-B59A-ADFC364062A8} [64Bits][\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA crash and telemetry reporter.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296] =>.NVIDIA Corporation
O38 - TASK: {2428FB2C-EB25-4BA3-8E91-1FE7248A90B5} [64Bits][\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA driver profile updater.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056] =>.NVIDIA Corporation
O38 - TASK: {263A7F38-8416-4B42-959F-3812DB85982E} [64Bits][\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136] =>.NVIDIA Corporation
O38 - TASK: {3A8E09B4-B7C8-4A42-8A34-D0CD403CFE96} [64Bits][\HardDiskSentinel\Hard Disk Sentinel_User] - (.H.D.S. Hungary - Hard Disk Sentinel.) -- C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5360720] =>.H.D.S. Hungary
O38 - TASK: {42F39166-5E2A-4880-8B59-9DFB9971D903} [64Bits][\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA crash and telemetry reporter.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296] =>.NVIDIA Corporation
O38 - TASK: {4B0FE847-3096-456B-8E36-1ACBDF4B6EF3} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Google telepítő.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {52543B00-094F-42F5-BAE5-3D4DEFFBA956} [64Bits][\AMDAutoUpdate] - (.DESKTOP-NQ7JARN\User - AMD AutoUpdate.) -- C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [661240]
O38 - TASK: {596BE6FD-9766-47FD-98FB-BAF9949F07E6} [64Bits][\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA crash and telemetry reporter.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296] =>.NVIDIA Corporation
O38 - TASK: {5FF73AE9-01FE-4CF7-BB5A-8004F51862E0} [64Bits][\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-Peti] - (.Adobe Systems, Incorporated - Adobe GC Invoker Utility.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872] =>.Adobe Systems, Incorporated
O38 - TASK: {71FC3378-352E-4E7C-A320-82CD6CFBB5BE} [64Bits][\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136] =>.NVIDIA Corporation
O38 - TASK: {7813DBD2-9FB1-4388-8A72-4DB7DD5E4A1A} [64Bits][\CCleanerSkipUAC] - (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [14636224] =>.Piriform Software Ltd
O38 - TASK: {92293D49-7DF5-4C36-A9BF-AEB39885979C} [64Bits][\ASUS\ASUS Network iControl Help Execute] - (.ASUSTeK Computer Inc. - NetSvcHelpEntry.) -- C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [328504] =>.ASUSTek Computer Inc.
O38 - TASK: {9CF46E32-E487-4119-B261-3C3F4F728209} [64Bits][\Avast Software\Overseer] - (.AVAST Software - Avast Overseer.) -- C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2281944] =>.AVAST Software
O38 - TASK: {ACE16E21-C4E3-44D8-A78C-B834AC609F6B} [64Bits][\CCleaner Update] - (.Piriform Software Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [619416] =>.Piriform Software Ltd
O38 - TASK: {B7A57538-3814-4B3E-ABA3-212CBB7EF237} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Google telepítő.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {BC6FDED6-F91C-404E-B8AB-9349ED7BDFDD} [64Bits][\ASUS\ASUS AI Suite II Execute] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2935424] =>.ASUSTek Computer Inc.
O38 - TASK: {BDA80DE6-F2EE-42B9-A494-00D66CC18799} [64Bits][\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864] - (.Bitdefender - Bitdefender Agent WatchDog.) -- C:\Program Files\Bitdefender Agent\WatchDog.exe [462288] =>.BitDefender
O38 - TASK: {BF5635D2-D9D2-4978-9B4E-B557BCD3C328} [64Bits][\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA crash and telemetry reporter.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296] =>.NVIDIA Corporation
O38 - TASK: {CED98321-169F-4F2D-BCDD-8E7B5A3F5A90} [64Bits][\Overwolf Updater Task] - (.Overwolf LTD - OverwolfUpdater.) -- F:\Overwolf\OverwolfUpdater.exe [2436936] =>.Overwolf LTD
O38 - TASK: {CFAF9499-212C-46CA-AE53-85DC9AB96297} [64Bits][\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-User] - (.Adobe Systems, Incorporated - Adobe GC Invoker Utility.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872] =>.Adobe Systems, Incorporated
O38 - TASK: {D4FED0F9-3D9D-422E-81A5-E4EFD9B6C1CC} [64Bits][\ASUS\USB 3.0 Boost Service] - (.ASUSTeK - U3Checker MFC Application.) -- C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [90112] =>.ASUSTeK
O38 - TASK: {E493C977-BAEE-4F5E-AFCD-1D450B0DCECA} [64Bits][\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] - (.NVIDIA Corporation - NVIDIA nodejs launcher.) -- C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504] =>.NVIDIA Corporation
O38 - TASK: {E687249C-0724-4B0D-97FA-5C9BC38C5690} [64Bits][\ASUS\ASUS WiFi GO! Server Execute] - (.ASUSTeK Computer Inc. - ASUS WiFi GO! Server.) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [967480] =>.ASUSTek Computer Inc.
C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [] =>.Adobe Systems Incorporated
C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [-d 'C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck' -l 3 -f C:\ProgramData\NVIDIA\NvContain] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_User - (.H.D.S. Hungary.) -- C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [/AUTORUN] =>.H.D.S. Hungary
C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua ./ua] =>.Google Inc.
C:\WINDOWS\System32\Tasks\AMDAutoUpdate - (.DESKTOP-NQ7JARN\User.) -- C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe []
C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-Peti - (.Adobe Systems, Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [] =>.Adobe Systems, Incorporated
C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [-d 'C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck' -l 3 -f C:\ProgramData\NVIDIA] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\CCleanerSkipUAC - (.Piriform Software Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [$(Arg0)] =>.Piriform Software Ltd
C:\WINDOWS\System32\Tasks\ASUS\ASUS Network iControl Help Execute - (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [-delay] =>.ASUSTek Computer Inc.
C:\WINDOWS\System32\Tasks\Avast Software\Overseer - (.AVAST Software.) -- C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [/from_scheduler:1] =>.AVAST Software
C:\WINDOWS\System32\Tasks\CCleaner Update - (.Piriform Software Ltd.) -- C:\Program Files\CCleaner\CCUpdate.exe [] =>.Piriform Software Ltd
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google Inc.
C:\WINDOWS\System32\Tasks\ASUS\ASUS AI Suite II Execute - (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [-open] =>.ASUSTek Computer Inc.
C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 - (.Bitdefender.) -- C:\Program Files\Bitdefender Agent\WatchDog.exe [repair] =>.BitDefender
C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\Overwolf Updater Task - (.Overwolf LTD.) -- F:\Overwolf\OverwolfUpdater.exe [/RunningFrom Schedule./RunningFrom] =>.Overwolf LTD
C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-User - (.Adobe Systems, Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [-mode=scheduled] =>.Adobe Systems, Incorporated
C:\WINDOWS\System32\Tasks\ASUS\USB 3.0 Boost Service - (.ASUSTeK.) -- C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [] =>.ASUSTeK
C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [--launcher=TaskScheduler] =>.NVIDIA Corporation
C:\WINDOWS\System32\Tasks\ASUS\ASUS WiFi GO! Server Execute - (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [] =>.ASUSTek Computer Inc.

---\ Auto loading programs from Registry and folders (29) - 3s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] . (.Adobe Systems, Incorporated - Adobe GC Invoker Utility.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe =>.Adobe Inc.®
O4 - HKLM\..\Run: [RtkAudUService] . (.Realtek Semiconductor - Realtek HD Audio Universal Service.) -- C:\WINDOWS\System32\RtkAudUService64.exe =>.Realtek Semiconductor
O4 - HKCU\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (. - .) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [GoToAssist Remote Support Expert] . (.LogMeIn, Inc. - GoToAssist.) -- C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe =>.LogMeIn, Inc.®
O4 - HKCU\..\Run: [Overwolf] . (.Overwolf Ltd. - Overwolf Launcher.) -- F:\Overwolf\OverwolfLauncher.exe =>.Overwolf Ltd®
O4 - HKCU\..\Run: [VPN Unlimited] . (.KeepSolid Inc. - VPN Unlimited Launcher.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-launcher.exe =>.KeepSolid Inc.®
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] . (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd®
O4 - HKCU\..\Run: [Discord] . (.Discord Inc. - Discord.) -- C:\Users\User\AppData\Local\Discord\app-0.0.305\Discord.exe =>.Discord Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [ASUS WiFi GO! FileTransfer Execute] . (.ASUSTeK Computer Inc. - WiFil GO! File Transfer.) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe =>.ASUSTeK Computer Inc.®
O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe =>.LogMeIn, Inc.®
O4 - HKUS\S-1-5-19\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000 =>.SUP.Orphan
O4 - HKUS\S-1-5-20\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000 =>.SUP.Orphan
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [DAEMON Tools Lite Automount] . (. - .) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe (.Not File.) =>.SUP.Orphan
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [GoToAssist Remote Support Expert] . (.LogMeIn, Inc. - GoToAssist.) -- C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe =>.LogMeIn, Inc.®
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [Overwolf] . (.Overwolf Ltd. - Overwolf Launcher.) -- F:\Overwolf\OverwolfLauncher.exe =>.Overwolf Ltd®
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [VPN Unlimited] . (.KeepSolid Inc. - VPN Unlimited Launcher.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-launcher.exe =>.KeepSolid Inc.®
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [CCleaner Smart Cleaning] . (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd®
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [Discord] . (.Discord Inc. - Discord.) -- C:\Users\User\AppData\Local\Discord\app-0.0.305\Discord.exe =>.Discord Inc.®

---\ Process running (55) - 10s
[MD5.08F828CB2228CDF555A39ABBE32AC232] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [782136] [PID.1740] =>.NVIDIA Corporation®
[MD5.08F828CB2228CDF555A39ABBE32AC232] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [782136] [PID.2052] =>.NVIDIA Corporation®
[MD5.0466B91EE5767A769E9F8EDB8EF94DDB] - (.ASUSTeK Computer Inc. - .) -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936] [PID.3416] =>.ASUSTeK Computer Inc.®
[MD5.10A58DA77AE2073D1BAF4F13630EA516] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.3436] =>.Adobe Systems, Incorporated®
[MD5.36834987B7E4BEFD1E57562FABC983AC] - (.KeepSolid Inc. - VPN Unlimited Service.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe [57200] [PID.3504] =>.KeepSolid Inc.®
[MD5.0554F3B69D39D175DD110D765C11347A] - (.LogMeIn, Inc. - LMIGuardianSvc.) -- C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248] [PID.3540] =>.LogMeIn, Inc.®
[MD5.37F7DD839A711B5706B1264F4D8D4BDC] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016] [PID.3592] =>.ASUSTeK
[MD5.69D091591FB5EE555E221552D7A7F3AA] - (.Realtek Semiconductor - Realtek HD Audio Universal Service.) -- C:\WINDOWS\System32\RtkAudUService64.exe [857376] [PID.3604] =>.Realtek Semiconductor
[MD5.FEB2ED40421C54040BC11380272CADDC] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256] [PID.3612] =>.ASUSTek Computer Inc.
[MD5.E8FFA4ABF3BF3C283A88F0D0E48F572B] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [782136] [PID.3644] =>.NVIDIA Corporation®
[MD5.E8FFA4ABF3BF3C283A88F0D0E48F572B] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136] [PID.3708] =>.NVIDIA Corporation®
[MD5.C8A03715DBE271AA23295ECD1E240359] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1293936] [PID.3720] =>.Bitdefender SRL®
[MD5.B0A3D79E55A64E5F4C39DD58540ED4CC] - (.Adobe Systems, Incorporated - Adobe Genuine Software Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648] [PID.3732] =>.Adobe Inc.®
[MD5.6469B092F0B640E2E96605A421CF61BE] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272] [PID.3756] =>.Adobe Inc.®
[MD5.2A456AFE195E6878EEC5E193EA383B15] - (.Hi-Rez Studios - HiPatchService.) -- F:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728] [PID.3776] =>.Hi-Rez Studios
[MD5.18314F3FD0E47F0969F384780F9B6F80] - (.TeamViewer GmbH - TeamViewer 13.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656] [PID.3928] =>.TeamViewer GmbH®
[MD5.CCBC802D45A5DFA02CDB24083EDAC0D8] - (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) -- C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736] [PID.4272] =>.LogMeIn, Inc.®
[MD5.E8FFA4ABF3BF3C283A88F0D0E48F572B] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136] [PID.6828] =>.NVIDIA Corporation®
[MD5.8C9231025FAF86B78906B6C847531FFB] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2935424] [PID.7068] =>.ASUSTeK Computer Inc.®
[MD5.A79CADC179E647C7690980F24F6DF0DA] - (.ASUSTeK Computer Inc. - ASUS WiFi GO! Server.) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe [967480] [PID.6552] =>.ASUSTeK Computer Inc.®
[MD5.D2E6F65D801CFD062D7AF9DAB16BF984] - (.H.D.S. Hungary - Hard Disk Sentinel.) -- C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5360720] [PID.7200] =>.Janos Mathe®
[MD5.0A2F4748A6E162C9129865285ABDD363] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe [182272] [PID.8636] =>.Microsoft Corporation
[MD5.77FE6201A5C48B3516503B7BDBB521C1] - (.Node.js - NVIDIA Web Helper Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe [29784376] [PID.7020] =>.NVIDIA Corporation®
[MD5.A2D8BEF0CCA959E4BEB16DE982E3771C] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe [294184] [PID.9424] =>.Google Inc®
[MD5.30C7CBCED8E3689E30299CABAD4B9AC7] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe [373032] [PID.9468] =>.Google Inc®
[MD5.EC1562C59581C35B13DE537E27161A5D] - (.ASUSTeK Computer Inc. - USB 3.0 Boost Service.) -- C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe [426296] [PID.10348] =>.ASUSTeK Computer Inc.®
[MD5.69D091591FB5EE555E221552D7A7F3AA] - (.Realtek Semiconductor - Realtek HD Audio Universal Service.) -- C:\Windows\System32\RtkAudUService64.exe [857376] [PID.7828] =>.Realtek Semiconductor
[MD5.1886DA4ADB90A186E52674FC3A8AFE98] - (.ASUSTeK Computer Inc. - AlertHelper.) -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe [1112704] [PID.11148] =>.ASUSTeK Computer Inc.®
[MD5.491811B91833F097B90FE14F48834BEC] - (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [19589208] [PID.12272] =>.Piriform Software Ltd®
[MD5.2C8D607BF6C02FA761EEF97D5F321D70] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288] [PID.12848] =>.Oracle America, Inc.®
[MD5.98556881C1F1703FDDD05470ABA15DD0] - (.ASUSTeK Computer Inc. - WiFil GO! File Transfer.) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe [1391416] [PID.12416] =>.ASUSTeK Computer Inc.®
[MD5.08D4DDD892BD1DAEAC1DB4EA4F3A21E4] - (.ASUSTeK Computer Inc. - ASUS DLNA Player.) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe [696632] [PID.14208] =>.ASUSTeK Computer Inc.®
[MD5.5FF31491FADBE56B752EBE635FBDF296] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [928280] [PID.13184] =>.Oracle America, Inc.®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.8780] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.4484] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.8312] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.11092] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.12640] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.10932] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.8520] =>.Google LLC®
[MD5.2CF8B819CA91F5DE1D0ABE1ED02EAAFF] - (.ALCPU - CPU temperature and system information util.) -- C:\Program Files\Core Temp\Core Temp.exe [999000] [PID.13540] =>.ALCPU®
[MD5.7C4209A6671F5DA429DB3F32EB093237] - (.Valve Corporation - Steam Client Bootstrapper.) -- F:\Program Files (x86)\Steam\Steam.exe [3148576] [PID.12004] =>.Valve®
[MD5.B1E59D0D195ABFC1F429F67DD3123F24] - (.Valve Corporation - Steam Client WebHelper.) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [5385504] [PID.9396] =>.Valve®
[MD5.B1E59D0D195ABFC1F429F67DD3123F24] - (.Valve Corporation - Steam Client WebHelper.) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [5385504] [PID.9600] =>.Valve®
[MD5.B1E59D0D195ABFC1F429F67DD3123F24] - (.Valve Corporation - Steam Client WebHelper.) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [5385504] [PID.4224] =>.Valve®
[MD5.B1E59D0D195ABFC1F429F67DD3123F24] - (.Valve Corporation - Steam Client WebHelper.) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [5385504] [PID.2716] =>.Valve®
[MD5.B1E59D0D195ABFC1F429F67DD3123F24] - (.Valve Corporation - Steam Client WebHelper.) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [5385504] [PID.6808] =>.Valve®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.6040] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.14304] =>.Google LLC®
[MD5.07D4E15325BF16490A6AAB7DE9849FE4] - (.REALiX - HWiNFO64.) -- C:\Program Files\HWiNFO64\HWiNFO64.EXE [4320288] [PID.9332] =>.Martin Malik - REALiX®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.8288] =>.Google LLC®
[MD5.F9DFBDD2BA602AE341FE5C61FF7585B4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1723888] [PID.1528] =>.Google LLC®
[MD5.4967F0990578B3F64854C6E98B987ACC] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\User\AppData\Roaming\ZHP\ZHPDiag3.exe [3039616] [PID.3704] =>.Nicolas Coolman
[MD5.A2700A281BF7D3AC7D7CD60DF728FB84] - (.Epic Games, Inc. - BootstrapPackagedGame.) -- C:\Users\User\Downloads\Új mappa\Radiant.exe [518144] [PID.6280] =>.Epic Games, Inc.
[MD5.35CC1EF9CC6F7F31157730D5033D3B3C] - (.DerelictHelmsman - Radiant.) -- C:\Users\User\Downloads\Új mappa\Radiant\Binaries\Win64\Radiant-Win64-Shipping.exe [50291712] [PID.10572]

---\ Google Chrome, Start,Search,Extensions (15) - 1s
G2 - GCE: Preference [User][User Data\Default\Extensions] [ajopnjidmegmdimjlfnijceegpefgped] BetterTTV =>.nightdev.com
G2 - GCE: Preference [User][User Data\Default\Extensions] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [User][User Data\Default\Extensions] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User][User Data\Default\Extensions] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User][User Data\Default\Extensions] [efaidnbmnnnibpcajpcglclefindmkaj] =>.Adobe Inc. {Acrobat}
G2 - GCE: Preference [User][User Data\Default\Extensions] [fadndhdgpmmaapbmfcknlfgcflmmmieb] FrankerFaceZ =>.frankerfacez
G2 - GCE: Preference [User][User Data\Default\Extensions] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [User][User Data\Default\Extensions] [gighmmpiobklfepjocnamgkkbiglidom] Toggle Pause/Resume on all sites =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [User][User Data\Default\Extensions] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User][User Data\Default\Extensions] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [User][User Data\Default\Extensions] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
G2 - GCE: Preference [User][User Data\Default\Local Extension Settings] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [User][User Data\Default\Local Extension Settings] [gighmmpiobklfepjocnamgkkbiglidom] =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [User][User Data\Default\Managed Extension Settings] [gighmmpiobklfepjocnamgkkbiglidom] =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [User][User Data\Default\Sync Extension Settings] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] =>.Google Inc. {Chrome Media Router}

---\ Internet Explorer Extensions, Start, Search (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internetböngésző.) (11.00.17134.829 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation

---\ INTERNET EXPLORER, trusted site and sensitive site (1) - 0s
~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad)

---\ Internet Explorer, Proxy Management (3) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (28)

---\ Browser Helper Object (BHO) (2) - 0s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®

---\ Global shortcuts Startup (161) - 14s
O4 - GS\Desktop [Alapértelmezett fiók]: Discord.lnk . (.GitHub - Update.) C:\Users\User\AppData\Local\Discord\Update.exe --processStart Discord.exe =>.Discord Inc.®
O4 - GS\Desktop [Alapértelmezett fiók]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Desktop [Alapértelmezett fiók]: HDSentinel parancsikonja.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) F:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.H.D.S. Hungary
O4 - GS\Desktop [Alapértelmezett fiók]: Hearthstone Deck Tracker.lnk . (.HearthSim - Hearthstone Deck Tracker.) C:\Users\User\AppData\Local\HearthstoneDeckTracker\HearthstoneDeckTracker.exe =>.HearthSim, LLC®
O4 - GS\Desktop [Alapértelmezett fiók]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [Alapértelmezett fiók]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Desktop [Alapértelmezett fiók]: Uplay.lnk . (.Ubisoft - Uplay launcher.) F:\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Alapértelmezett fiók]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\User\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Alapértelmezett fiók]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Alapértelmezett fiók]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\sendTo [Alapértelmezett fiók]: Bluetooth-alapú fájlátvitel.LNK . (.Microsoft Corporation - Fájlok átvitele eszközök és sz.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Alapértelmezett fiók]: Fax címzettje.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Alapértelmezett fiók]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Alapértelmezett fiók]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Alapértelmezett fiók]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Alapértelmezett fiók]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Alapértelmezett fiók]: GoToAssist Expert.lnk . (.LogMeIn, Inc. - GoToAssist.) C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe '/Action Default' '/Trigger Shortcut' =>.LogMeIn, Inc.®
O4 - GS\Programs [Alapértelmezett fiók]: OneDrive.lnk . (...) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - GS\Programs [Alapértelmezett fiók]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [Peti]: Discord.lnk . (.GitHub - Update.) C:\Users\User\AppData\Local\Discord\Update.exe --processStart Discord.exe =>.Discord Inc.®
O4 - GS\Desktop [Peti]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Desktop [Peti]: HDSentinel parancsikonja.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) F:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.H.D.S. Hungary
O4 - GS\Desktop [Peti]: Hearthstone Deck Tracker.lnk . (.HearthSim - Hearthstone Deck Tracker.) C:\Users\User\AppData\Local\HearthstoneDeckTracker\HearthstoneDeckTracker.exe =>.HearthSim, LLC®
O4 - GS\Desktop [Peti]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [Peti]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Desktop [Peti]: Uplay.lnk . (.Ubisoft - Uplay launcher.) F:\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Peti]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\User\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Peti]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Peti]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\sendTo [Peti]: Bluetooth-alapú fájlátvitel.LNK . (.Microsoft Corporation - Fájlok átvitele eszközök és sz.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Peti]: Fax címzettje.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Peti]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Peti]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Peti]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Peti]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Peti]: GoToAssist Expert.lnk . (.LogMeIn, Inc. - GoToAssist.) C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe '/Action Default' '/Trigger Shortcut' =>.LogMeIn, Inc.®
O4 - GS\Programs [Peti]: OneDrive.lnk . (...) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - GS\Programs [Peti]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [Rendszergazda]: Discord.lnk . (.GitHub - Update.) C:\Users\User\AppData\Local\Discord\Update.exe --processStart Discord.exe =>.Discord Inc.®
O4 - GS\Desktop [Rendszergazda]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Desktop [Rendszergazda]: HDSentinel parancsikonja.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) F:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.H.D.S. Hungary
O4 - GS\Desktop [Rendszergazda]: Hearthstone Deck Tracker.lnk . (.HearthSim - Hearthstone Deck Tracker.) C:\Users\User\AppData\Local\HearthstoneDeckTracker\HearthstoneDeckTracker.exe =>.HearthSim, LLC®
O4 - GS\Desktop [Rendszergazda]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [Rendszergazda]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Desktop [Rendszergazda]: Uplay.lnk . (.Ubisoft - Uplay launcher.) F:\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Rendszergazda]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\User\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Rendszergazda]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Rendszergazda]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\sendTo [Rendszergazda]: Bluetooth-alapú fájlátvitel.LNK . (.Microsoft Corporation - Fájlok átvitele eszközök és sz.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Rendszergazda]: Fax címzettje.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Rendszergazda]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Rendszergazda]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Rendszergazda]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Rendszergazda]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Rendszergazda]: GoToAssist Expert.lnk . (.LogMeIn, Inc. - GoToAssist.) C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe '/Action Default' '/Trigger Shortcut' =>.LogMeIn, Inc.®
O4 - GS\Programs [Rendszergazda]: OneDrive.lnk . (...) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - GS\Programs [Rendszergazda]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [User]: Discord.lnk . (.GitHub - Update.) C:\Users\User\AppData\Local\Discord\Update.exe --processStart Discord.exe =>.Discord Inc.®
O4 - GS\Desktop [User]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Desktop [User]: HDSentinel parancsikonja.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) F:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.H.D.S. Hungary
O4 - GS\Desktop [User]: Hearthstone Deck Tracker.lnk . (.HearthSim - Hearthstone Deck Tracker.) C:\Users\User\AppData\Local\HearthstoneDeckTracker\HearthstoneDeckTracker.exe =>.HearthSim, LLC®
O4 - GS\Desktop [User]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [User]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Desktop [User]: Uplay.lnk . (.Ubisoft - Uplay launcher.) F:\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [User]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\User\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [User]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [User]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\sendTo [User]: Bluetooth-alapú fájlátvitel.LNK . (.Microsoft Corporation - Fájlok átvitele eszközök és sz.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [User]: Fax címzettje.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [User]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [User]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [User]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [User]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [User]: GoToAssist Expert.lnk . (.LogMeIn, Inc. - GoToAssist.) C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe '/Action Default' '/Trigger Shortcut' =>.LogMeIn, Inc.®
O4 - GS\Programs [User]: OneDrive.lnk . (...) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - GS\Programs [User]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [Vendég]: Discord.lnk . (.GitHub - Update.) C:\Users\User\AppData\Local\Discord\Update.exe --processStart Discord.exe =>.Discord Inc.®
O4 - GS\Desktop [Vendég]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Desktop [Vendég]: HDSentinel parancsikonja.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) F:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.H.D.S. Hungary
O4 - GS\Desktop [Vendég]: Hearthstone Deck Tracker.lnk . (.HearthSim - Hearthstone Deck Tracker.) C:\Users\User\AppData\Local\HearthstoneDeckTracker\HearthstoneDeckTracker.exe =>.HearthSim, LLC®
O4 - GS\Desktop [Vendég]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [Vendég]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Desktop [Vendég]: Uplay.lnk . (.Ubisoft - Uplay launcher.) F:\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Vendég]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\User\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Vendég]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Vendég]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\sendTo [Vendég]: Bluetooth-alapú fájlátvitel.LNK . (.Microsoft Corporation - Fájlok átvitele eszközök és sz.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Vendég]: Fax címzettje.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Vendég]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Vendég]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [Vendég]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Vendég]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Vendég]: GoToAssist Expert.lnk . (.LogMeIn, Inc. - GoToAssist.) C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe '/Action Default' '/Trigger Shortcut' =>.LogMeIn, Inc.®
O4 - GS\Programs [Vendég]: OneDrive.lnk . (...) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - GS\Programs [Vendég]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [WDAGUtilityAccount]: Discord.lnk . (.GitHub - Update.) C:\Users\User\AppData\Local\Discord\Update.exe --processStart Discord.exe =>.Discord Inc.®
O4 - GS\Desktop [WDAGUtilityAccount]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Desktop [WDAGUtilityAccount]: HDSentinel parancsikonja.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) F:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.H.D.S. Hungary
O4 - GS\Desktop [WDAGUtilityAccount]: Hearthstone Deck Tracker.lnk . (.HearthSim - Hearthstone Deck Tracker.) C:\Users\User\AppData\Local\HearthstoneDeckTracker\HearthstoneDeckTracker.exe =>.HearthSim, LLC®
O4 - GS\Desktop [WDAGUtilityAccount]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Desktop [WDAGUtilityAccount]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Desktop [WDAGUtilityAccount]: Uplay.lnk . (.Ubisoft - Uplay launcher.) F:\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\User\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [WDAGUtilityAccount]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\sendTo [WDAGUtilityAccount]: Bluetooth-alapú fájlátvitel.LNK . (.Microsoft Corporation - Fájlok átvitele eszközök és sz.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Fax címzettje.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\TaskBar [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [WDAGUtilityAccount]: GoToAssist Expert.lnk . (.LogMeIn, Inc. - GoToAssist.) C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe '/Action Default' '/Trigger Shortcut' =>.LogMeIn, Inc.®
O4 - GS\Programs [WDAGUtilityAccount]: OneDrive.lnk . (...) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - GS\Programs [WDAGUtilityAccount]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: AMD Ryzen Master.lnk . (.Advanced Micro Devices, Inc. - .) C:\Program Files (x86)\AMD\RyzenMaster\bin\AMD Ryzen Master.exe =>.Advanced Micro Devices, Inc.
O4 - GS\CommonDesktop [Public]: Battle.net.lnk . (.Blizzard Entertainment - Blizzard Battle.net App Launcher.) F:\Program Files (x86)\Battle.net\Battle.net Launcher.exe =>.Blizzard Entertainment, Inc.®
O4 - GS\CommonDesktop [Public]: BYOND.lnk . (...) C:\Program Files (x86)\BYOND\bin\byond.exe
O4 - GS\CommonDesktop [Public]: calibre - E-book management.lnk . (...) C:\Program Files (x86)\Calibre2\calibre.exe
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Software Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd®
O4 - GS\CommonDesktop [Public]: CPUID CPU-Z.lnk . (.CPUID - CPU-Z Application.) C:\Program Files\CPUID\CPU-Z\cpuz.exe =>.CPUID®
O4 - GS\CommonDesktop [Public]: DAEMON Tools Lite.lnk . (...) C:\Program Files\DAEMON Tools Lite\DTLauncher.exe
O4 - GS\CommonDesktop [Public]: GOG Galaxy.lnk . (.GOG.com - GOG Galaxy.) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe =>.GOG Sp. z o.o.®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\CommonDesktop [Public]: Hearthstone.lnk . (.Blizzard Entertainment - Hearthstone Beta Launcher.) F:\Program Files (x86)\Hearthstone\Hearthstone Beta Launcher.exe =>.Blizzard Entertainment, Inc.®
O4 - GS\CommonDesktop [Public]: MTG Arena.lnk . (.Wizards of the Coast - MtgaLauncher.) F:\Program Files (x86)\MTGA\MtgaLauncher.exe =>.Wizards of the Coast, LLC®
O4 - GS\CommonDesktop [Public]: NetBeans IDE 8.2.lnk . (...) C:\Program Files (x86)\NetBeans 8.2\bin\netbeans64.exe
O4 - GS\CommonDesktop [Public]: Origin.lnk . (...) C:\Program Files (x86)\Origin\Origin.exe
O4 - GS\CommonDesktop [Public]: TeamViewer 13.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\CommonDesktop [Public]: Valley Benchmark 1.0.lnk . (...) C:\Program Files (x86)\Unigine\Valley Benchmark 1.0\valley.bat
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: VPN Unlimited.lnk . (.KeepSolid Inc. - VPN Unlimited.) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe =>.KeepSolid Inc.®
O4 - GS\Programs [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Public]: GoToAssist Expert.lnk . (.LogMeIn, Inc. - GoToAssist.) C:\Users\User\AppData\Local\GoToAssist Remote Support Expert\1599\g2ax_start.exe '/Action Default' '/Trigger Shortcut' =>.LogMeIn, Inc.®
O4 - GS\Programs [Public]: OneDrive.lnk . (...) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - GS\Programs [Public]: osu!.lnk . (.ppy - osu!.) C:\Users\User\AppData\Local\osu!\osu!.exe =>.Dean Herbert®
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Jegyzettömb.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Távoli asztali kapcsolat.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Képmetsző.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Problémarögzítő.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad alkalmazás.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - XPS-megjelenítő.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Karaktertábla.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-0000-0000000FF1CE}\accicons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1038-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CC 2018.lnk . (...) C:\Program Files\Adobe\Adobe Photoshop CC 2018\Photoshop.exe
O4 - GS\ProgramsCommon [Public]: Epic Games Launcher.lnk . (...) F:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-0000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Microsoft Mouse and Keyboard Center.lnk . (.Microsoft - Customize your Microsoft Mouse.) C:\Program Files (x86)\Microsoft Mouse and Keyboard Center\MouseKeyboardCenter.exe =>.Microsoft
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-0000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: TeamViewer 13.lnk . (.TeamViewer GmbH - TeamViewer 13.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-0000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation®

---\ Lop.com/Domain Hijackers (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.246.53 213.46.246.54
O17 - HKLM\System\CCS\Services\Tcpip\..\{00bb3d5d-f1da-476b-8570-facd849b2390}: DhcpNameServer = 10.204.0.1 =>.Private IP (10.0.0.0 - 10.255.255.255) =>.Private IP
O17 - HKLM\System\CCS\Services\Tcpip\..\{7fecf443-9dfb-4504-8f47-48c2f6b47226}: DhcpNameServer = 192.168.0.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{f063f868-fcfc-44c6-a43b-fc38f86e1b9a}: DhcpNameServer = 213.46.246.53 213.46.246.54

---\ Extra protocols (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX-vezérlő streaming videóhoz.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX-vezérlő streaming videóhoz.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL =>.Microsoft Corporation®

---\ AppInit_DLLs Registry value Autorun (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Userinit bejelentkeztető alkalmazás.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation

---\ List of key exploring StartupApproved (28) - 0s
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:GalaxyClient =>.GOG.com
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:uTorrent
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:DAEMON Tools Lite Automount =>.Disc Soft Ltd
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Discord =>.Discord Inc.
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:GoToAssist Remote Support Expert
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:OneDriveSetup =>.Microsoft Corporation
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Overwolf
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:VPN Unlimited
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:CCleaner Smart Cleaning =>.Piriform Ltd
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:GalaxyClient =>.GOG.com
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:uTorrent
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:DAEMON Tools Lite Automount =>.Disc Soft Ltd
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Discord =>.Discord Inc.
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:GoToAssist Remote Support Expert
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:OneDriveSetup =>.Microsoft Corporation
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Overwolf
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:VPN Unlimited
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:CCleaner Smart Cleaning =>.Piriform Ltd
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:SecurityHealth =>.Microsoft Corporation
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AvastUI.exe =>.Avast Software s.r.o
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:RtHDVBg_DTS
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:RTHDVCPL =>.Realtek Semiconductor Corp.
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AdobeAAMUpdater-1.0 =>.Adobe Inc.
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AdobeGCInvoker-1.0
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:LogMeIn Hamachi Ui =>.LogMeIn Entreprise
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:SunJavaUpdateSched =>.Oracle
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:ASUS WiFi GO! FileTransfer Execute
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:AvastUI.exe =>.Avast Software s.r.o

---\ ASIC (ActiveSetup Installed Components) (5) - 1s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Microsoft Windows Media Player telepítő seg.) -- C:\Windows\System32\unregmp2.exe =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE felhasználókénti inicializációs eszköz.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft Corporation®
O40 - ASIC: Google Chrome [64Bits] - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe =>.Google LLC®

---\ Software installed (277) - 31s
=>.Microsoft
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 4K Textures DLC - (.GOG.com.) [HKLM][64Bits] -- 1286889002_is1 =>.GOG Sp. z o.o.®
O42 - Logiciel: 7.b - A játék DEMÓ - (..) [HKCU][64Bits] -- 7.b - A játék DEMÓ
O42 - Logiciel: 7-Zip 18.00 beta (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov
O42 - Logiciel: 7-Zip 18.01 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-1801-000001000000} =>.Igor Pavlov
O42 - Logiciel: Adobe Acrobat Reader DC - Hungarian - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1038-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Photoshop CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PHSP_19_1_5 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824311644} =>.Adobe Systems Incorporated (Hidden)
O42 - Logiciel: AI Suite II - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {34D3688E-A737-44C5-9E2A-FF73618728E1} =>.ASUSTeK Computer Inc.®
O42 - Logiciel: AMD Ryzen Master - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5A1CE077-7111-4C7D-A5C5-E210D4B68AD8} =>.Advanced Micro Devices, Inc. (Hidden)
O42 - Logiciel: AMD Ryzen Master - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- AMD Ryzen Master =>.Advanced Micro Devices Inc.®
O42 - Logiciel: AMD Software - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- AMD Catalyst Install Manager =>.Advanced Micro Devices, Inc.®
O42 - Logiciel: Android Studio - (.Google Inc..) [HKLM][64Bits] -- Android Studio =>.Google Inc.
O42 - Logiciel: Artifact - (.Valve.) [HKLM][64Bits] -- Steam App 583950 =>.Valve®
O42 - Logiciel: Asmedia ASM106x SATA Host Controller Driver - (.Asmedia Technology.) [HKLM][64Bits] -- {DF6C3726-7E53-4772-9763-E9F147769F51} =>.Asmedia Technology
O42 - Logiciel: Asmedia USB Host Controller Driver - (.Asmedia Technology.) [HKLM][64Bits] -- {E4FB0B39-C991-4EE7-95DD-1A1A7857D33D} =>.Asmedia Technology
O42 - Logiciel: Balanced - (.Cégnév.) [HKLM][64Bits] -- {EFD0705E-598B-46D4-8D5B-4539431764B8} (Hidden)
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Bitdefender Agent - (.Bitdefender.) [HKLM][64Bits] -- Bitdefender Agent =>.Bitdefender SRL®
O42 - Logiciel: BYOND - (.BYOND.) [HKLM][64Bits] -- BYOND =>.BYOND
O42 - Logiciel: calibre - (.Kovid Goyal.) [HKLM][64Bits] -- {71640766-157F-4DE8-B45F-69B76B0F5FCE} =>.Kovid Goyal
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Software Ltd®
O42 - Logiciel: Core Temp 1.11 - (.ALCPU.) [HKLM][64Bits] -- {086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1 =>.Alcpu
O42 - Logiciel: CPUID CPU-Z 1.85 - (.CPUID, Inc..) [HKLM][64Bits] -- CPUID CPU-Z_is1 =>.CPUID, Inc.
O42 - Logiciel: Crusader Kings II - (.Paradox Development Studio.) [HKLM][64Bits] -- Steam App 203770 =>.Valve®
O42 - Logiciel: Crypt of the NecroDancer - (.Brace Yourself Games.) [HKLM][64Bits] -- Steam App 247080 =>.Valve®
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.Disc Soft Ltd
O42 - Logiciel: Dauntless - (.Phoenix Labs.) [HKLM][64Bits] -- {03AFDFA7-7A23-41B1-AAC2-3898591127D3} =>.Phoenix Labs
O42 - Logiciel: Dead by Daylight - (.Behaviour Digital Inc..) [HKLM][64Bits] -- Steam App 381210 =>.Valve®
O42 - Logiciel: Definition Update for Microsoft Office 2016 (KB3115407) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{63E25EBC-99BA-45E7-A0D6-F69D2A55FFDD} =>.Microsoft Corporation®
O42 - Logiciel: Discord - (.Discord Inc..) [HKCU][64Bits] -- Discord =>.Discord Inc.®
O42 - Logiciel: DisplayDriverAnalyzer - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: Epic Games Launcher - (.Epic Games, Inc..) [HKLM][64Bits] -- {93BFE5DF-776E-436F-8693-DF1F72C0E3C1} =>.Epic Games, Inc.
O42 - Logiciel: Epic Games Launcher Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {66C5838F-B854-4A55-89E6-A6138747A4DF} =>.Epic Games, Inc. (Hidden)
O42 - Logiciel: Far.Cry.Primal.REPACK-KaOs Uninstaller v3.0 - (.KaOsKrew.) [HKLM][64Bits] -- Far.Cry.Primal.REPACK-KaOs_is1 =>.KaOsKrew
O42 - Logiciel: Game Summary - (.Overwolf app.) [HKCU][64Bits] -- Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb =>.Overwolf Ltd®
O42 - Logiciel: Git version 2.16.2 - (.The Git Development Community.) [HKLM][64Bits] -- Git_is1 =>.Johannes Schindelin®
O42 - Logiciel: GOG Galaxy - (.GOG.com.) [HKLM][64Bits] -- {7258BA11-600C-430E-A759-27E2C691A335}_is1 =>.GOG Sp. z o.o.®
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google LLC®
O42 - Logiciel: Google Update Helper - (.Google LLC.) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google LLC (Hidden)
O42 - Logiciel: GoTo Opener - (.LogMeIn, Inc..) [HKLM][64Bits] -- {1F803452-798F-49FB-A5DD-9F527F7017E4} =>.LogMeIn, Inc.
O42 - Logiciel: GoToAssist Expert 4.4.0.1599 - (.LogMeIn, Inc..) [HKCU][64Bits] -- GoToAssist Remote Support Expert =>.LogMeIn, Inc.®
O42 - Logiciel: Guild Wars 2 - (.NCsoft Corporation, Ltd..) [HKLM][64Bits] -- Guild Wars 2 =>.NCsoft Corporation, Ltd.
O42 - Logiciel: Gwent - (.GOG.com.) [HKLM][64Bits] -- 1971477531_is1 =>.GOG Sp. z o.o.®
O42 - Logiciel: Hard Disk Sentinel - (.Janos Mathe.) [HKLM][64Bits] -- Hard Disk Sentinel_is1 =>.Janos Mathe®
O42 - Logiciel: HearthArena Companion - (.Overwolf app.) [HKCU][64Bits] -- Overwolf_eldaohcjmecjpkpdhhoiolhhaeapcldppbdgbnbc =>.Overwolf Ltd®
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Hearthstone Deck Tracker - (.HearthSim.) [HKCU][64Bits] -- HearthstoneDeckTracker =>.HearthSim, LLC®
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: HiPatch - (.Hi-Rez Studios.) [HKLM][64Bits] -- {3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000} =>.Hi-Rez Studios, Inc.®
O42 - Logiciel: Hi-Rez Studios Authenticate and Update Service - (.Hi-Rez Studios.) [HKLM][64Bits] -- {3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC} =>.Hi-Rez Studios, Inc.®
O42 - Logiciel: Honey Select - (..) [HKLM][64Bits] -- Honey Select_is1
O42 - Logiciel: HWiNFO64 Version 6.06 - (.Martin Malík - REALiX.) [HKLM][64Bits] -- HWiNFO64_is1 =>.Martin Malík - REALiX
O42 - Logiciel: Into the Breach - (.Subset Games.) [HKLM][64Bits] -- Steam App 590380 =>.Valve®
O42 - Logiciel: Jatek - (..) [HKCU][64Bits] -- Jatek
O42 - Logiciel: Java 7 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217021FF} =>.Oracle
O42 - Logiciel: Java 8 Update 161 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180161F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation (Hidden)
O42 - Logiciel: Java(TM) SE Development Kit 11.0.1 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {F4039C0F-E4C1-5905-9E7D-DDA8EDE365BC} =>.Oracle Corporation
O42 - Logiciel: Kingdom Come Deliverance - (..) [HKLM][64Bits] -- Kingdom Come Deliverance_is1
O42 - Logiciel: Kingdom Come: Deliverance - (.Warhorse Studios.) [HKLM][64Bits] -- Steam App 379430 =>.Valve®
O42 - Logiciel: Launcher Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {c6c5a357-c7ca-4a5f-9789-3bb1af579253} =>.Epic Games Inc.® (Hidden)
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- {ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7} =>.LogMeIn, Inc. (Hidden)
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- LogMeIn Hamachi =>.LogMeIn, Inc.
O42 - Logiciel: Microsoft Access MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0015-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft DCF MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0090-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Excel MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0016-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Groove MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00BA-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft InfoPath MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0044-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Mouse and Keyboard Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {76396B67-5C94-4708-90BF-E90070CA5740} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Mouse and Keyboard Center - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Office 64-bit Components 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Korrekturhilfen 2016 – Deutsch - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001F-0407-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Nyelvi ellenőrző eszközök 2016 – magyar - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001F-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office OSM MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00E1-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office OSM UX MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00E2-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Professional Plus 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Professional Plus 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office16.PROPLUS =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Office Proofing (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-002C-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Proofing Tools 2016 - English - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001F-0409-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Shared 64-bit MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-002A-040E-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Shared MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-006E-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft OneNote MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00A1-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Outlook MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001A-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft PowerPoint MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0018-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Publisher MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0019-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Skype for Business MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-012B-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {071c9b48-7c32-4621-a0ac-3f809523288f} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D8E6291-B0D5-35EC-8441-6616F567A0F7} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {37B8F9C7-03FB-3253-8781-2517C99D7C00} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B175520C-86A2-35A7-8619-86DC379688B9} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD95A8CD-1D9F-35AD-981A-3E7925026EBB} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 - (.Microsoft Corporation.) [HKLM][64Bits] -- {050d4fc8-5d48-4b8f-8972-47c82c46020f} =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 - (.Microsoft Corporation.) [HKLM][64Bits] -- {f65db027-aff3-4070-886a-0d87064aabb1} =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {929FBD26-9020-399B-9A7A-751D61F0B942} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {A749D8E6-B613-3BE3-8F5F-045C84EBA29B} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {13A4EE12-23EA-3371-91EE-EFB36DDFFF3E} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 - (.Microsoft Corporation.) [HKLM][64Bits] -- {e2ee15e2-a480-4bc5-bfb7-e9803d1d9823} =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 - (.Microsoft Corporation.) [HKLM][64Bits] -- {56e11d69-7cc9-40a5-a4f9-8f6190c4d84d} =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Visual C++ 2017 x64 Additional Runtime - 14.12.25810 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2CD849A7-86A1-34A6-B8F9-D72F5B21A9AE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.12.25810 - (.Microsoft Corporation.) [HKLM][64Bits] -- {C99E2ADC-0347-336E-A603-F1992B09D582} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2017 x86 Additional Runtime - 14.12.25810 - (.Microsoft Corporation.) [HKLM][64Bits] -- {7FED75A1-600C-394B-8376-712E2A8861F2} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.12.25810 - (.Microsoft Corporation.) [HKLM][64Bits] -- {828952EB-5572-3666-8CA9-000B6CE79350} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Word MUI (Hungarian) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001B-040E-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} =>.Microsoft Corporation
O42 - Logiciel: MORDHAU - (.Triternion.) [HKLM][64Bits] -- Steam App 629760 =>.Valve®
O42 - Logiciel: MSI Afterburner 4.5.0 - (.MSI Co., LTD.) [HKLM][64Bits] -- Afterburner =>.MSI Co., LTD
O42 - Logiciel: MTG Arena - (.Wizards of the Coast.) [HKLM][64Bits] -- {D084B94B-3A8E-45B1-BDA7-39E1DA980687} =>.Wizards of the Coast (Hidden)
O42 - Logiciel: MTG Arena - (.Wizards of the Coast.) [HKLM][64Bits] -- MTG Arena 0.1.1205.0 =>.Wizards of the Coast
O42 - Logiciel: NetBeans IDE 8.2 - (.NetBeans.org.) [HKLM][64Bits] -- nbi-nb-base-8.2.0.0.201609300101 =>.NetBeans.org
O42 - Logiciel: Nexus Mod Manager - (.Black Tree Gaming.) [HKLM][64Bits] -- 6af12c54-643b-4752-87d0-8335503010de_is1 =>.Black Tree Gaming Limited®
O42 - Logiciel: NVAPI Monitor plugin for NvContainer - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA ABHub - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvAbHub =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Ansel - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Backend - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvBackend =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Display Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainer =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Display Container LS - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainerLS =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Display Session Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplaySessionContainer =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Display Watchdog Plugin - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayPluginWatchdog =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA frissítések 37.0.0.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA GeForce Experience 3.19.0.94 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Grafikus illesztőprogram 430.86 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA HD audio-illesztőprogram 1.3.38.16 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA LocalSystem Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.LocalSystem =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Message Bus for NvContainer - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.MessageBus =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA NetworkService Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NetworkService =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA NodeJS - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Optimus Update 37.0.0.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA PhysX rendszerszoftver 9.19.0218 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Session Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.Session =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA ShadowPlay 3.19.0.94 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: Nvidia Share - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_OSC =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA SHIELD Streaming - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA SHIELD Wireless Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Telemetry Client - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Telemetry Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetryContainer =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA TelemetryApi helper for NvContainer - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.ContainerTelemetryApiHelper =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA User Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.User =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Vezérlőpult 430.86 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Virtual Audio 4.13.0.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Virtual Host Controller - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Watchdog Plugin for NvContainer - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvPlugin.Watchdog =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: OEM Application Profile - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {7F5DCD33-1039-C3B2-9538-B645B65BBA63} =>.Advanced Micro Devices, Inc.
O42 - Logiciel: Opera Mobile Emulator - (.Opera Software ASA.) [HKLM][64Bits] -- {1826D0CA-F479-4430-9EFE-86E8E783505B}_is1 =>.Opera Software ASA
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin =>.Electronic Arts, Inc.
O42 - Logiciel: osu! - (.ppy Pty Ltd.) [HKLM][64Bits] -- {1481750f-8de4-48a2-beaf-269a2ce0790c} =>.Dean Herbert®
O42 - Logiciel: Overwolf - (.Overwolf Ltd..) [HKLM][64Bits] -- Overwolf =>.Overwolf Ltd®
O42 - Logiciel: Realm Royale PTS - (.Hi-Rez Studios.) [HKLM][64Bits] -- {3C87E0FF-BC0A-4F5E-951B-68DC3F8DF703} =>.Hi-Rez Studios, Inc.®
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: RivaTuner Statistics Server 7.1.0 - (.Unwinder.) [HKLM][64Bits] -- RTSS =>.Unwinder
O42 - Logiciel: Security Update for Microsoft Access 2016 (KB4018338) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{68E7092C-1BA8-4CB7-B432-E16937BE2008} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Access 2016 (KB4018338) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0015-040E-0000-0000000FF1CE}_Office16.PROPLUS_{68E7092C-1BA8-4CB7-B432-E16937BE2008} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Excel 2016 (KB4092460) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{4EDB5A36-31E9-4F22-BA07-BB65D99B9FCE} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Excel 2016 (KB4092460) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0016-040E-0000-0000000FF1CE}_Office16.PROPLUS_{4EDB5A36-31E9-4F22-BA07-BB65D99B9FCE} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Excel 2016 (KB4092460) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0018-040E-0000-0000000FF1CE}_Office16.PROPLUS_{4EDB5A36-31E9-4F22-BA07-BB65D99B9FCE} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Excel 2016 (KB4092460) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-001B-040E-0000-0000000FF1CE}_Office16.PROPLUS_{4EDB5A36-31E9-4F22-BA07-BB65D99B9FCE} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB2920727) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{ADA643B8-91E7-42FD-8339-3FDC73A3ABE4} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB3085538) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{57F91827-505E-4313-A3DF-EE6BD0B41A26} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB3085538) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{57F91827-505E-4313-A3DF-EE6BD0B41A26} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB3114690) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{0431DE35-1781-4633-B69D-D547BB412C65} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB3115135) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{A1C294FC-0810-45DC-9198-835DE1FEE8EB} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB3213551) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{EE3EE85E-5775-4931-8033-39507E587EB9} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB3213551) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-006E-040E-0000-0000000FF1CE}_Office16.PROPLUS_{EE3EE85E-5775-4931-8033-39507E587EB9} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4011143) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{854CA56C-0A52-403C-AC0E-E8571C753773} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4011574) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{3DA49786-67D8-4AF8-99C8-3FB85422706B} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4011574) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-006E-040E-0000-0000000FF1CE}_Office16.PROPLUS_{3DA49786-67D8-4AF8-99C8-3FB85422706B} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4011628) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{FEAEF823-C391-460E-BA1A-E395217D5FC1} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4022172) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{DCB15A3A-EB74-4172-B603-AC35A788BB7D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4022176) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{2899A276-2580-4D03-B981-4F7187CCE052} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4022176) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-006E-040E-0000-0000000FF1CE}_Office16.PROPLUS_{2899A276-2580-4D03-B981-4F7187CCE052} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2016 (KB4022177) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{0746E405-30D4-417E-9452-84B638C71EC7} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Word 2016 (KB4092447) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{1EA65725-8790-4C02-941B-4B59AE2D9FC6} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Word 2016 (KB4092447) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-001A-040E-0000-0000000FF1CE}_Office16.PROPLUS_{1EA65725-8790-4C02-941B-4B59AE2D9FC6} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Word 2016 (KB4092447) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-001B-040E-0000-0000000FF1CE}_Office16.PROPLUS_{1EA65725-8790-4C02-941B-4B59AE2D9FC6} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Word 2016 (KB4092447) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-012B-040E-0000-0000000FF1CE}_Office16.PROPLUS_{1EA65725-8790-4C02-941B-4B59AE2D9FC6} =>.Microsoft Corporation®
O42 - Logiciel: SFK Standalone 13.9 - (.[SFK]Dielo.) [HKLM][64Bits] -- {60101460-B0B7-4B50-9600-81CF9CAE33A8}_is1
O42 - Logiciel: Simple Port Tester - (.PcWinTech.com.) [HKLM][64Bits] -- Simple Port Tester3.0.0 =>.PcWinTech.com
O42 - Logiciel: Standalone Flash Player 1.2 - (.StandaloneFlashPlayer.com.) [HKLM][64Bits] -- {A3B31D43-75F4-4CF4-8330-6DE62C3540FA}_is1
O42 - Logiciel: Survivors Viy - (..) [HKCU][64Bits] -- Survivors Viy
O42 - Logiciel: SWF File Player - (.swffileplayer.com.) [HKLM][64Bits] -- {6A86F611-906C-422D-B34A-103662CBC195}_is1 =>.swffileplayer.com
O42 - Logiciel: TAP-Windows 9.9.2 - (.OpenVPN Technologie.) [HKLM][64Bits] -- TAP-Windows =>.OpenVPN Technologie
O42 - Logiciel: TeamViewer 13 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer GmbH®
O42 - Logiciel: TechPowerUp GPU-Z - (.TechPowerUp.) [HKLM][64Bits] -- TechPowerUp GPU-Z =>.TechPowerUp
O42 - Logiciel: The Elder Scrolls Online - (.Zenimax Online Studios.) [HKLM][64Bits] -- The Elder Scrolls Online =>.Zenimax Online Studios
O42 - Logiciel: The Elder Scrolls V: Skyrim Special Edition - (.Bethesda Game Studios.) [HKLM][64Bits] -- Steam App 489830 =>.Valve®
O42 - Logiciel: Unigine Valley Benchmark version 1.0 - (.Unigine Corp..) [HKLM][64Bits] -- Unigine Valley Benchmark_is1 =>.Unigine Corp.
O42 - Logiciel: Update for Microsoft Office 2016 (KB2910954) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{96EFDD2E-6496-4E0C-9EA2-034AF087211A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB2920678) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{659F8DC4-0FD7-4C3C-9011-19B9FB400154} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB2920684) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{FA8D0376-1138-4DE0-81B4-AE2106D5ED4D} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB2920684) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{FA8D0376-1138-4DE0-81B4-AE2106D5ED4D} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB2920712) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{0471C03C-B563-4F44-83E9-4D9AF243E1D3} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB2920720) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{1471A699-A87C-454C-B227-00B48E5BA75B} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB2920724) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{B5FD5FBF-150F-4BD7-A2D2-F015D1069FC5} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3114853) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{0651B677-85E1-4CD8-AE47-5AD7BD8B57F5} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3114903) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{B557BEA1-7AB8-4CA4-B9EB-7011EB0EEB4B} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3115081) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{093F65D6-3F74-4E83-87EC-F423D90A8037} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3115276) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{FEAC1D0D-7908-457B-A000-ED3E6CCBD7A8} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3118262) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{3BA490D9-062E-4F6A-BEAF-8F052D1353F9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3118263) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{26C2A3F8-CDE2-4AEC-9821-91BC7BACAD72} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3118264) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{BEDCC8A6-C1B2-4BE8-AE25-9D658C01D7B2} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3141457) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{6117A69A-0707-4013-84AE-1741506319E9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3141457) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{6117A69A-0707-4013-84AE-1741506319E9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3178662) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{2454A1C1-D869-49CB-B3E4-F3105B307E90} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3178662) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-001F-0407-0000-0000000FF1CE}_Office16.PROPLUS_{2454A1C1-D869-49CB-B3E4-F3105B307E90} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3178662) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-001F-0409-0000-0000000FF1CE}_Office16.PROPLUS_{2454A1C1-D869-49CB-B3E4-F3105B307E90} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3178662) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-001F-040E-0000-0000000FF1CE}_Office16.PROPLUS_{2454A1C1-D869-49CB-B3E4-F3105B307E90} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3178666) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{E1849F24-F29F-4AAA-AAFE-7469BD68F24F} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3191864) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{56348998-4800-4C95-A671-F3F654E44FB9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3191929) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{A07FCC06-F05F-4072-8DCD-123EC4CE45A4} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3203479) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{C024B37B-9060-4A16-AF8C-DD05553C4D38} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3213650) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{435911D8-F21C-43AB-873B-83351C5F68C0} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB3213650) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{435911D8-F21C-43AB-873B-83351C5F68C0} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011035) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{863D8900-6BE5-4E0D-8711-AB97431E579D} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011218) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{ACB9CBFF-B321-4811-AC8F-31B5A2993F51} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011218) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0016-040E-0000-0000000FF1CE}_Office16.PROPLUS_{ACB9CBFF-B321-4811-AC8F-31B5A2993F51} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011225) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{CDC7136D-F6B1-4CDD-B4B6-BF05AA41C126} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011259) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{A664A3EC-D7BF-4FED-808B-4A6C749A731C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011569) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{D1F0354B-9F63-423F-A17E-86E0A341032C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011634) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{DC92C858-FE17-4371-8934-E6989005DCB9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011634) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{DC92C858-FE17-4371-8934-E6989005DCB9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011670) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{D54DA5D1-1F85-47BD-BA3D-DB69B98763B9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4011670) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D54DA5D1-1F85-47BD-BA3D-DB69B98763B9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4018371) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{42DCAB2B-3727-47BB-A820-3203BE6CA8B1} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4018371) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{42DCAB2B-3727-47BB-A820-3203BE6CA8B1} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4022133) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{A51C4C22-5174-4C67-B37A-18066F57A371} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4022133) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{A51C4C22-5174-4C67-B37A-18066F57A371} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4022193) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{D28C9F0B-8F57-4FAD-9587-07B50F2F18E6} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4022215) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{D20E3ABA-5512-46D9-8E70-8FD8798FA990} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4022215) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D20E3ABA-5512-46D9-8E70-8FD8798FA990} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4022223) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{ECF75206-C6D1-4391-8E20-8004776CF836} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4022223) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-006E-040E-0000-0000000FF1CE}_Office16.PROPLUS_{ECF75206-C6D1-4391-8E20-8004776CF836} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4032237) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{5070C4E9-BE06-49EE-93E6-8092F952337A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4032237) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5070C4E9-BE06-49EE-93E6-8092F952337A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4092449) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{74FBDE59-528E-4B74-90DB-151C874D8030} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4092461) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{E4EAF575-B008-47D0-A7B9-7FC76D6344BC} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2016 (KB4092461) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-006E-040E-0000-0000000FF1CE}_Office16.PROPLUS_{E4EAF575-B008-47D0-A7B9-7FC76D6344BC} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft OneDrive for Business (KB4022219) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{CC525E12-08E1-41AD-9638-02A079D48DF9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft OneDrive for Business (KB4022219) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{CC525E12-08E1-41AD-9638-02A079D48DF9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft OneDrive for Business (KB4022219) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-040E-1000-0000000FF1CE}_Office16.PROPLUS_{CC525E12-08E1-41AD-9638-02A079D48DF9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft OneDrive for Business (KB4022219) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-00BA-040E-0000-0000000FF1CE}_Office16.PROPLUS_{CC525E12-08E1-41AD-9638-02A079D48DF9} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft OneNote 2016 (KB4022216) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{2829E789-C052-443D-BF9E-4A4332D64D35} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft OneNote 2016 (KB4022216) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{2829E789-C052-443D-BF9E-4A4332D64D35} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft OneNote 2016 (KB4022216) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-00A1-040E-0000-0000000FF1CE}_Office16.PROPLUS_{2829E789-C052-443D-BF9E-4A4332D64D35} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Outlook 2016 (KB4092462) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{FA318F09-87D3-49DA-8233-7DCE08C60B9A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Outlook 2016 (KB4092462) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-001A-040E-0000-0000000FF1CE}_Office16.PROPLUS_{FA318F09-87D3-49DA-8233-7DCE08C60B9A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft PowerPoint 2016 (KB4092446) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{CD9DA537-01DD-4C5A-8654-F23C955C21F7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft PowerPoint 2016 (KB4092446) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0018-040E-0000-0000000FF1CE}_Office16.PROPLUS_{CD9DA537-01DD-4C5A-8654-F23C955C21F7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Project 2016 (KB4032238) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{E98D9D03-2718-4191-8880-74AC11E7F73F} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Project 2016 (KB4032238) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{E98D9D03-2718-4191-8880-74AC11E7F73F} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Publisher 2016 (KB3178696) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{CA2AD4B6-133E-4F44-960D-B178C3054F7C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Publisher 2016 (KB3178696) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0019-040E-0000-0000000FF1CE}_Office16.PROPLUS_{CA2AD4B6-133E-4F44-960D-B178C3054F7C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Visio 2016 (KB4018325) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{0B7E7619-A6EC-49BD-B3C7-4DAA0C7FD7EF} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2016 (KB4032255) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{699F991D-0635-4A44-9776-AEE20C6087DC} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2016 (KB4032255) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{699F991D-0635-4A44-9776-AEE20C6087DC} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2016 (KB4032255) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-012B-040E-0000-0000000FF1CE}_Office16.PROPLUS_{699F991D-0635-4A44-9776-AEE20C6087DC} =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows 10 for x64-based Systems (KB4023057) - (.Microsoft Corporation.) [HKLM][64Bits] -- {C3ACFCEA-240F-4DCC-A0C3-DD55FEE6C3C2} =>.Microsoft Corporation
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: VBCABLE, The Virtual Audio Cable - (.VB-Audio Software.) [HKLM][64Bits] -- VB:VBCABLE {87459874-1236-4469} =>.Vincent Burel®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VPN Unlimited 5.0 - (.KeepSolid Inc..) [HKLM][64Bits] -- {DC24521E-872B-41AF-93EA-FE477902D6FB}_is1 =>.KeepSolid Inc.®
O42 - Logiciel: Warhammer: Vermintide 2 - (.Fatshark.) [HKLM][64Bits] -- Steam App 552500 =>.Valve®
O42 - Logiciel: WinRAR 5.70 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM][64Bits] -- World of Warcraft =>.Blizzard Entertainment, Inc.®

---\ HKCU & HKLM Software Keys (261) - 31s
HKLM\SOFTWARE\7-Zip =>.Igor Pavlov
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\AGEIA Technologies =>.AGEIA Technologies
HKLM\SOFTWARE\AMD =>.AMD
HKLM\SOFTWARE\Android Studio =>.Android Studio
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\ArenaNet =>.ArenaNet
HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Bitdefender Agent =>.Bitdefender
HKLM\SOFTWARE\CPUID =>.CPUID Inc
HKLM\SOFTWARE\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Dolby =>.Dolby
HKLM\SOFTWARE\DTS =>.Creative Technology
HKLM\SOFTWARE\Fortemedia =>.Lugert Europe
HKLM\SOFTWARE\GitForWindows
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\ICEpower =>.ICEpower
HKLM\SOFTWARE\INextUUID =>.Hewlett-Packard
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\IPS =>.EgisTec
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Knowles =>.Knowles Electronics
HKLM\SOFTWARE\LogMeIn, Inc. =>.LogMeIn Entreprise
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\MCCI =>.MCCI
HKLM\SOFTWARE\Nahimic =>.Nahimic
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\OEM =>.OEM
HKLM\SOFTWARE\Partner =>.Google Inc.
HKLM\SOFTWARE\Piriform =>.Piriform
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\RTLSetup =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\SonicFocus =>.Sonic Focus
HKLM\SOFTWARE\SoundResearch =>.Sound Research
HKLM\SOFTWARE\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\TAP-Windows =>.OpenVPN Technologie
HKLM\SOFTWARE\TrendMicro =>.TrendMicro
HKLM\SOFTWARE\VB-Audio =>.Sony Corporation
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Yamaha APO =>.Yamaha Corp.
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\AGEIA Technologies =>.AGEIA Technologies
HKLM\SOFTWARE\WOW6432Node\AMD =>.AMD
HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\WOW6432Node\ASUS =>.ASUS
HKLM\SOFTWARE\WOW6432Node\ATI =>.ATI
HKLM\SOFTWARE\WOW6432Node\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\WOW6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\WOW6432Node\bethesda softworks =>.Bethesda Softworks
HKLM\SOFTWARE\WOW6432Node\Bitdefender Agent =>.Bitdefender
HKLM\SOFTWARE\WOW6432Node\Blizzard Entertainment =>.Blizzard Entertainment
HKLM\SOFTWARE\WOW6432Node\calibre =>.Kovid Goyal
HKLM\SOFTWARE\WOW6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\WOW6432Node\Dantom
HKLM\SOFTWARE\WOW6432Node\EA Games =>.EA Games
HKLM\SOFTWARE\WOW6432Node\EasyAntiCheat =>.EasyAntiCheat
HKLM\SOFTWARE\WOW6432Node\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\WOW6432Node\Epic Games =>.Epic Games
HKLM\SOFTWARE\WOW6432Node\EpicGames =>.Epic Games
HKLM\SOFTWARE\WOW6432Node\GOG.com =>.GOG.com
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\HD Sentinel =>.HD Sentinel
HKLM\SOFTWARE\WOW6432Node\Hi-Rez Studios =>.Hi-Rez Studios
HKLM\SOFTWARE\WOW6432Node\HiRez Studios =>.Hirez Studios
HKLM\SOFTWARE\WOW6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\LogMeIn Hamachi =>.LogMeIn Entreprise
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\MSI =>.MSI
HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\WOW6432Node\NVIDIA Corporation =>.nVidia Corporation
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\Oracle =>.Oracle
HKLM\SOFTWARE\WOW6432Node\Origin =>.Electronic Arts, Inc.
HKLM\SOFTWARE\WOW6432Node\Origin Games =>.Electronic Arts, Inc.
HKLM\SOFTWARE\WOW6432Node\Overwolf =>.Overwolf
HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Respawn =>.Respawn Entertainment
HKLM\SOFTWARE\WOW6432Node\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\WOW6432Node\TeamViewer =>.TeamViewer GmbH
HKLM\SOFTWARE\WOW6432Node\TrendMicro =>.TrendMicro
HKLM\SOFTWARE\WOW6432Node\TVInstallTemp =>.TeamViewer GmbH
HKLM\SOFTWARE\WOW6432Node\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\WOW6432Node\Unwinder =>.Unwinder
HKLM\SOFTWARE\WOW6432Node\Valve =>.Valve
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLan Team
HKLM\SOFTWARE\WOW6432Node\Wizards of the Coast =>.Wizards of the Coast
HKLM\SOFTWARE\WOW6432Node\Wow6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Zenimax_Online =>.ZeniMax Online Studios
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\7-Zip =>.Igor Pavlov
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Adriaan de Jongh
HKCU\SOFTWARE\AMD =>.AMD
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Aski =>.Aski
HKCU\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKCU\SOFTWARE\AWIND =>.Legitimate
HKCU\SOFTWARE\Berserk Games =>.Berserk Games
HKCU\SOFTWARE\BetaDwarf ApS
HKCU\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKCU\SOFTWARE\Blacklight Interactive =>.Blacklight Interactive
HKCU\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKCU\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKCU\SOFTWARE\Brozeks&CO
HKCU\SOFTWARE\BugSplat =>.Bugsplat Game
HKCU\SOFTWARE\calibre =>.Kovid Goyal
HKCU\SOFTWARE\CDProjektRED =>.CD Projekt
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Dantom
HKCU\SOFTWARE\Digital Extremes =>.Digital Extremes
HKCU\SOFTWARE\Dire Wolf Digital =>.Dire Wolf Digital
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Discord =>.Discord
HKCU\SOFTWARE\Dodge Roll =>.Dodge Roll
HKCU\SOFTWARE\Electronic Arts =>.Electronic Arts
HKCU\SOFTWARE\Epic Games =>.Epic Games
HKCU\SOFTWARE\FinalWire =>.FinalWire
HKCU\SOFTWARE\GOG.com =>.GOG.com
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\HEX Entertainment =>.HEX Entertainment
HKCU\SOFTWARE\Hoplon Infotainment
HKCU\SOFTWARE\Hopoo Games, LLC =>.Hopoo Games, LLC
HKCU\SOFTWARE\HWiNFO64
HKCU\SOFTWARE\illusion =>.Illusion
HKCU\SOFTWARE\Imagination Technologies =>.Imagination Technologies
HKCU\SOFTWARE\Intel Corporation =>.Intel Corporation
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\KeepSolid Inc. =>.KeepSolid Inc.
HKCU\SOFTWARE\KING Art GmbH
HKCU\SOFTWARE\Landfall Games =>.Landfall Games
HKCU\SOFTWARE\League of Geeks
HKCU\SOFTWARE\LogMeInInc =>.LogMeIn Entreprise
HKCU\SOFTWARE\LOK Team
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MSI =>.MSI
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKCU\SOFTWARE\Obsidian Entertainment =>.Obsidian Entertainment
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\osu! =>.Osu! Games
HKCU\SOFTWARE\Overwolf =>.Overwolf
HKCU\SOFTWARE\Phoenix Labs =>.Phoenix Labs
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realmforge Studios GmbH =>.Realmforge Studios GmbH
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\SFKTeam
HKCU\SOFTWARE\SureAI
HKCU\SOFTWARE\Team17SoftwareLTD =>.Team17SoftwareLTD
HKCU\SOFTWARE\TeamViewer =>.TeamViewer GmbH
HKCU\SOFTWARE\techPowerUp =>.TechPowerUp
HKCU\SOFTWARE\Texel Raptor
HKCU\SOFTWARE\The Creative Assembly =>.The Creative Assembly
HKCU\SOFTWARE\The Fun Pimps =>.The Fun Pimps
HKCU\SOFTWARE\Ubisoft =>.Ubisoft
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\Unwinder =>.Unwinder
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wizards Of The Coast =>.Wizards of the Coast
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\Stunlock Studios =>.Stunlock Studios
HKCU\SOFTWARE\AppDataLow\Software\Unity =>.Unity
HKU\.DEFAULT\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKU\.DEFAULT\SOFTWARE\Nahimic =>.Nahimic
HKU\.DEFAULT\SOFTWARE\Netscape =>.Netscape
HKU\.DEFAULT\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKU\.DEFAULT\SOFTWARE\Piriform =>.Piriform
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\7-Zip =>.Igor Pavlov
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Adobe =>.Adobe
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Adriaan de Jongh
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\AMD =>.AMD
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Aski =>.Aski
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\AWIND =>.Legitimate
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Berserk Games =>.Berserk Games
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\BetaDwarf ApS
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Blacklight Interactive =>.Blacklight Interactive
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Brozeks&CO
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\BugSplat =>.Bugsplat Game
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\calibre =>.Kovid Goyal
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\CDProjektRED =>.CD Projekt
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Chromium =>.Chromium
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Dantom
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Digital Extremes =>.Digital Extremes
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Dire Wolf Digital =>.Dire Wolf Digital
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Disc Soft =>.Disc Soft
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Discord =>.Discord
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Dodge Roll =>.Dodge Roll
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Electronic Arts =>.Electronic Arts
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Epic Games =>.Epic Games
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\FinalWire =>.FinalWire
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\GOG.com =>.GOG.com
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Google =>.Google
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\HEX Entertainment =>.HEX Entertainment
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Hoplon Infotainment
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Hopoo Games, LLC =>.Hopoo Games, LLC
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\HWiNFO64
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\illusion =>.Illusion
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Imagination Technologies =>.Imagination Technologies
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Intel Corporation =>.Intel Corporation
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\JavaSoft =>.JavaSoft
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\KeepSolid Inc. =>.KeepSolid Inc.
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\KING Art GmbH
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Landfall Games =>.Landfall Games
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\League of Geeks
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\LogMeInInc =>.LogMeIn Entreprise
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\LOK Team
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\MSI =>.MSI
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Obsidian Entertainment =>.Obsidian Entertainment
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\osu! =>.Osu! Games
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Overwolf =>.Overwolf
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Phoenix Labs =>.Phoenix Labs
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Piriform =>.Piriform
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\QtProject =>.QtProject
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Realmforge Studios GmbH =>.Realmforge Studios GmbH
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\SFKTeam
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\SureAI
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Team17SoftwareLTD =>.Team17SoftwareLTD
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\TeamViewer =>.TeamViewer GmbH
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\techPowerUp =>.TechPowerUp
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Texel Raptor
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\The Creative Assembly =>.The Creative Assembly
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\The Fun Pimps =>.The Fun Pimps
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Ubisoft =>.Ubisoft
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Unity =>.Unity
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Unwinder =>.Unwinder
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Valve =>.Valve
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\WinRAR =>.WinRAR
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\WinRAR SFX =>.RarLab
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Wizards Of The Coast =>.Wizards of the Coast
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\ZHP =>.Nicolas Coolman

---\ Contents of the Common Files folders (379) - 12s
O43 - CFD: 09/03/2018 - [] D -- C:\Program Files\7-Zip =>.Igor Pavlov
O43 - CFD: 03/01/2019 - [] D -- C:\Program Files\AMD =>.Advanced Micro Devices Inc.®
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files\ASUS =>.MCCI Corporation®
O43 - CFD: 11/01/2019 - [] D -- C:\Program Files\Bitdefender Agent =>.Bitdefender
O43 - CFD: 09/02/2019 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 07/05/2018 - [] D -- C:\Program Files\Core Temp =>.Legitimate
O43 - CFD: 03/01/2019 - [] D -- C:\Program Files\CPUID =>.CPUID Inc
O43 - CFD: 22/10/2018 - [] D -- C:\Program Files\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 16/06/2019 - [] D -- C:\Program Files\HWiNFO64 =>.Martin Malik - REALiX®
O43 - CFD: 14/06/2019 - [] D -- C:\Program Files\internet explorer =>.Microsoft Corporation
O43 - CFD: 08/12/2018 - [] D -- C:\Program Files\Java =>.Oracle
O43 - CFD: 12/02/2019 - [] D -- C:\Program Files\Microsoft Mouse and Keyboard Center =>.Microsoft Corporation
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 23/03/2019 - [] D -- C:\Program Files\Nexus Mod Manager =>.Winstep Software Technologies
O43 - CFD: 15/06/2019 - [] D -- C:\Program Files\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 26/05/2018 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 18/05/2019 - [] D -- C:\Program Files\rempl =>.Microsoft Corporation
O43 - CFD: 14/08/2018 - [] D -- C:\Program Files\TAP-Windows =>.OpenVPN Technologie
O43 - CFD: 24/01/2018 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 20/06/2018 - [] D -- C:\Program Files\VB =>.Vincent Burel®
O43 - CFD: 12/04/2019 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 12/04/2019 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/10/2018 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] D -- C:\Program Files\windows nt =>.Microsoft Corporation
O43 - CFD: 14/06/2018 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 15/06/2019 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 02/03/2019 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 02/08/2018 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 03/01/2019 - [] D -- C:\Program Files (x86)\AMD =>.AMD
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files (x86)\ASM104xUSB3 =>.ASMedia Technology Inc
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files (x86)\ASM106xSATA =>.ASMedia Technology Inc
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files (x86)\ASUS =>.ASUSTeK Computer Inc.®
O43 - CFD: 01/04/2019 - [] D -- C:\Program Files (x86)\BYOND =>.BYOND
O43 - CFD: 15/09/2018 - [] D -- C:\Program Files (x86)\Calibre2 =>.Kovid Goyal
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 10/03/2018 - [] D -- C:\Program Files (x86)\EasyAntiCheat =>.EasyAntiCheat
O43 - CFD: 08/10/2018 - [] D -- C:\Program Files (x86)\GOG Galaxy =>.GOG Sp. z o.o.®
O43 - CFD: 11/02/2018 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 04/03/2018 - [] D -- C:\Program Files (x86)\GPU-Z =>.TechPowerUp LLC®
O43 - CFD: 15/06/2019 - [] D -- C:\Program Files (x86)\Hard Disk Sentinel =>.H.D.S. Hungary
O43 - CFD: 15/06/2019 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 14/06/2019 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 04/04/2019 - [] D -- C:\Program Files (x86)\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 02/08/2018 - [] D -- C:\Program Files (x86)\Microsoft XNA =>.Microsoft Corporation
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 07/05/2018 - [0] D -- C:\Program Files (x86)\MSI =>.MSI
O43 - CFD: 26/05/2018 - [] D -- C:\Program Files (x86)\MSI Afterburner =>.Micro-Star International Co
O43 - CFD: 15/06/2019 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 11/11/2018 - [] D -- C:\Program Files (x86)\Opera Mobile Emulator
O43 - CFD: 25/02/2019 - [0] D -- C:\Program Files (x86)\Origin Games =>.Electronic Arts, Inc.
O43 - CFD: 15/06/2019 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 26/05/2018 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 03/01/2019 - [] D -- C:\Program Files (x86)\RivaTuner Statistics Server =>.RivaTuner
O43 - CFD: 12/07/2018 - [] D -- C:\Program Files (x86)\Simple Port Tester
O43 - CFD: 03/12/2018 - [] D -- C:\Program Files (x86)\Standalone Flash Player =>.Adobe Systems Incorporated®
O43 - CFD: 18/05/2018 - [] D -- C:\Program Files (x86)\Steam Library
O43 - CFD: 01/08/2018 - [] D -- C:\Program Files (x86)\SWF File Player
O43 - CFD: 16/06/2019 - [] D -- C:\Program Files (x86)\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 15/06/2019 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 20/10/2018 - [] D -- C:\Program Files (x86)\VPN Unlimited
O43 - CFD: 04/07/2018 - [] D -- C:\Program Files (x86)\VulkanRT =>.LunarG, Inc
O43 - CFD: 14/03/2019 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/10/2018 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files (x86)\windows nt =>.Microsoft Corporation
O43 - CFD: 14/06/2018 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 16/02/2018 - [] HD -- C:\Program Files (x86)\Zero G Registry =>.Flexera
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 12/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 14/06/2019 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 14/03/2019 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 03/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Ryzen Master
O43 - CFD: 10/11/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio =>.Google Inc.
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS =>.ASUS
O43 - CFD: 20/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net =>.Games Software
O43 - CFD: 15/09/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management =>.Kovid Goyal
O43 - CFD: 12/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp =>.Legitimate
O43 - CFD: 03/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID =>.CPUID Inc
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git =>.Global Information Technology
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com =>.GOG.com
O43 - CFD: 07/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2 =>.NCsoft Corporation, Ltd.
O43 - CFD: 02/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gwent [GOG.com]
O43 - CFD: 14/06/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk Sentinel =>.H.D.S. Hungary
O43 - CFD: 24/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone =>.Blizzard Entertainment
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm =>.Games Software
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios =>.Hi-Rez Studios
O43 - CFD: 16/06/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
O43 - CFD: 08/12/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 08/12/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit =>.Oracle
O43 - CFD: 04/04/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 12/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 03/11/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-eszközök =>.Microsoft Corporation
O43 - CFD: 22/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTG Arena
O43 - CFD: 08/12/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans =>.NetBeans.org
O43 - CFD: 23/03/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager =>.Winstep Software Technologies
O43 - CFD: 02/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 11/11/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera Mobile Emulator
O43 - CFD: 08/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin =>.Electronic Arts, Inc.
O43 - CFD: 11/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phoenix Labs =>.Phoenix Labs
O43 - CFD: 13/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SFK Standalone Patch
O43 - CFD: 03/12/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Standalone Flash Player
O43 - CFD: 12/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 01/08/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SWF File Player
O43 - CFD: 12/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 20/10/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VPN Unlimited
O43 - CFD: 01/03/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 09/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft =>.Blizzard Entertainment
O43 - CFD: 28/01/2018 - [] D -- C:\ProgramData\.mono =>.Legitimate
O43 - CFD: 02/08/2018 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 02/02/2019 - [] D -- C:\ProgramData\AMD AutoUpdate
O43 - CFD: 26/05/2018 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 24/01/2018 - [] D -- C:\ProgramData\ASUS =>.ASUS
O43 - CFD: 24/01/2018 - [] D -- C:\ProgramData\ASUS OC Profiles
O43 - CFD: 24/01/2018 - [] D -- C:\ProgramData\ASUS PowerControl Profiles
O43 - CFD: 24/01/2018 - [0] SHD -- C:\ProgramData\Asztal
O43 - CFD: 10/04/2019 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 20/06/2018 - [] D -- C:\ProgramData\Battle.net =>.Games Software
O43 - CFD: 07/07/2018 - [] D -- C:\ProgramData\Bitdefender Agent =>.Bitdefender
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\Blizzard Entertainment =>.Blizzard Entertainment
O43 - CFD: 16/02/2018 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 24/01/2018 - [0] SHD -- C:\ProgramData\Dokumentumok
O43 - CFD: 17/02/2018 - [] D -- C:\ProgramData\Elder Scrolls Online
O43 - CFD: 14/06/2018 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 20/05/2018 - [] D -- C:\ProgramData\Epic =>.Epic
O43 - CFD: 03/03/2018 - [] D -- C:\ProgramData\Git =>.Global Information Technology
O43 - CFD: 02/03/2018 - [] D -- C:\ProgramData\GOG.com =>.GOG.com
O43 - CFD: 14/04/2018 - [] D -- C:\ProgramData\Hi-Rez Studios =>.Hi-Rez Studios
O43 - CFD: 17/02/2018 - [] D -- C:\ProgramData\LogMeIn =>.LogMeIn
O43 - CFD: 14/06/2019 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 03/11/2018 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 16/06/2019 - [] D -- C:\ProgramData\NVIDIA =>.nVidia Corporation
O43 - CFD: 15/06/2019 - [] D -- C:\ProgramData\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 24/01/2018 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 28/02/2019 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 25/06/2018 - [] D -- C:\ProgramData\Overwolf =>.Overwolf
O43 - CFD: 02/08/2018 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 08/02/2019 - [] D -- C:\ProgramData\Packages =>.Microsoft Corporation
O43 - CFD: 16/06/2019 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 24/01/2018 - [0] SHD -- C:\ProgramData\Sablonok
O43 - CFD: 12/04/2018 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 13/07/2018 - [] D -- C:\ProgramData\Tunngle =>.Tunngle.net
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 13/07/2018 - [] D -- C:\ProgramData\X360CE =>.Microsoft Corporation
O43 - CFD: 13/07/2018 - [] D -- C:\ProgramData\Xfire
O43 - CFD: 02/08/2018 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 09/03/2019 - [] D -- C:\Program Files (x86)\Common Files\BattlEye =>.BattlEye
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 24/01/2018 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 16/03/2019 - [] D -- C:\Program Files (x86)\Common Files\Overwolf =>.Overwolf
O43 - CFD: 12/04/2018 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 15/06/2019 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.Steam Games
O43 - CFD: 03/11/2018 - [] D -- C:\Program Files (x86)\Common Files\system =>.Microsoft Corporation
O43 - CFD: 11/02/2018 - [] DC -- C:\Users\User\AppData\Roaming\.MesterMC.hu
O43 - CFD: 29/10/2018 - [] DC -- C:\Users\User\AppData\Roaming\.minecraft =>.Microsoft Corporation
O43 - CFD: 28/09/2018 - [] DC -- C:\Users\User\AppData\Roaming\.mono =>.Legitimate
O43 - CFD: 24/06/2018 - [] DC -- C:\Users\User\AppData\Roaming\7DaysToDie =>.Games Software
O43 - CFD: 02/08/2018 - [] DC -- C:\Users\User\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 02/08/2018 - [] DC -- C:\Users\User\AppData\Roaming\Anwinity
O43 - CFD: 29/09/2018 - [] DC -- C:\Users\User\AppData\Roaming\Battle.net =>.Games Software
O43 - CFD: 02/07/2018 - [] DC -- C:\Users\User\AppData\Roaming\Battlerite
O43 - CFD: 15/09/2018 - [] DC -- C:\Users\User\AppData\Roaming\calibre =>.Kovid Goyal
O43 - CFD: 12/01/2019 - [] DC -- C:\Users\User\AppData\Roaming\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 16/06/2019 - [] DC -- C:\Users\User\AppData\Roaming\discord =>.GitHub
O43 - CFD: 28/04/2018 - [] DC -- C:\Users\User\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 07/05/2018 - [0] DC -- C:\Users\User\AppData\Roaming\Easeware =>.Easeware
O43 - CFD: 01/06/2019 - [] DC -- C:\Users\User\AppData\Roaming\EasyAntiCheat =>.EasyAntiCheat
O43 - CFD: 10/03/2018 - [] DC -- C:\Users\User\AppData\Roaming\Fatshark =>.Fatshark
O43 - CFD: 07/05/2018 - [] DC -- C:\Users\User\AppData\Roaming\FiraxisLive =>.Firaxis
O43 - CFD: 01/02/2019 - [] DC -- C:\Users\User\AppData\Roaming\GameSparks =>.Ignite Realtime
O43 - CFD: 10/11/2018 - [0] DC -- C:\Users\User\AppData\Roaming\Google =>.Google
O43 - CFD: 07/07/2018 - [] DC -- C:\Users\User\AppData\Roaming\Guild Wars 2 =>.NCsoft Corporation, Ltd.
O43 - CFD: 14/06/2019 - [] DC -- C:\Users\User\AppData\Roaming\Hard Disk Sentinel =>.H.D.S. Hungary
O43 - CFD: 23/04/2019 - [] DC -- C:\Users\User\AppData\Roaming\HearthstoneDeckTracker =>.GitHub
O43 - CFD: 17/02/2018 - [] DC -- C:\Users\User\AppData\Roaming\java =>.Oracle
O43 - CFD: 08/10/2018 - [] DC -- C:\Users\User\AppData\Roaming\Kalypso Media =>.Kalypso Media
O43 - CFD: 21/09/2018 - [] DC -- C:\Users\User\AppData\Roaming\LucasArts =>.LucasArts
O43 - CFD: 01/08/2018 - [] DC -- C:\Users\User\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 28/12/2018 - [] SDC -- C:\Users\User\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 07/05/2018 - [] DC -- C:\Users\User\AppData\Roaming\ModLauncherWPF =>.Games Software
O43 - CFD: 23/02/2018 - [] DC -- C:\Users\User\AppData\Roaming\MTGArena
O43 - CFD: 08/12/2018 - [] DC -- C:\Users\User\AppData\Roaming\NetBeans =>.NetBeans.org
O43 - CFD: 12/05/2018 - [] DC -- C:\Users\User\AppData\Roaming\NVIDIA =>.nVidia Corporation
O43 - CFD: 27/02/2019 - [] DC -- C:\Users\User\AppData\Roaming\Origin =>.Electronic Arts, Inc.
O43 - CFD: 18/05/2019 - [] DC -- C:\Users\User\AppData\Roaming\RenPy =>.RenPy Games
O43 - CFD: 02/08/2018 - [] DC -- C:\Users\User\AppData\Roaming\Rogue Legacy
O43 - CFD: 28/02/2019 - [] DC -- C:\Users\User\AppData\Roaming\Strive
O43 - CFD: 24/01/2018 - [] DC -- C:\Users\User\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 12/01/2019 - [] DC -- C:\Users\User\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 22/10/2018 - [] DC -- C:\Users\User\AppData\Roaming\The Creative Assembly =>.The Creative Assembly
O43 - CFD: 16/06/2019 - [] DC -- C:\Users\User\AppData\Roaming\uTorrent
O43 - CFD: 20/04/2019 - [] DC -- C:\Users\User\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 06/05/2018 - [] DC -- C:\Users\User\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 13/07/2018 - [] DC -- C:\Users\User\AppData\Roaming\Xfire
O43 - CFD: 17/06/2019 - [] DC -- C:\Users\User\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 14/04/2018 - [] DC -- C:\Users\User\AppData\Local\7.b - A játék DEMÓ
O43 - CFD: 24/08/2018 - [] DC -- C:\Users\User\AppData\Local\Adobe =>.Adobe
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 11/07/2018 - [] DC -- C:\Users\User\AppData\Local\Archon
O43 - CFD: 16/06/2019 - [] DC -- C:\Users\User\AppData\Local\Battle.net =>.Games Software
O43 - CFD: 17/11/2018 - [] DC -- C:\Users\User\AppData\Local\BattlEye =>.BattlEye
O43 - CFD: 14/06/2019 - [] DC -- C:\Users\User\AppData\Local\BitTorrentHelper
O43 - CFD: 23/03/2019 - [] DC -- C:\Users\User\AppData\Local\Black_Tree_Gaming =>.Black Tree Gaming Ltd
O43 - CFD: 30/04/2019 - [] DC -- C:\Users\User\AppData\Local\Blizzard =>.Blizzard
O43 - CFD: 30/04/2019 - [] DC -- C:\Users\User\AppData\Local\Blizzard Entertainment =>.Blizzard Entertainment
O43 - CFD: 15/09/2018 - [0] DC -- C:\Users\User\AppData\Local\calibre-cache =>.Kovid Goyal
O43 - CFD: 28/01/2018 - [] DC -- C:\Users\User\AppData\Local\CEF =>.CEF
O43 - CFD: 12/01/2019 - [] DC -- C:\Users\User\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 14/06/2018 - [] DC -- C:\Users\User\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 16/06/2019 - [] DC -- C:\Users\User\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 07/05/2018 - [] DC -- C:\Users\User\AppData\Local\CrashReportClient
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\AppData\Local\D3DSCache =>.Legitimate
O43 - CFD: 24/01/2018 - [0] DC -- C:\Users\User\AppData\Local\DBG =>.DBG
O43 - CFD: 24/12/2018 - [] DC -- C:\Users\User\AppData\Local\DeadByDaylight =>.Games Software
O43 - CFD: 10/05/2019 - [0] DC -- C:\Users\User\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\AppData\Local\Discord =>.GitHub
O43 - CFD: 16/02/2018 - [] DC -- C:\Users\User\AppData\Local\Disc_Soft_Ltd =>.Disc Soft Ltd
O43 - CFD: 12/01/2019 - [0] DC -- C:\Users\User\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 24/06/2018 - [] DC -- C:\Users\User\AppData\Local\DunDefLauncher
O43 - CFD: 30/04/2019 - [0] DC -- C:\Users\User\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 16/03/2019 - [] DC -- C:\Users\User\AppData\Local\enderal
O43 - CFD: 10/03/2019 - [] DC -- C:\Users\User\AppData\Local\FallenDoll
O43 - CFD: 28/12/2018 - [] DC -- C:\Users\User\AppData\Local\Foxhole
O43 - CFD: 02/03/2018 - [] DC -- C:\Users\User\AppData\Local\GOG.com =>.GOG.com
O43 - CFD: 11/02/2018 - [] DC -- C:\Users\User\AppData\Local\Google =>.Google
O43 - CFD: 04/03/2018 - [] DC -- C:\Users\User\AppData\Local\GoTo Opener
O43 - CFD: 19/05/2018 - [] DC -- C:\Users\User\AppData\Local\GoToAssist Remote Support Expert
O43 - CFD: 21/04/2019 - [] DC -- C:\Users\User\AppData\Local\HearthSim =>.HearthSim
O43 - CFD: 20/04/2019 - [] DC -- C:\Users\User\AppData\Local\HearthstoneDeckTracker =>.GitHub
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 01/06/2019 - [] DC -- C:\Users\User\AppData\Local\HoneyselectItemResolver
O43 - CFD: 14/04/2018 - [] DC -- C:\Users\User\AppData\Local\Jatek
O43 - CFD: 14/08/2018 - [] DC -- C:\Users\User\AppData\Local\KeepSolid Inc
O43 - CFD: 17/02/2018 - [] DC -- C:\Users\User\AppData\Local\LogMeIn =>.LogMeIn
O43 - CFD: 16/06/2019 - [] DC -- C:\Users\User\AppData\Local\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 19/05/2018 - [] DC -- C:\Users\User\AppData\Local\LogMeInInc =>.LogMeIn Entreprise
O43 - CFD: 13/04/2018 - [] DC -- C:\Users\User\AppData\Local\MaelstromV2
O43 - CFD: 14/06/2019 - [] DC -- C:\Users\User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 03/11/2018 - [0] DC -- C:\Users\User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 24/01/2018 - [] DC -- C:\Users\User\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 01/05/2019 - [] DC -- C:\Users\User\AppData\Local\Mordhau
O43 - CFD: 08/12/2018 - [] DC -- C:\Users\User\AppData\Local\NetBeans =>.NetBeans.org
O43 - CFD: 18/05/2019 - [] DC -- C:\Users\User\AppData\Local\ninetyss
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\AppData\Local\NVIDIA =>.nVidia Corporation
O43 - CFD: 20/10/2018 - [] DC -- C:\Users\User\AppData\Local\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 11/11/2018 - [] DC -- C:\Users\User\AppData\Local\Opera =>.Opera Software
O43 - CFD: 08/02/2019 - [] DC -- C:\Users\User\AppData\Local\Origin =>.Electronic Arts, Inc.
O43 - CFD: 05/08/2018 - [] DC -- C:\Users\User\AppData\Local\osu! =>.osu! Game
O43 - CFD: 13/01/2019 - [] DC -- C:\Users\User\AppData\Local\Overwolf =>.Overwolf
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 28/01/2018 - [0] DC -- C:\Users\User\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\AppData\Local\PlaceholderTileLogoFolder =>.Microsoft Corporation
O43 - CFD: 03/02/2018 - [] DC -- C:\Users\User\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] DC -- C:\Users\User\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 07/05/2018 - [] DC -- C:\Users\User\AppData\Local\RadeonInstaller
O43 - CFD: 17/06/2019 - [] DC -- C:\Users\User\AppData\Local\Radiant
O43 - CFD: 13/07/2018 - [] DC -- C:\Users\User\AppData\Local\SFK_Team_Inc
O43 - CFD: 16/03/2019 - [0] DC -- C:\Users\User\AppData\Local\Skyrim =>.Skyrim Games
O43 - CFD: 23/03/2019 - [] DC -- C:\Users\User\AppData\Local\Skyrim Special Edition =>.Nogenious Skyrim Game
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\AppData\Local\SquirrelTemp =>.Squirrels
O43 - CFD: 28/01/2018 - [] DC -- C:\Users\User\AppData\Local\Steam =>.Steam Games
O43 - CFD: 17/06/2019 - [] DC -- C:\Users\User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 08/09/2018 - [] DC -- C:\Users\User\AppData\Local\THQ =>.THQ
O43 - CFD: 09/03/2019 - [] DC -- C:\Users\User\AppData\Local\Ubisoft Game Launcher =>.Ubisoft
O43 - CFD: 17/06/2019 - [] DC -- C:\Users\User\AppData\Local\UnrealEngine =>.Unreal Software
O43 - CFD: 20/05/2018 - [] DC -- C:\Users\User\AppData\Local\UnrealEngineLauncher =>.Unreal Software
O43 - CFD: 26/07/2018 - [] DC -- C:\Users\User\AppData\Local\Victory =>.Legitimate
O43 - CFD: 04/07/2018 - [] DC -- C:\Users\User\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 11/03/2018 - [] DC -- C:\Users\User\AppData\Local\Warframe =>.Digital Extremes
O43 - CFD: 11/02/2018 - [] DC -- C:\Users\User\AppData\Local\WitchIt
O43 - CFD: 17/06/2019 - [] DC -- C:\Users\User\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 03/02/2018 - [0] DC -- C:\Users\User\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 02/08/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Adobe =>.Adobe
O43 - CFD: 28/01/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Adriaan de Jongh
O43 - CFD: 26/06/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Berserk Games
O43 - CFD: 01/06/2018 - [] DC -- C:\Users\User\AppData\LocalLow\BetaDwarf ApS
O43 - CFD: 29/07/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Blacklight Interactive
O43 - CFD: 20/06/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Blizzard Entertainment =>.Blizzard Entertainment
O43 - CFD: 19/05/2019 - [] DC -- C:\Users\User\AppData\LocalLow\Brozeks&CO
O43 - CFD: 02/03/2018 - [] DC -- C:\Users\User\AppData\LocalLow\CDProjektRED
O43 - CFD: 13/07/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Dire Wolf Digital
O43 - CFD: 26/06/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Dodge Roll
O43 - CFD: 05/04/2019 - [] DC -- C:\Users\User\AppData\LocalLow\Hopoo Games, LLC =>.Hopoo Games, LLC
O43 - CFD: 08/06/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Landfall Games
O43 - CFD: 24/06/2018 - [] DC -- C:\Users\User\AppData\LocalLow\League of Geeks
O43 - CFD: 18/05/2019 - [] DC -- C:\Users\User\AppData\LocalLow\LOK Team
O43 - CFD: 08/04/2018 - [] SDC -- C:\Users\User\AppData\LocalLow\Microsoft =>.Microsoft Corporation
O43 - CFD: 21/05/2018 - [] DC -- C:\Users\User\AppData\LocalLow\noio
O43 - CFD: 08/04/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Obsidian Entertainment =>.Obsidian Entertainment
O43 - CFD: 08/12/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Oracle =>.Oracle
O43 - CFD: 08/10/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Realmforge Studios GmbH
O43 - CFD: 24/01/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Sun =>.Oracle
O43 - CFD: 08/04/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Temp =>.Microsoft Corporation
O43 - CFD: 27/12/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Texel Raptor
O43 - CFD: 27/05/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Unity =>.Unity
O43 - CFD: 16/06/2019 - [0] DC -- C:\Users\User\AppData\LocalLow\uTorrent
O43 - CFD: 23/02/2018 - [] DC -- C:\Users\User\AppData\LocalLow\Wizards Of The Coast =>.Wizards of the Coast
O43 - CFD: 16/06/2019 - [] DC -- C:\Users\User\Desktop\HiJackThis =>.Trend Micro
O43 - CFD: 01/09/2018 - [] DC -- C:\Users\User\Desktop\hs
O43 - CFD: 09/10/2018 - [] DC -- C:\Users\User\Desktop\k
O43 - CFD: 02/08/2018 - [] DC -- C:\Users\User\Desktop\kartya
O43 - CFD: 31/05/2019 - [] DC -- C:\Users\User\Desktop\lul
O43 - CFD: 03/03/2018 - [] DC -- C:\Users\User\Desktop\mc
O43 - CFD: 03/03/2018 - [] DC -- C:\Users\User\Desktop\mc2
O43 - CFD: 16/06/2019 - [] DC -- C:\Users\User\Desktop\OpenHardwareMonitor
O43 - CFD: 19/02/2019 - [] DC -- C:\Users\User\Desktop\Realtek_Audio(v8619) =>.Realtek Semiconductor Corp.
O43 - CFD: 28/01/2018 - [] DC -- C:\Users\User\Desktop\Saves
O43 - CFD: 07/04/2018 - [] DC -- C:\Users\User\Desktop\server
O43 - CFD: 07/04/2018 - [] DC -- C:\Users\User\Desktop\server másolata
O43 - CFD: 06/05/2018 - [] DC -- C:\Users\User\Desktop\server másolata (2)
O43 - CFD: 18/06/2018 - [] DC -- C:\Users\User\Desktop\server másolata (3)
O43 - CFD: 28/01/2018 - [] DC -- C:\Users\User\Desktop\soundboard
O43 - CFD: 04/03/2018 - [] DC -- C:\Users\User\Desktop\world
O43 - CFD: 12/01/2019 - [] DC -- C:\Users\User\Desktop\Új mappa
O43 - CFD: 23/03/2019 - [] DC -- C:\Users\User\Desktop\Új mappa (2)
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\Desktop\Új mappa (3)
O43 - CFD: 12/04/2018 - [] RDC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] RDC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 14/06/2019 - [] RDC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 15/06/2019 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc =>.Discord Inc
O43 - CFD: 20/04/2019 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim =>.HearthSim
O43 - CFD: 12/04/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner =>.Micro-Star International Co
O43 - CFD: 25/06/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf =>.Overwolf
O43 - CFD: 26/05/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server =>.RivaTuner
O43 - CFD: 12/07/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Simple Port Tester
O43 - CFD: 14/06/2019 - [] RDC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 27/06/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Survivors Viy
O43 - CFD: 12/04/2018 - [] RDC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
O43 - CFD: 13/07/2018 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 12/04/2018 - [] RDC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 01/03/2019 - [] DC -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 04/04/2019 - [] D -- C:\Users\Default\AppData\Local\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 12/04/2018 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 04/04/2019 - [] D -- C:\Users\Default User\AppData\Local\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 12/04/2018 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 12/04/2018 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 26/05/2018 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 18/11/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 18/11/2018 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 26/05/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 04/07/2018 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Overwolf =>.Overwolf
O43 - CFD: 01/06/2018 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 22/08/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation

---\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s
O106 - SIOI: [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows emelt szintű tároló felületbővítmén.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation

---\ Search Context Menu Handlers (SCMH) (35) - 2s
O108 - CMH1: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH1: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - A Microsoft Security Client felületbővítmén.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft Windows®
O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Felületbővítmények megosztáshoz.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Felületbővítmények megosztáshoz.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Munkahelyi mappák felületbőví.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: NvAppShExt [64Bits] - {A929C4CE-FD36-4270-B4F5-34ECAC5BD63C} . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\WINDOWS\system32\nv3dappshext.dll =>.NVIDIA Corporation
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH2: OpenGLShExt [64Bits] - {E97DEC16-A50D-49bb-AE24-CF682282E08D} . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\WINDOWS\system32\nv3dappshext.dll =>.NVIDIA Corporation
O108 - CMH2: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH®
O108 - CMH2: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - A Microsoft Security Client felületbővítmén.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft Windows®
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Felületbővítmények megosztáshoz.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Munkahelyi mappák felületbőví.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: NvCplDesktopContext [64Bits] - {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\WINDOWS\System32\nvshext.dll =>.NVIDIA Corporation
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Felületbővítmények megosztáshoz.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Munkahelyi mappák felületbőví.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - Windows felület - közös DLL.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Alkalmazásfeloldó.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows®
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - Windows emelt szintű tároló felületbővítmén.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - A Microsoft Security Client felületbővítmén.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft Windows®
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Felületbővítmények megosztáshoz.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\ Image File Execution Options (11) - 0s
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - IE felhasználókénti inicializációs eszköz.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - IE 7.0 felügyelet nélküli telepítő segédpro.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Microsoft Windows kártevő-eltávolító eszköz.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Microsoft (R) HTML-alkalmazásgazda.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation gazdarendsz.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Várólista-alrendszer kezelőalkalmazása.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Windows-szolgáltatások gazdafolyamata.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Windows-szolgáltatások gazdafolyamata.) [MitigationAuditOptions\\17660905521152] =>.Microsoft Windows Publisher®

---\ System Drivers List (421) - 8s
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\WINDOWS\System32\drivers\1394ohci.sys [237568] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - ACPI illesztőprogram NT-hez.) -- C:\WINDOWS\System32\drivers\acpi.sys [654232] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - ACPI Devices Driver.) -- C:\WINDOWS\System32\drivers\AcpiDev.sys [20480] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - ACPIEx Driver.) -- C:\WINDOWS\System32\drivers\acpiex.sys [127904] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - ACPI Processor Aggregator Device Driver.) -- C:\WINDOWS\System32\drivers\acpipagr.sys [12800] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\WINDOWS\System32\drivers\acpipmi.sys [14848] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - ACPI Wake Alarm.) -- C:\WINDOWS\System32\drivers\acpitime.sys [13824] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135520] =>.Microsoft Windows®
O58 - SDL:2019/03/06 11:02:57 A . (.Microsoft Corporation - Kiegészítő funkciók illesztőprogramja a Win.) -- C:\WINDOWS\System32\drivers\afd.sys [626488] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - AF_UNIX socket provider.) -- C:\WINDOWS\System32\drivers\afunix.sys [39424] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:33 A . (.Microsoft Corporation - RAS Agile VPN Miniport híváskezelője.) -- C:\WINDOWS\System32\drivers\agilevpn.sys [108032] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:28 A . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\WINDOWS\System32\drivers\ahcache.sys [254464] =>.Microsoft Corporation
O58 - SDL:2018/04/25 20:17:30 A . (.Advanced Micro Devices, Inc - AMD GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\amdgpio2.sys [34664] =>.Advanced Micro Devices Inc.®
O58 - SDL:2018/04/25 20:25:30 A . (.Advanced Micro Devices, Inc - AMD GPIO Driver.) -- C:\WINDOWS\System32\drivers\amdgpio3.sys [33120] =>.AMD PMP-PE CB Code Signer v20160415®
O58 - SDL:2019/05/03 07:53:43 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\WINDOWS\System32\drivers\amdk8.sys [186880] =>.Microsoft Corporation
O58 - SDL:2017/06/12 06:07:16 A . (.Advanced Micro Devices, Inc. - amdkmcsp sys.) -- C:\WINDOWS\System32\drivers\amdkmcsp.sys [101232] =>.Advanced Micro Devices Inc.®
O58 - SDL:2018/04/26 00:51:24 A . (.Advanced Micro Devices - AMD PCI Device driver.) -- C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592] =>.Advanced Micro Devices Inc.®
O58 - SDL:2019/05/03 07:53:40 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\WINDOWS\System32\drivers\amdppm.sys [184320] =>.Microsoft Corporation
O58 - SDL:2018/04/25 20:24:14 A . (.Advanced Micro Devices, Inc. - amdpsp sys.) -- C:\WINDOWS\System32\drivers\amdpsp.sys [145792] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2018/04/12 01:33:48 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83360] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259480] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows®
O58 - SDL:2019/02/16 10:04:06 A . (.Microsoft Corporation - AppID Driver.) -- C:\WINDOWS\System32\drivers\appid.sys [193032] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:19 A . (.Microsoft Corporation - Applocker Filter.) -- C:\WINDOWS\System32\drivers\applockerfltr.sys [18432] =>.Microsoft Corporation
O58 - SDL:2018/04/12 18:27:59 A . (.Microsoft Corporation - Microsoft Application Virtualization Stream.) -- C:\WINDOWS\System32\drivers\AppVStrm.sys [127384] =>.Microsoft Windows®
O58 - SDL:2019/03/14 16:52:54 A . (.Microsoft Corporation - Microsoft Application Virtualization VE Man.) -- C:\WINDOWS\System32\drivers\AppvVemgr.sys [164664] =>.Microsoft Windows®
O58 - SDL:2018/04/12 18:27:59 A . (.Microsoft Corporation - Microsoft Application Virtualization VFS Fi.) -- C:\WINDOWS\System32\drivers\AppvVfs.sys [143768] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2016/04/14 15:44:16 A . (.ASMedia Technology Inc - ASMedia USB3 Hub Driver.) -- C:\WINDOWS\System32\drivers\asmthub3.sys [150272] =>.ASMedia Technology Inc.®
O58 - SDL:2016/04/14 15:44:18 A . (.ASMedia Technology Inc - ASMedia xHCI Host Controller Driver.) -- C:\WINDOWS\System32\drivers\asmtxhci.sys [453880] =>.ASMedia Technology Inc.®
O58 - SDL:2015/06/17 12:36:26 A . (.Asmedia Technology - Asmedia 106x SATA Host Controller Driver.) -- C:\WINDOWS\System32\drivers\asstahci64.sys [88936] =>.ASMedia Technology Inc.®
O58 - SDL:2018/04/12 01:34:34 A . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\WINDOWS\System32\drivers\asyncmac.sys [28672] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\WINDOWS\System32\drivers\ataport.sys [194976] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:40 A . (.Microsoft Corporation - BAM Kernel Driver.) -- C:\WINDOWS\System32\drivers\bam.sys [60320] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\WINDOWS\System32\drivers\BasicDisplay.sys [63488] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\WINDOWS\System32\drivers\BasicRender.sys [34816] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Battery Class Driver.) -- C:\WINDOWS\System32\drivers\battc.sys [39840] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (. - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Broadcom Corporation
O58 - SDL:2018/04/12 01:34:36 A . (.Microsoft Corporation - BEEP Driver.) -- C:\WINDOWS\System32\drivers\beep.sys [10240] =>.Microsoft Corporation
O58 - SDL:2019/01/09 07:42:08 A . (.Microsoft Corporation - Windows Bind Filter Driver.) -- C:\WINDOWS\System32\drivers\bindflt.sys [92704] =>.Microsoft Windows®
O58 - SDL:2018/08/31 09:26:21 A . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\WINDOWS\System32\drivers\bowser.sys [101888] =>.Microsoft Corporation
O58 - SDL:2019/03/06 17:17:33 A . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\WINDOWS\System32\drivers\bridge.sys [116736] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Mana.) -- C:\WINDOWS\System32\drivers\BtaMPM.sys [33792] =>.Microsoft Corporation
O58 - SDL:2018/11/09 04:21:11 A . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control.) -- C:\WINDOWS\System32\drivers\bthhfenum.sys [112128] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\WINDOWS\System32\drivers\bthmodem.sys [67072] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - VHD BTT Filter Driver.) -- C:\WINDOWS\System32\drivers\bttflt.sys [38304] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Button Converter Driver.) -- C:\WINDOWS\System32\drivers\buttonconverter.sys [39936] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - Charge Arbiration Driver.) -- C:\WINDOWS\System32\drivers\CAD.sys [60320] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - CapImg HID Driver.) -- C:\WINDOWS\System32\drivers\capimg.sys [123392] =>.Microsoft Corporation
O58 - SDL:2019/03/06 10:25:59 A . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\cdfs.sys [93696] =>.Microsoft Corporation
O58 - SDL:2018/06/15 06:36:47 A . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\cdrom.sys [159744] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:12 A . (.Microsoft Corporation - Event Aggregation Kernel Mode Library.) -- C:\WINDOWS\System32\drivers\CEA.sys [78752] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [143768] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [321432] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Chelsio Communications - VF library for Chelsio ® T5/T6 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vfx.sys [29184] =>.Chelsio Communications
O58 - SDL:2018/04/12 01:33:49 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1836952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\WINDOWS\System32\drivers\circlass.sys [49152] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\WINDOWS\System32\drivers\Classpnp.sys [413600] =>.Microsoft Windows®
O58 - SDL:2019/03/14 09:55:51 A . (.Microsoft Corporation - Cloud Files Mini Filter Driver.) -- C:\WINDOWS\System32\drivers\cldflt.sys [414720] =>.Microsoft Corporation
O58 - SDL:2019/06/07 07:57:00 A . (.Microsoft Corporation - Common Log File System Driver.) -- C:\WINDOWS\System32\drivers\clfs.sys [383504] =>.Microsoft Windows®
O58 - SDL:2018/12/08 10:05:09 A . (.Microsoft Corporation - CLIP Service.) -- C:\WINDOWS\System32\drivers\ClipSp.sys [1018880] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\WINDOWS\System32\drivers\CmBatt.sys [32256] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - Kernel Configuration Manager Initial Config.) -- C:\WINDOWS\System32\drivers\cmimcext.sys [28576] =>.Microsoft Windows®
O58 - SDL:2019/06/07 07:57:38 A . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\WINDOWS\System32\drivers\cng.sys [709728] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - CNG Hardware Assist algorithm provider.) -- C:\WINDOWS\System32\drivers\cnghwassist.sys [39328] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:12 A . (.Microsoft Corporation - Console Driver.) -- C:\WINDOWS\System32\drivers\condrv.sys [55200] =>.Microsoft Windows®
O58 - SDL:2018/05/26 08:04:09 A . (.Microsoft Corporation - Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\crashdmp.sys [88472] =>.Microsoft Windows®
O58 - SDL:2018/08/03 10:21:44 A . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\WINDOWS\System32\drivers\csc.sys [561152] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:40 A . (.Microsoft Corporation - DAM Kernel Driver.) -- C:\WINDOWS\System32\drivers\dam.sys [91544] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - Xbox Device Authentication Driver.) -- C:\WINDOWS\System32\drivers\devauthe.sys [45568] =>.Microsoft Corporation
O58 - SDL:2018/06/15 06:42:01 A . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\dfsc.sys [141312] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - PnP Disk Driver.) -- C:\WINDOWS\System32\drivers\disk.sys [94112] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:23 A . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\WINDOWS\System32\drivers\Diskdump.sys [39328] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:24 A . (.Microsoft Corporation - Boot Over USB Dump Driver.) -- C:\WINDOWS\System32\drivers\Dmpusbstor.sys [15360] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Dinamikus memória.) -- C:\WINDOWS\System32\drivers\dmvsc.sys [47104] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:46 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\WINDOWS\System32\drivers\drmk.sys [98304] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:46 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\WINDOWS\System32\drivers\drmkaud.sys [16232] =>.Microsoft Windows®
O58 - SDL:2018/02/16 13:07:03 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2018/02/16 13:07:10 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual USB Bus Driver.) -- C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672] =>.Disc Soft Ltd®
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\WINDOWS\System32\drivers\Dumpata.sys [36256] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:35:21 A . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\WINDOWS\System32\drivers\dumpfve.sys [91664] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\WINDOWS\System32\drivers\dumpsd.sys [188832] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:12 A . (.Microsoft Corporation - SD Host Controller Crashdump Port Driver.) -- C:\WINDOWS\System32\drivers\dumpsdport.sys [32256] =>.Microsoft Corporation
O58 - SDL:2018/09/08 05:32:05 A . (.Microsoft Corporation - Storport Dump Driver.) -- C:\WINDOWS\System32\drivers\Dumpstorport.sys [25600] =>.Microsoft Corporation
O58 - SDL:2019/06/07 07:57:05 A . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\WINDOWS\System32\drivers\dxgkrnl.sys [2811192] =>.Microsoft Windows®
O58 - SDL:2019/06/07 07:57:01 A . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\WINDOWS\System32\drivers\dxgmms1.sys [412984] =>.Microsoft Windows®
O58 - SDL:2019/06/07 07:57:05 A . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\WINDOWS\System32\drivers\dxgmms2.sys [792888] =>.Microsoft Windows®
O58 - SDL:2018/07/01 15:28:58 A . (.EasyAntiCheat Oy - EasyAntiCheat Driver.) -- C:\WINDOWS\System32\drivers\EasyAntiCheat.sys [860872] =>.EasyAntiCheat Oy®
O58 - SDL:2018/04/12 01:34:25 A . (.Microsoft Corporation - Enhanced Storage Class driver for IEEE 1667.) -- C:\WINDOWS\System32\drivers\EhStorClass.sys [88472] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - Microsoft driver for storage devices suppor.) -- C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [118680] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Error Device Driver.) -- C:\WINDOWS\System32\drivers\errdev.sys [13824] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows®
O58 - SDL:2019/03/06 10:32:08 A . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\WINDOWS\System32\drivers\exfat.sys [358912] =>.Microsoft Corporation
O58 - SDL:2019/03/06 11:07:49 A . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\WINDOWS\System32\drivers\fastfat.sys [376120] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\WINDOWS\System32\drivers\fdc.sys [32768] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - Windows sandboxing and encryption filter.) -- C:\WINDOWS\System32\drivers\filecrypt.sys [55808] =>.Microsoft Corporation
O58 - SDL:2018/12/08 10:05:47 A . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\WINDOWS\System32\drivers\fileinfo.sys [86016] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\WINDOWS\System32\drivers\filetrace.sys [36352] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Floppy Driver.) -- C:\WINDOWS\System32\drivers\flpydisk.sys [26624] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - Microsoft fáljrendszerszűrő-kezelő.) -- C:\WINDOWS\System32\drivers\fltMgr.sys [402848] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - File System Dependency Manager Mini Filter.) -- C:\WINDOWS\System32\drivers\fsdepends.sys [62872] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\WINDOWS\System32\drivers\fs_rec.sys [34208] =>.Microsoft Windows®
O58 - SDL:2018/11/09 04:48:37 A . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\WINDOWS\System32\drivers\fvevol.sys [745472] =>.Microsoft Windows®
O58 - SDL:2019/02/06 05:00:04 A . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\WINDOWS\System32\drivers\FWPKCLNT.SYS [466960] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - Generic USB Function Class Driver.) -- C:\WINDOWS\System32\drivers\genericusbfn.sys [20992] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:04 A . (.Microsoft Corporation - GPU Energy Kernel Driver.) -- C:\WINDOWS\System32\drivers\gpuenergydrv.sys [8192] =>.Microsoft Corporation
O58 - SDL:2017/06/29 13:24:50 A . (.LogMeIn Inc. - LogMeIn Hamachi Virtual Miniport Driver.) -- C:\WINDOWS\System32\drivers\Hamdrv.sys [45680] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [86016] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\HdAudio.sys [436736] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Hid Battery Driver.) -- C:\WINDOWS\System32\drivers\hidbatt.sys [38304] =>.Microsoft Windows®
O58 - SDL:2018/09/08 05:30:51 A . (.Microsoft Corporation - Bluetooth miniport illesztőprogram HID-eszk.) -- C:\WINDOWS\System32\drivers\hidbth.sys [115200] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - HID-osztálytár.) -- C:\WINDOWS\System32\drivers\hidclass.sys [173568] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\WINDOWS\System32\drivers\hidi2c.sys [54272] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - HID Button over Interrupt Driver.) -- C:\WINDOWS\System32\drivers\hidinterrupt.sys [50592] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\WINDOWS\System32\drivers\hidir.sys [47104] =>.Microsoft Corporation
O58 - SDL:2019/03/06 10:33:02 A . (.Microsoft Corporation - Hid Parsing Library.) -- C:\WINDOWS\System32\drivers\hidparse.sys [46080] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\WINDOWS\System32\drivers\hidusb.sys [42496] =>.Microsoft Corporation
O58 - SDL:2016/04/17 05:28:40 A . (.SweetLow - USB Mouse Rate Adjuster Lower Filter.) -- C:\WINDOWS\System32\drivers\hidusbf.sys [25288] =>.Jeshua Starr Scully®
O58 - SDL:2018/04/12 01:33:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64408] =>.Microsoft Windows®
O58 - SDL:2019/02/16 10:01:36 A . (.Microsoft Corporation - HTTP-protokollverem.) -- C:\WINDOWS\System32\drivers\http.sys [1028920] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Hyper-V Crashdump.) -- C:\WINDOWS\System32\drivers\hvcrash.sys [33184] =>.Microsoft Windows®
O58 - SDL:2019/06/07 07:58:50 A . (.Microsoft Corporation - Hypervisor Boot Driver.) -- C:\WINDOWS\System32\drivers\hvservice.sys [76304] =>.Microsoft Windows®
O58 - SDL:2018/05/26 08:04:04 A . (.Microsoft Corporation - Microsoft Hyper-V Socket Provider.) -- C:\WINDOWS\System32\drivers\hvsocket.sys [130456] =>.Microsoft Windows®
O58 - SDL:2019/06/16 19:59:54 A . (.REALiX(tm) - HWiNFO AMD64 Kernel Driver.) -- C:\WINDOWS\System32\drivers\HWiNFO64A.SYS [66336] =>.Martin Malik - REALiX®
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\WINDOWS\System32\drivers\hwpolicy.sys [29592] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\WINDOWS\System32\drivers\hyperkbd.sys [16896] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft VMBus Video Device Miniport Drive.) -- C:\WINDOWS\System32\drivers\HyperVideo.sys [28672] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - i8082-port illesztőprogramja.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation
O58 - SDL:2018/04/12 01:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2018/04/12 01:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAVC.sys [885144] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - Indirect displays kernel-mode filter driver.) -- C:\WINDOWS\System32\drivers\IndirectKmd.sys [38912] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\WINDOWS\System32\drivers\intelide.sys [19360] =>.Microsoft Windows®
O58 - SDL:2019/05/03 08:43:05 A . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\WINDOWS\System32\drivers\intelpep.sys [177128] =>.Microsoft Windows Hardware Abstraction Layer Publisher®
O58 - SDL:2019/05/03 07:53:45 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\WINDOWS\System32\drivers\intelppm.sys [204800] =>.Microsoft Corporation
O58 - SDL:2018/12/08 10:04:38 A . (.Microsoft Corporation - Átviteli sebességet szabályozó szűrő.) -- C:\WINDOWS\System32\drivers\iorate.sys [58168] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:33 A . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\WINDOWS\System32\drivers\ipfltdrv.sys [85504] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - WMI IPMI illesztő.) -- C:\WINDOWS\System32\drivers\IPMIDrv.sys [92064] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\ipnat.sys [214528] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - IPT Driver.) -- C:\WINDOWS\System32\drivers\ipt.sys [32256] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:43 A . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\WINDOWS\System32\drivers\irda.sys [119808] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:41 A . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\WINDOWS\System32\drivers\irenum.sys [19968] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - PNP ISA busz illesztője.) -- C:\WINDOWS\System32\drivers\isapnp.sys [22944] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Avago Technologies - Avago SAS Gen3.5 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\ItSas35i.sys [145816] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Billentyűzetosztály illesztőprogramja.) -- C:\WINDOWS\System32\drivers\kbdclass.sys [63904] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - HID-billentyűzetszűrő illesztőprogramja.) -- C:\WINDOWS\System32\drivers\kbdhid.sys [40448] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Microsoft Kernel Debugger Network Miniport.) -- C:\WINDOWS\System32\drivers\kdnic.sys [23040] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:43 A . (.Microsoft Corporation - Network Power Dependency Broker.) -- C:\WINDOWS\System32\drivers\KNetPwrDepBroker.sys [13824] =>.Microsoft Corporation
O58 - SDL:2018/08/31 05:13:19 A . (.Microsoft Corporation - Kernel CSA Library.) -- C:\WINDOWS\System32\drivers\ks.sys [402432] =>.Microsoft Corporation
O58 - SDL:2018/10/21 09:45:46 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\WINDOWS\System32\drivers\ksecdd.sys [139792] =>.Microsoft Windows®
O58 - SDL:2019/06/07 07:57:36 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\WINDOWS\System32\drivers\ksecpkg.sys [170296] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:26 A . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\WINDOWS\System32\drivers\ksthunk.sys [27136] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:24 A . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\WINDOWS\System32\drivers\lltdio.sys [65024] =>.Microsoft Corporation
O58 - SDL:2018/04/14 14:33:15 A . (...) -- C:\WINDOWS\System32\drivers\lpsport.sys [61304] =>.AVG Technologies CZ, s.r.o.®
O58 - SDL:2018/04/12 01:33:48 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [124312] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [128408] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2019/04/02 14:10:18 A . (.Microsoft Corporation - LUA fájlvirtualizációs szűrő illesztőprogra.) -- C:\WINDOWS\System32\drivers\luafv.sys [130048] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - MA-USB Host Controller Driver.) -- C:\WINDOWS\System32\drivers\mausbhost.sys [505240] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - MA-USB IP Driver.) -- C:\WINDOWS\System32\drivers\mausbip.sys [56736] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:36 A . (.Microsoft Corporation - Medium changer class driver.) -- C:\WINDOWS\System32\drivers\mcd.sys [23552] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [75160] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas35i.sys [82328] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows®
O58 - SDL:2018/12/08 09:36:56 A . (.Microsoft Corporation - MMCSS Driver.) -- C:\WINDOWS\System32\drivers\mmcss.sys [43008] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:38 A . (.Microsoft Corporation - Modem eszközillesztő.) -- C:\WINDOWS\System32\drivers\modem.sys [42496] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:47 A . (.Microsoft Corporation - Monitor Driver.) -- C:\WINDOWS\System32\drivers\monitor.sys [44544] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Mouse Class illesztőprogram.) -- C:\WINDOWS\System32\drivers\mouclass.sys [56728] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - HID Mouse Filter illesztőprogram.) -- C:\WINDOWS\System32\drivers\mouhid.sys [33280] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - Csatlakozásipont-kezelő.) -- C:\WINDOWS\System32\drivers\mountmgr.sys [104352] =>.Microsoft Windows®
O58 - SDL:2018/08/31 05:15:02 A . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\WINDOWS\System32\drivers\mpsdrv.sys [75776] =>.Microsoft Corporation
O58 - SDL:2018/06/08 20:47:25 A . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\WINDOWS\System32\drivers\mrxdav.sys [144384] =>.Microsoft Corporation
O58 - SDL:2018/09/20 06:10:31 A . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\mrxsmb.sys [500536] =>.Microsoft Windows®
O58 - SDL:2019/01/09 07:40:07 A . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\WINDOWS\System32\drivers\mrxsmb20.sys [226104] =>.Microsoft Windows®
O58 - SDL:2019/03/06 10:26:00 A . (.Microsoft Corporation - Mailslot driver.) -- C:\WINDOWS\System32\drivers\msfs.sys [31232] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:12 A . (.Microsoft Corporation - GPIO Class Extension Driver.) -- C:\WINDOWS\System32\drivers\msgpioclx.sys [169368] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - GPIO Button Driver.) -- C:\WINDOWS\System32\drivers\msgpiowin32.sys [50592] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\WINDOWS\System32\drivers\mshidkmdf.sys [8704] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - HID-UMDF felületi áteresztő illesztő.) -- C:\WINDOWS\System32\drivers\mshidumdf.sys [11776] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - Hardware Notification Class Extension Drive.) -- C:\WINDOWS\System32\drivers\mshwnclx.sys [27136] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - ISA Driver.) -- C:\WINDOWS\System32\drivers\msisadrv.sys [18848] =>.Microsoft Windows®
O58 - SDL:2019/05/17 14:40:56 A . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\WINDOWS\System32\drivers\msiscsi.sys [280888] =>.Microsoft Windows®
O58 - SDL:2018/06/08 11:03:14 A . (.Microsoft Corporation - MS KS Server.) -- C:\WINDOWS\System32\drivers\mskssrv.sys [32256] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - Microsoft LLDP protokollillesztő.) -- C:\WINDOWS\System32\drivers\mslldp.sys [84480] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:25 A . (.Microsoft Corporation - MS Proxy Clock.) -- C:\WINDOWS\System32\drivers\mspclock.sys [10752] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:25 A . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\WINDOWS\System32\drivers\mspqm.sys [10752] =>.Microsoft Corporation
O58 - SDL:2019/03/06 11:03:40 A . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\WINDOWS\System32\drivers\msrpc.sys [375608] =>.Microsoft Windows®
O58 - SDL:2019/05/03 14:14:31 A . (.Microsoft Corporation - A Microsoft Security Events összetevő fájlr.) -- C:\WINDOWS\System32\drivers\mssecflt.sys [304144] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\WINDOWS\System32\drivers\mssmbios.sys [40864] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:25 A . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\WINDOWS\System32\drivers\mstee.sys [12800] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - Microsoft többérintéses HID - illesztőprogr.) -- C:\WINDOWS\System32\drivers\MTConfig.sys [16896] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:24 A . (.Microsoft Corporation - Többszörös UNC-szolgáltató eszközillesztője.) -- C:\WINDOWS\System32\drivers\mup.sys [124832] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows®
O58 - SDL:2019/02/16 10:01:39 A . (.Microsoft Corporation - NDIS (Network Driver Interface Specificatio.) -- C:\WINDOWS\System32\drivers\ndis.sys [1285424] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:38 A . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\WINDOWS\System32\drivers\ndiscap.sys [53760] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - Microsoft Network Adapter Multiplexor.) -- C:\WINDOWS\System32\drivers\NdisImPlatform.sys [128512] =>.Microsoft Corporation
O58 - SDL:2013/02/21 05:40:38 A . (.NT Kernel Resources - NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\ndisrd.sys [32840] =>.Realtek Semiconductor Corp®
O58 - SDL:2018/04/12 01:34:33 A . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\WINDOWS\System32\drivers\ndistapi.sys [27136] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - NDIS felhasználói módú I/O illesztőprogram.) -- C:\WINDOWS\System32\drivers\ndisuio.sys [65024] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - Microsoft virtuális hálózati adapterek szám.) -- C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [20992] =>.Microsoft Corporation
O58 - SDL:2018/11/09 04:20:41 A . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\WINDOWS\System32\drivers\ndiswan.sys [193536] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:33 A . (.Microsoft Corporation - NDIS Proxy.) -- C:\WINDOWS\System32\drivers\ndproxy.sys [63488] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:04 A . (.Microsoft Corporation - Windows Network Data Usage Monitoring Drive.) -- C:\WINDOWS\System32\drivers\Ndu.sys [128000] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - Network Adapter Class Extension for WDF.) -- C:\WINDOWS\System32\drivers\NetAdapterCx.sys [175104] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\WINDOWS\System32\drivers\netbios.sys [58264] =>.Microsoft Windows®
O58 - SDL:2019/04/02 09:48:15 A . (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netbt.sys [310272] =>.Microsoft Corporation
O58 - SDL:2018/11/09 04:47:32 A . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\WINDOWS\System32\drivers\netio.sys [537912] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Virtuális NDIS-miniport.) -- C:\WINDOWS\System32\drivers\netvsc.sys [197632] =>.Microsoft Corporation
O58 - SDL:2019/03/06 10:26:00 A . (.Microsoft Corporation - NPFS Driver.) -- C:\WINDOWS\System32\drivers\npfs.sys [73216] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Named pipe service triggers.) -- C:\WINDOWS\System32\drivers\npsvctrig.sys [26112] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - NSI Proxy.) -- C:\WINDOWS\System32\drivers\nsiproxy.sys [44544] =>.Microsoft Corporation
O58 - SDL:2019/03/14 10:26:19 A . (.Microsoft Corporation - NT fájlrendszer-illesztő.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2421048] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:28 A . (.Microsoft Corporation - NTOS extension host driver.) -- C:\WINDOWS\System32\drivers\ntosext.sys [19872] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - NULL Driver.) -- C:\WINDOWS\System32\drivers\null.sys [7168] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - NVDIMM device driver.) -- C:\WINDOWS\System32\drivers\nvdimm.sys [104448] =>.Microsoft Corporation
O58 - SDL:2019/05/23 16:13:20 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda64v.sys [228608] =>.NVIDIA Corporation®
O58 - SDL:2018/04/12 01:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2019/04/17 09:42:48 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\WINDOWS\System32\drivers\nvvad64v.sys [69840] =>.NVIDIA Corporation®
O58 - SDL:2019/04/17 06:44:20 A . (.NVIDIA Corporation - Virtual USB Host Controller driver.) -- C:\WINDOWS\System32\drivers\nvvhci.sys [75600] =>.NVIDIA Corporation®
O58 - SDL:2019/03/14 09:55:23 A . (.Microsoft Corporation - NativeWiFi miniport-illesztőprogram.) -- C:\WINDOWS\System32\drivers\nwifi.sys [528896] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:12 A . (.Microsoft Corporation - QoS csomagütemező.) -- C:\WINDOWS\System32\drivers\pacer.sys [152984] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Párhuzamos port illesztőprogramja.) -- C:\WINDOWS\System32\drivers\parport.sys [98816] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - Partition driver.) -- C:\WINDOWS\System32\drivers\partmgr.sys [166816] =>.Microsoft Windows®
O58 - SDL:2019/03/14 10:56:59 A . (.Microsoft Corporation - NT - Plug and Play PCI-enumeráló.) -- C:\WINDOWS\System32\drivers\pci.sys [375096] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\pciide.sys [16288] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\WINDOWS\System32\drivers\pciidex.sys [53656] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:45 A . (.Microsoft Corporation - PCMCIA illesztőprogram.) -- C:\WINDOWS\System32\drivers\pcmcia.sys [120216] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\WINDOWS\System32\drivers\pcw.sys [53152] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\WINDOWS\System32\drivers\pdc.sys [140192] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:43 A . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\WINDOWS\System32\drivers\PEAuth.sys [726528] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Persistent memory driver.) -- C:\WINDOWS\System32\drivers\pmem.sys [105984] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - Plug and Play memória-illesztőprogram.) -- C:\WINDOWS\System32\drivers\pnpmem.sys [16896] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:46 A . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\WINDOWS\System32\drivers\portcls.sys [379392] =>.Microsoft Corporation
O58 - SDL:2019/05/03 07:53:40 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\WINDOWS\System32\drivers\processr.sys [181760] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - Microsoft Quality Windows Audio Video Exper.) -- C:\WINDOWS\System32\drivers\qwavedrv.sys [49152] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - RAM Disk Driver.) -- C:\WINDOWS\System32\drivers\ramdisk.sys [39840] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:33 A . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\WINDOWS\System32\drivers\rasacd.sys [17408] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:34 A . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\rasl2tp.sys [106496] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:33 A . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\raspppoe.sys [82944] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:34 A . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\WINDOWS\System32\drivers\raspptp.sys [97280] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:34 A . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\WINDOWS\System32\drivers\rassstp.sys [78848] =>.Microsoft Corporation
O58 - SDL:2019/02/16 10:02:57 A . (.Microsoft Corporation - Átirányított illesztőprogram pufferelési al.) -- C:\WINDOWS\System32\drivers\rdbss.sys [432952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 18:27:59 A . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\WINDOWS\System32\drivers\rdpbus.sys [27136] =>.Microsoft Corporation
O58 - SDL:2019/03/14 16:33:42 A . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
O58 - SDL:2018/04/12 18:28:01 A . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\WINDOWS\System32\drivers\rdpvideominiport.sys [30616] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:43 A . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\WINDOWS\System32\drivers\rdyboost.sys [284064] =>.Microsoft Windows®
O58 - SDL:2019/03/06 11:03:04 A . (.Microsoft Corporation - NT ReFS FS-illesztőprogram.) -- C:\WINDOWS\System32\drivers\refs.sys [1921848] =>.Microsoft Windows®
O58 - SDL:2019/03/06 11:04:46 A . (.Microsoft Corporation - NT ReFS FS-illesztőprogram.) -- C:\WINDOWS\System32\drivers\refsv1.sys [945464] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft RemoteFX VM Transport.) -- C:\WINDOWS\System32\drivers\RfxVmt.sys [43008] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - ResourceHub Proxy Driver.) -- C:\WINDOWS\System32\drivers\rhproxy.sys [104448] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:29 A . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\WINDOWS\System32\drivers\rmcast.sys [150016] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:36 A . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\WINDOWS\System32\drivers\RNDISMP.sys [35328] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:38 A . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\WINDOWS\System32\drivers\rootmdm.sys [13312] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:24 A . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) -- C:\WINDOWS\System32\drivers\rspndr.sys [81920] =>.Microsoft Corporation
O58 - SDL:2018/10/23 14:24:24 A . (.Realtek - Realtek 8125/8136/8168/8169 NDIS 6.40 64-bi.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [1131024] =>.Realtek Semiconductor Corp.®
O58 - SDL:2018/04/12 01:33:53 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [65536] =>.Realtek
O58 - SDL:2019/01/16 19:18:32 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [6554416] =>.Realtek Semiconductor Corp.®
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\WINDOWS\System32\drivers\sbp2port.sys [109984] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:37 A . (.Microsoft Corporation - Microsoft intelligenskártya-olvasó szűrőill.) -- C:\WINDOWS\System32\drivers\scfilter.sys [43008] =>.Microsoft Corporation
O58 - SDL:2018/08/03 05:47:12 A . (.Microsoft Corporation - Tárolóosztály memóriabuszának illesztője.) -- C:\WINDOWS\System32\drivers\scmbus.sys [128920] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:36 A . (.Microsoft Corporation - SCSI Port Driver.) -- C:\WINDOWS\System32\drivers\scsiport.sys [176032] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - SecureDigital busz illesztőprogramja.) -- C:\WINDOWS\System32\drivers\sdbus.sys [287128] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - SDF Reflector.) -- C:\WINDOWS\System32\drivers\SDFRd.sys [33176] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - SD Host Controller Port Driver.) -- C:\WINDOWS\System32\drivers\sdport.sys [97696] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - SD tárolási osztály illesztőprogramja.) -- C:\WINDOWS\System32\drivers\sdstor.sys [97176] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - Serial Class Extension.) -- C:\WINDOWS\System32\drivers\SerCx.sys [75680] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - Serial Class Extension V2.) -- C:\WINDOWS\System32\drivers\SerCx2.sys [154528] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\WINDOWS\System32\drivers\serenum.sys [25088] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Soroseszközillesztő.) -- C:\WINDOWS\System32\drivers\serial.sys [84992] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Soros egér szűrő-illesztőprogramja.) -- C:\WINDOWS\System32\drivers\sermouse.sys [28160] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\WINDOWS\System32\drivers\sfloppy.sys [17920] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:04 A . (.Microsoft Corporation - System Guard Runtime Monitor Agent Driver.) -- C:\WINDOWS\System32\drivers\SgrmAgent.sys [63896] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - Sleep Study Helper.) -- C:\WINDOWS\System32\drivers\SleepStudyHelper.sys [34208] =>.Microsoft Windows®
O58 - SDL:2018/04/12 18:28:06 A . (.Microsoft Corporation - SMB Network Direct Driver.) -- C:\WINDOWS\System32\drivers\smbdirect.sys [152064] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:36 A . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\WINDOWS\System32\drivers\smclib.sys [21504] =>.Microsoft Corporation
O58 - SDL:2019/03/14 10:26:13 A . (.Microsoft Corporation - Storage Spaces Dump Driver.) -- C:\WINDOWS\System32\drivers\spacedump.sys [175416] =>.Microsoft Windows®
O58 - SDL:2019/03/14 10:57:04 A . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\WINDOWS\System32\drivers\spaceport.sys [611640] =>.Microsoft Windows®
O58 - SDL:2018/04/12 18:28:03 A . (.Microsoft Corporation - Holographic Spatial Graph Filter.) -- C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [57752] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:12 A . (.Microsoft Corporation - SPB Class Extension.) -- C:\WINDOWS\System32\drivers\SpbCx.sys [82328] =>.Microsoft Windows®
O58 - SDL:2019/03/06 10:29:14 A . (.Microsoft Corporation - Smb 2.0 kiszolgáló illesztőprogramja.) -- C:\WINDOWS\System32\drivers\srv2.sys [736256] =>.Microsoft Corporation
O58 - SDL:2019/03/06 10:31:57 A . (.Microsoft Corporation - Server Network driver.) -- C:\WINDOWS\System32\drivers\srvnet.sys [266752] =>.Microsoft Corporation
O58 - SDL:2017/05/18 22:17:28 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [131984] =>.Samsung Electronics Co., Ltd.®
O58 - SDL:2017/05/18 22:17:30 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [166288] =>.Samsung Electronics Co., Ltd.®
O58 - SDL:2018/04/12 01:33:49 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\WINDOWS\System32\drivers\storahci.sys [156056] =>.Microsoft Windows®
O58 - SDL:2019/05/17 09:07:32 A . (.Microsoft Corporation - Microsoft NVM Express Storport Miniport Dri.) -- C:\WINDOWS\System32\drivers\stornvme.sys [105272] =>.Microsoft Windows®
O58 - SDL:2018/10/21 09:46:20 A . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\WINDOWS\System32\drivers\storport.sys [560136] =>.Microsoft Windows®
O58 - SDL:2019/03/14 16:33:58 A . (.Microsoft Corporation - Tárolási szolgáltatásminőségi szűrő.) -- C:\WINDOWS\System32\drivers\storqosflt.sys [82432] =>.Microsoft Corporation
O58 - SDL:2018/06/15 09:10:52 A . (.Microsoft Corporation - MS UFS Storport Miniport Driver.) -- C:\WINDOWS\System32\drivers\storufs.sys [48544] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Storage VSC Driver.) -- C:\WINDOWS\System32\drivers\storvsc.sys [40352] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:36 A . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\WINDOWS\System32\drivers\stream.sys [75264] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft RemoteFX Synth3D videovirtualizál.) -- C:\WINDOWS\System32\drivers\Synth3dVsc.sys [64512] =>.Microsoft Corporation
O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2018/04/12 01:34:36 A . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\WINDOWS\System32\drivers\tape.sys [31232] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - Export driver for kernel mode TPM API.) -- C:\WINDOWS\System32\drivers\tbs.sys [27544] =>.Microsoft Windows®
O58 - SDL:2019/06/07 07:57:12 A . (.Microsoft Corporation - TCP/IP-illesztőprogram.) -- C:\WINDOWS\System32\drivers\tcpip.sys [2719032] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\WINDOWS\System32\drivers\tcpipreg.sys [51712] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - TDI Wrapper.) -- C:\WINDOWS\System32\drivers\tdi.sys [40352] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121248] =>.Microsoft Windows®
O58 - SDL:2018/04/12 18:28:07 A . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\WINDOWS\System32\drivers\terminpt.sys [37280] =>.Microsoft Windows®
O58 - SDL:2019/01/01 09:12:20 A . (.Microsoft Corporation - Kernel Transaction Manager Driver.) -- C:\WINDOWS\System32\drivers\tm.sys [128824] =>.Microsoft Windows®
O58 - SDL:2018/08/09 06:55:01 A . (.Microsoft Corporation - TPM-eszközillesztő.) -- C:\WINDOWS\System32\drivers\tpm.sys [230304] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - Remote Desktop USB Hub Filter Driver.) -- C:\WINDOWS\System32\drivers\TsUsbFlt.sys [63488] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\WINDOWS\System32\drivers\TsUsbGD.sys [35328] =>.Microsoft Corporation
O58 - SDL:2018/04/12 18:27:58 A . (.Microsoft Corporation - Remote Desktop USB Hub.) -- C:\WINDOWS\System32\drivers\tsusbhub.sys [126464] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:32 A . (.Microsoft Corporation - Microsoft alagútkapcsolat illesztőprogramja.) -- C:\WINDOWS\System32\drivers\tunnel.sys [119296] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft Uasp Driver.) -- C:\WINDOWS\System32\drivers\uaspstor.sys [79776] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - USB Connector Manager KMDF Class Extension.) -- C:\WINDOWS\System32\drivers\UcmCx.sys [128512] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - UCM-TCPCI KMDF Class Extension.) -- C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [152576] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - USB Connector Manager UCSI Client.) -- C:\WINDOWS\System32\drivers\UcmUcsi.sys [57856] =>.Microsoft Corporation
O58 - SDL:2018/08/03 05:40:48 A . (.Microsoft Corporation - USB Controller Extension.) -- C:\WINDOWS\System32\drivers\Ucx01000.sys [228136] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - 'udecx.DRIVER'.) -- C:\WINDOWS\System32\drivers\Udecx.sys [45056] =>.Microsoft Corporation
O58 - SDL:2019/03/06 10:31:31 A . (.Microsoft Corporation - UDF File System Driver.) -- C:\WINDOWS\System32\drivers\udfs.sys [324608] =>.Microsoft Corporation
O58 - SDL:2018/06/08 12:31:08 A . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\WINDOWS\System32\drivers\uefi.sys [29600] =>.Microsoft Windows®
O58 - SDL:2018/04/12 18:28:04 A . (.Microsoft Corporation - Microsoft User Experience Virtualization Ag.) -- C:\WINDOWS\System32\drivers\UevAgentDriver.sys [40344] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - USB Function Driver Class Extension.) -- C:\WINDOWS\System32\drivers\ufx01000.sys [282008] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - UFX Chipidea Client Driver.) -- C:\WINDOWS\System32\drivers\UfxChipidea.sys [98200] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - UFX Synopsys Client Driver.) -- C:\WINDOWS\System32\drivers\ufxsynopsys.sys [144288] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\WINDOWS\System32\drivers\umbus.sys [56832] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - Generic pass-through driver.) -- C:\WINDOWS\System32\drivers\umpass.sys [14336] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - USB Role-Switch Driver for Chipidea Core.) -- C:\WINDOWS\System32\drivers\urschipidea.sys [29088] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:14 A . (.Microsoft Corporation - USB Role-Switch Class Extension.) -- C:\WINDOWS\System32\drivers\urscx01000.sys [67992] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:51 A . (.Microsoft Corporation - USB Role-Switch Driver for Synopsys Core.) -- C:\WINDOWS\System32\drivers\urssynopsys.sys [28064] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:34 A . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\WINDOWS\System32\drivers\usb8023.sys [22016] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:40 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\System32\drivers\USBCAMD2.sys [37376] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\WINDOWS\System32\drivers\usbccgp.sys [168864] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:46 A . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\WINDOWS\System32\drivers\usbcir.sys [102912] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\WINDOWS\System32\drivers\usbd.sys [32152] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\WINDOWS\System32\drivers\usbehci.sys [95648] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\WINDOWS\System32\drivers\usbhub.sys [514464] =>.Microsoft Windows®
O58 - SDL:2018/11/09 04:49:37 A . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\WINDOWS\System32\drivers\USBHUB3.SYS [565048] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\WINDOWS\System32\drivers\usbohci.sys [30208] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:14 A . (...) -- C:\WINDOWS\System32\drivers\UsbPmApi.sys [39936] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - USB 1.1 & 2.0 portillesztőprogram.) -- C:\WINDOWS\System32\drivers\usbport.sys [412576] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:47 A . (.Microsoft Corporation - USB Printer driver.) -- C:\WINDOWS\System32\drivers\usbprint.sys [27136] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - USB Serial Driver.) -- C:\WINDOWS\System32\drivers\usbser.sys [72192] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - USB-háttértároló osztályú illesztőprogram.) -- C:\WINDOWS\System32\drivers\USBSTOR.SYS [131488] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\WINDOWS\System32\drivers\usbuhci.sys [35328] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - USB XHCI Driver.) -- C:\WINDOWS\System32\drivers\USBXHCI.SYS [434592] =>.Microsoft Windows®
O58 - SDL:2014/09/02 18:01:16 A . (. - VB Virtual Audio Device.) -- C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192] =>.Vincent Burel®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Virtual Drive Root Enumerator.) -- C:\WINDOWS\System32\drivers\vdrvroot.sys [56224] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - Illesztőprogram-ellenőrző bővítmény.) -- C:\WINDOWS\System32\drivers\VerifierExt.sys [217496] =>.Microsoft Windows®
O58 - SDL:2019/06/07 08:07:38 A . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\WINDOWS\System32\drivers\vhdmp.sys [707384] =>.Microsoft Windows®
O58 - SDL:2018/10/21 09:19:52 A . (.Microsoft Corporation - Virtuális HID-keretrendszer (VHF) illesztőp.) -- C:\WINDOWS\System32\drivers\vhf.sys [36352] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:23 A . (.Microsoft Corporation - Video Port Driver.) -- C:\WINDOWS\System32\drivers\videoprt.sys [44544] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:54 A . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\WINDOWS\System32\drivers\vmbkmcl.sys [81824] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:08 A . (.Microsoft Corporation - Hyper-V VMBus Root KMCL.) -- C:\WINDOWS\System32\drivers\vmbkmclr.sys [82432] =>.Microsoft Corporation
O58 - SDL:2018/08/03 05:39:49 A . (.Microsoft Corporation - Microsoft Hyper-V virtuálisgép-busz gyermek.) -- C:\WINDOWS\System32\drivers\vmbus.sys [114080] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\WINDOWS\System32\drivers\VMBusHID.sys [25088] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\WINDOWS\System32\drivers\vmgencounter.sys [13312] =>.Microsoft Corporation
O58 - SDL:2018/08/03 05:17:05 A . (.Microsoft Corporation - Virtual Machine Guest Infrastructure Driver.) -- C:\WINDOWS\System32\drivers\vmgid.sys [10240] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\WINDOWS\System32\drivers\vms3cap.sys [9216] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\vmstorfl.sys [47520] =>.Microsoft Windows®
O58 - SDL:2018/06/15 09:03:31 A . (.Microsoft Corporation - Kötetkezelő illesztő.) -- C:\WINDOWS\System32\drivers\volmgr.sys [83360] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:24 A . (.Microsoft Corporation - Kötetkezelő bővítmény illesztőprogramja.) -- C:\WINDOWS\System32\drivers\volmgrx.sys [373144] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:39 A . (.Microsoft Corporation - Kötet árnyékmásolatának illesztőprogramja.) -- C:\WINDOWS\System32\drivers\volsnap.sys [398240] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Volume driver.) -- C:\WINDOWS\System32\drivers\volume.sys [16288] =>.Microsoft Windows®
O58 - SDL:2018/08/03 05:39:58 A . (.Microsoft Corporation - Virtual PCI Bus.) -- C:\WINDOWS\System32\drivers\vpci.sys [75160] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:43 A . (.Microsoft Corporation - Virtual Wireless Bus Driver.) -- C:\WINDOWS\System32\drivers\vwifibus.sys [27136] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:43 A . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\WINDOWS\System32\drivers\vwififlt.sys [76288] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:43 A . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\WINDOWS\System32\drivers\vwifimp.sys [44544] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:48 A . (.Microsoft Corporation - Wacom soros csatlakozású digitális toll és.) -- C:\WINDOWS\System32\drivers\wacompen.sys [30720] =>.Microsoft Corporation
O58 - SDL:2019/01/01 08:48:03 A . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\WINDOWS\System32\drivers\wanarp.sys [81920] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:08 A . (.Microsoft Corporation - Watchdog Driver.) -- C:\WINDOWS\System32\drivers\watchdog.sys [56320] =>.Microsoft Corporation
O58 - SDL:2019/03/14 10:28:15 A . (.Microsoft Corporation - Windows Container Isolation FS Filter Drive.) -- C:\WINDOWS\System32\drivers\wcifs.sys [152072] =>.Microsoft Windows®
O58 - SDL:2018/12/08 09:38:30 A . (.Microsoft Corporation - Windows Container Name Virtualization FS Fi.) -- C:\WINDOWS\System32\drivers\wcnfs.sys [83456] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:58 A . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\WINDOWS\System32\drivers\WdBoot.sys [44616] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - Rendszermag módú illesztőprogram-keretrends.) -- C:\WINDOWS\System32\drivers\Wdf01000.sys [924856] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:58 A . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\WINDOWS\System32\drivers\WdFilter.sys [331680] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\WINDOWS\System32\drivers\WdfLdr.sys [61624] =>.Microsoft Windows®
O58 - SDL:2019/05/17 07:33:34 A . (.Microsoft Corporation - WDI Driver Framework Driver.) -- C:\WINDOWS\System32\drivers\WdiWiFi.sys [787968] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:15 A . (.Microsoft Corporation - WDM Companion Filter.) -- C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [21408] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:58 A . (.Microsoft Corporation - Windows Defender Network Stream Filter.) -- C:\WINDOWS\System32\drivers\WdNisDrv.sys [44032] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:23 A . (.Microsoft Corporation - Windows Error Reporting Kernel Driver.) -- C:\WINDOWS\System32\drivers\werkernel.sys [45984] =>.Microsoft Windows®
O58 - SDL:2019/05/03 08:32:10 A . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\WINDOWS\System32\drivers\wfplwfs.sys [164664] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - Wim file system Driver.) -- C:\WINDOWS\System32\drivers\wimmount.sys [35744] =>.Microsoft Windows®
O58 - SDL:2018/06/15 07:08:14 A . (.Microsoft Corporation - Windows Trusted Runtime Interface Driver.) -- C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [72768] =>.Microsoft Windows Hardware Abstraction Layer Publisher®
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Windows Trusted Runtime Service Proxy Drive.) -- C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [18472] =>.Microsoft Windows Hardware Abstraction Layer Publisher®
O58 - SDL:2018/08/03 05:39:49 A . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\WINDOWS\System32\drivers\winhv.sys [31648] =>.Microsoft Windows®
O58 - SDL:2018/08/03 05:15:43 A . (.Microsoft Corporation - Windows Hypervisor Root Interface Driver.) -- C:\WINDOWS\System32\drivers\winhvr.sys [68096] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows®
O58 - SDL:2019/05/17 07:36:02 A . (.Microsoft Corporation - Windows NAT-illesztőprogram.) -- C:\WINDOWS\System32\drivers\winnat.sys [228864] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - Windows WinUSB Class Driver.) -- C:\WINDOWS\System32\drivers\winusb.sys [92672] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:49 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:49 A . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\WINDOWS\System32\drivers\wmiacpi.sys [18432] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\WINDOWS\System32\drivers\wmilib.sys [20384] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:20 A . (.Microsoft Corporation - Windows átfedési szűrő.) -- C:\WINDOWS\System32\drivers\wof.sys [209816] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:33:58 A . (.Microsoft Corporation - Windows Portable Device Upper Class Filter.) -- C:\WINDOWS\System32\drivers\WpdUpFltr.sys [30112] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:22 A . (.Microsoft Corporation - WPP Trace Recorder.) -- C:\WINDOWS\System32\drivers\WppRecorder.sys [33184] =>.Microsoft Windows®
O58 - SDL:2018/04/12 01:34:39 A . (.Microsoft Corporation - Winsock2 IFS réteg.) -- C:\WINDOWS\System32\drivers\ws2ifsl.sys [23040] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:28 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\WINDOWS\System32\drivers\WUDFPf.sys [125440] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:28 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\WINDOWS\System32\drivers\WUDFRd.sys [264192] =>.Microsoft Corporation
O58 - SDL:2018/06/15 06:44:07 A . (.Microsoft Corporation - Game Input Protocol Driver.) -- C:\WINDOWS\System32\drivers\xboxgip.sys [295424] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:33:52 A . (.Microsoft Corporation - XINPUT filter driver for HID.) -- C:\WINDOWS\System32\drivers\xinputhid.sys [46592] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:12 A . (.Microsoft Corporation - Full/Desktop Multi-User Win32 Driver.) -- C:\WINDOWS\System32\win32k.sys [482304] =>.Microsoft Corporation
O58 - SDL:2019/06/07 07:18:06 A . (.Microsoft Corporation - Alap Win32k kernel-illesztőprogram.) -- C:\WINDOWS\System32\win32kbase.sys [2166784] =>.Microsoft Corporation
O58 - SDL:2019/06/07 12:42:14 A . (.Microsoft Corporation - Full/Desktop Win32k Kernel Driver.) -- C:\WINDOWS\System32\win32kfull.sys [3613696] =>.Microsoft Corporation
O58 - SDL:2018/04/12 01:34:48 A . (.Microsoft Corporation - Full/Desktop Multi-User Win32 Driver.) -- C:\WINDOWS\SysWOW64\win32k.sys [315904] =>.Microsoft Corporation
O58 - SDL:2019/06/07 12:04:52 A . (.Microsoft Corporation - Full/Desktop Win32k Kernel Driver.) -- C:\WINDOWS\SysWOW64\win32kfull.sys [2881536] =>.Microsoft Corporation

---\ Last modified or created user files (6) - 32s
O61 - LFC: 2019/06/14 21:34:31 AC . (..) -- C:\Users\User\AppData\Roaming\Hard Disk Sentinel\hds_control_add.vbs [1888]
O61 - LFC: 2019/06/14 21:34:31 AC . (..) -- C:\Users\User\AppData\Roaming\Hard Disk Sentinel\hds_control_check.vbs [522]
O61 - LFC: 2019/06/14 21:34:31 AC . (..) -- C:\Users\User\AppData\Roaming\Hard Disk Sentinel\hds_control_remove.vbs [446]
O61 - LFC: 2019/06/16 16:11:20 A . (.glax24 (safezone.cc).) -- C:\Users\User\Downloads\SecurityCheck (1).exe [528638]
O61 - LFC: 2019/06/16 16:11:39 A . (.glax24 (safezone.cc).) -- C:\Users\User\Downloads\SecurityCheck (2).exe [528638]
O61 - LFC: 2019/06/16 15:02:18 A . (..) -- C:\Users\User\Downloads\SecurityCheck.exe [852798]

---\ File Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- '%1' %* =>.Default.Value
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- '%1' %* =>.Default.Value
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- '%1' %* =>.Default.Value
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Eseménynapló beépülő moduljának indítója.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- '%1' %* =>.Default.Value
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe '%1' %* =>.Default.Value
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Beállításszerkesztő.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- '%1' /S =>.Default.Value

---\ Start Menu Internet (8) - 0s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE felhasználókénti inicializációs eszköz.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE felhasználókénti inicializációs eszköz.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE felhasználókénti inicializációs eszköz.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\ Search Browser Infection (2) - 0s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com

---\ Search Svchost Services (49) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft intelligens kártya tanúsítvány-te.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft intelligens kártya tanúsítvány-te.) -- C:\Windows\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Kiszolgáló szolgáltatás DLL-je.) -- C:\Windows\System32\srvsvc.dll [276992] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Csoportházirend ügyfél.) -- C:\Windows\System32\gpsvc.dll [1271808] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE bővítmény.) -- C:\Windows\System32\IKEEXT.DLL [990720] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - IPv4-hálózatokon IPv6-kapcsolódási lehetősé.) -- C:\Windows\System32\iphlpsvc.dll [786432] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Másodlagos bejelentkezési szolgáltatás DLL-.) -- C:\Windows\System32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI-felderítési szolgáltatás.) -- C:\Windows\System32\iscsiexe.dll [150528] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost szolgáltatás.) -- C:\Windows\System32\eapsvc.dll [109568] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Feladatütemező szolgáltatás.) -- C:\Windows\System32\schedsvc.dll [889344] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [224256] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [397312] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Távoli asztal beállítása szolgáltatás.) -- C:\Windows\System32\SessEnv.dll [397312] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problémajelentések és megoldások.) -- C:\Windows\System32\wercplsupport.dll [119808] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [1487360] =>.Microsoft Corporation
O83 - Search Svchost Services: LxpSvc (LxpSvc) . (.Microsoft Corporation - Biztosítja a honosított Windows-erőforrások.) -- C:\Windows\System32\LanguageOverlayServer.dll [199680] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [195584] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [262144] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1308672] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft hálózati csatlakozási segédszolgá.) -- C:\Windows\System32\NcaSvc.dll [167936] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - A Windows felügyeleti szolgáltatásának DLL-.) -- C:\Windows\System32\Windows.Internal.Management.dll [827392] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1115648] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE szolgáltatás.) -- C:\Windows\System32\bdesvc.dll [402944] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Természetes hitelesítés szolgáltatás.) -- C:\Windows\System32\NaturalAuth.dll [824832] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Hálózat beállítása szolgáltatás.) -- C:\Windows\System32\NetSetupSvc.dll [335360] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft®-fiók szolgáltatás.) -- C:\Windows\System32\wlidsvc.dll [2247680] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Eszköztelepítés-kezelő.) -- C:\Windows\System32\DeviceSetupManager.dll [235520] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - Felhasználókezelő.) -- C:\Windows\System32\usermgr.dll [1027584] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows felületi téma szolgáltatási DLL-je.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [58880] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Alkalmazásinformációs szolgáltatás.) -- C:\Windows\System32\appinfo.dll [166912] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Jogkivonat-szervező.) -- C:\Windows\System32\TokenBroker.dll [1395200] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Földrajzi Hely Szolgáltatás.) -- C:\Windows\System32\lfsvc.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Infravörös figyelő.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Távelérési automatikushívás-kezelő.) -- C:\Windows\System32\rasauto.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Távelérési csatlakozáskezelő.) -- C:\Windows\System32\rasmans.dll [935936] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dinamikus kapcsolatkezelő.) -- C:\Windows\System32\mprdim.dll [497664] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Rendszeresemény-jelző szolgáltatás (SENS).) -- C:\Windows\System32\Sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT - segítő összetevők.) -- C:\Windows\System32\ipnathlp.dll [604672] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) telefonos kiszolgáló.) -- C:\Windows\System32\tapisrv.dll [308224] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2912256] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Háttérben futó intelligens átviteli szolgál.) -- C:\Windows\System32\qmgr.dll [1374208] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows felület szolgáltatási DLL-je.) -- C:\Windows\System32\shsvcs.dll [613376] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Előzetesek beállításai.) -- C:\Windows\System32\flightsettings.dll [858112] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - A Windows leküldéses értesítéseit kezelő re.) -- C:\Windows\System32\WpnService.dll [280576] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1148928] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Munkamenet-vezénylő alapprogram frissítése.) -- C:\Windows\System32\usocore.dll [1383424] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Szoftvertelepítési szolgáltatás.) -- C:\Windows\System32\appmgmts.dll [197120] =>.Microsoft Corporation

---\ Firewall Active Exception List (201) - 17s
O87 - FAEL: '{9EB2155D-6E3B-4293-B6DD-77E39BD2FD48}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win32\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{D43162C9-FA1D-468C-8B28-62A6ED4437BA}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win32\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{FF9360F5-363E-4CF1-9461-7F9FD21184E5}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win64\mod_uploader.exe (.not file.) =>.Steam Games
O87 - FAEL: '{C0509DE4-5BEB-407C-B649-A85A822B61CF}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win64\mod_uploader.exe (.not file.) =>.Steam Games
O87 - FAEL: '{81938333-9B8B-46AC-A77F-4926BA349778}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win64\starbound_server.exe (.not file.) =>.Steam Games
O87 - FAEL: '{47A9D0BF-76FA-4BE2-82A1-0DF4F0EA23A1}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win64\starbound_server.exe (.not file.) =>.Steam Games
O87 - FAEL: '{805614FA-A72E-48B2-A639-B40CE2C46CE6}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win64\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{7B09032F-9A5D-4290-A281-E2655EB84388}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Starbound\win64\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{18F9DC0F-EAC0-4D81-80FF-6B5FB16131E7}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Into the Breach\Breach.exe =>.Steam Games
O87 - FAEL: '{55C14514-705F-45B1-8675-9BB4F8679402}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Into the Breach\Breach.exe =>.Steam Games
O87 - FAEL: '{C1793764-ADCE-4369-8457-69ABF80AACF6}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Paladins\Binaries\Win32\HirezBridge.exe (.not file.) =>.Steam Games
O87 - FAEL: '{D9526592-E4EE-4D11-9FF2-2776D3DA2E58}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Paladins\Binaries\Win32\HirezBridge.exe (.not file.) =>.Steam Games
O87 - FAEL: '{73271507-055D-4CAA-A204-5DFB662A44A2}' [In-None-P17-TRUE] .(.Fatshark AB - Launcher for 'Warhammer: Vermintide 2'.) -- F:\Program Files (x86)\Steam\SteamApps\common\Warhammer Vermintide 2\launcher\Launcher.exe =>.Fatshark AB®
O87 - FAEL: '{B3BCE073-63C6-44E7-959A-25370AEBFAC0}' [In-None-P6-TRUE] .(.Fatshark AB - Launcher for 'Warhammer: Vermintide 2'.) -- F:\Program Files (x86)\Steam\SteamApps\common\Warhammer Vermintide 2\launcher\Launcher.exe =>.Fatshark AB®
O87 - FAEL: '{E6141CAB-52F9-4553-B928-A8BBAF6D6F2A}' [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe =>.Oracle America, Inc.®
O87 - FAEL: '{EE9C38B5-F49C-4776-844B-B839FAEE5E16}' [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe =>.Oracle America, Inc.®
O87 - FAEL: 'UDP Query User{5EC5590F-2E2E-4F10-B2B5-623A4A879DC3}C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe' [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe =>.Oracle America, Inc.®
O87 - FAEL: 'TCP Query User{82820061-833D-40E7-AE86-6F49FE530924}C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe' [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe =>.Oracle America, Inc.®
O87 - FAEL: '{787DAE2E-DDBE-4ED1-8611-72EB20F7C737}' [Out-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (.not file.) =>.Steam Games
O87 - FAEL: '{37D6ACD3-2ECE-48BB-B644-B36817BF7273}' [Out-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{C763B20C-3F1F-4CE9-8A55-9B70D9C5EA98}' [Out-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam Games
O87 - FAEL: '{87B3A043-8C6E-4DA9-8102-F629E290B95F}' [Out-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam Games
O87 - FAEL: '{B33E57DE-2E6B-4B76-B4A3-9F3C2DD6E2C0}' [Out-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam Games
O87 - FAEL: '{97275293-5EAC-44A3-8B66-0FB5EE22C03A}' [Out-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam Games
O87 - FAEL: '{9C421669-AC83-4D05-8895-99A348919A2E}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (.not file.) =>.Steam Games
O87 - FAEL: '{62B9434A-8EE6-44D2-AD14-6B41B67E02E9}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{2093907D-D450-46B7-AA69-89AD0258A0DD}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam Games
O87 - FAEL: '{7EFE35B7-A571-4B70-AC4A-950442AFDA0C}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam Games
O87 - FAEL: '{6D47FBC2-F0C3-4477-8E51-194D49283382}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam Games
O87 - FAEL: '{114FD507-5457-44ED-9484-9A97F1126831}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{1B9BE9A6-AED4-4745-84F2-1C40A30123E3}F:\program files (x86)\kingdom come deliverance\bin\win64\kingdomcome.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\kingdom come deliverance\bin\win64\kingdomcome.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: 'TCP Query User{2947F63C-DC72-428B-98FA-C85BF9E04CD5}F:\program files (x86)\kingdom come deliverance\bin\win64\kingdomcome.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\kingdom come deliverance\bin\win64\kingdomcome.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{DB8F39FB-E656-4002-A414-73ED53148822}' [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: '{BDB39E42-64A9-4306-B169-D9C6060BDE6B}' [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: '{44C10BA1-D95E-446A-8908-4025B96ACB07}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Tabletop Simulator\Tabletop Simulator.exe =>.Steam Games
O87 - FAEL: '{483D5ECF-880F-4517-A997-E5816E202F66}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Tabletop Simulator\Tabletop Simulator.exe =>.Steam Games
O87 - FAEL: 'UDP Query User{5EBB07AA-5CE2-4E63-A0B8-D4EB6CF0EC74}F:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{E2868BEC-E9F8-4147-B06D-46DB7C0C0266}F:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy_x64.exe (.not file.) =>.Steam Games
O87 - FAEL: '{1781EB3B-A46D-4497-8FA8-94D23F8DB91B}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\SlayTheSpire\SlayTheSpire.exe =>.Steam Games
O87 - FAEL: '{2FF3FA40-E287-4F3A-9C41-286E844869BC}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\SlayTheSpire\SlayTheSpire.exe =>.Steam Games
O87 - FAEL: '{5F79E6AD-9D6B-4503-9A33-F9D804995062}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{211674AD-B9FD-4C4B-A32A-256C600DF03F}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{6CBCBE8B-A2E1-4E6D-993A-9E31E28B4B8A}' [In-None-P17-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O87 - FAEL: '{F5EEC3AF-5C63-4561-8210-A6065997BCED}' [In-None-P6-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- F:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O87 - FAEL: '{4EBE3839-C026-4568-ADDD-5241CF4CB312}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{DE125C3F-0D9A-4569-B3DB-B21CD342E568}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{D94DAC10-D70C-44DE-A5D2-F3EBC6B7DE13}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\Steam\Steam.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{5D710A87-3756-4549-A646-E6F3BB139C68}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\Steam\Steam.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{FF16A8AC-BD81-44F8-8326-928B7CB3CC15}' [In-None-P17-TRUE] .(.ASUSTeK Computer Inc. - AI Suite II.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe =>.ASUSTeK Computer Inc.®
O87 - FAEL: '{3F001A8C-887B-495D-9213-CA4A9769694F}' [In-None-P6-TRUE] .(.ASUSTeK Computer Inc. - AI Suite II.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe =>.ASUSTeK Computer Inc.®
O87 - FAEL: '{51785286-9251-4B7C-942E-7DB392131971}' [In-None-P6-TRUE] .(.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
O87 - FAEL: '{7EE65A0A-A319-4F7F-8C1A-AC4AEF52512B}' [In-None-P17-TRUE] .(.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
O87 - FAEL: '{B1DCA9AC-013F-47F5-9C78-FBE4A75145F7}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (.not file.) =>.Steam Games
O87 - FAEL: '{BB103188-CDF3-4D37-88E3-67D10B03EC41}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (.not file.) =>.Steam Games
O87 - FAEL: '{78C3DB68-7EC7-4900-A45E-0194341B3BA2}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{A18295EE-AA04-4EC5-9AC6-3CD701EDF4C2}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{AC59FE4C-1582-46D2-AD9E-BE62CA298FF6}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe (.not file.) =>.Steam Games
O87 - FAEL: '{01E9D2F5-E53A-4356-BBE8-70CF1EC97A5E}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe (.not file.) =>.Steam Games
O87 - FAEL: '{8ED3538B-2B8C-4220-9206-A3107B3B2E47}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe (.not file.) =>.Steam Games
O87 - FAEL: '{7219A9AC-22EE-4F54-B967-9282ACFDCD01}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe (.not file.) =>.Steam Games
O87 - FAEL: '{3496B576-7895-445C-991C-EC2C037CF813}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{9D6C403F-D2FE-44E4-B91F-18E109887383}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{E9BB30CB-3EEF-4356-8C54-87C5B6C2A950}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam Games
O87 - FAEL: '{B9408A47-9249-4293-BDBA-F20B0EDBD36F}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam Games
O87 - FAEL: '{0B314D11-C32C-43E4-B149-FE38EFD980AF}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{24650F17-712D-45EE-950F-27F6F17BDD31}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{C4967524-5154-4897-BCC7-9ED5D8829A64}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam Games
O87 - FAEL: '{32E6940E-B93E-454C-BD2F-477998C8A67E}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam Games
O87 - FAEL: '{7639A943-01CD-4E79-9DE6-CE4C0EACF925}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Crypt of the NecroDancer\NecroDancer.exe (.not file.) =>.Steam Games
O87 - FAEL: '{9C96D8BD-8DE3-4CD6-8213-4B3F6B913A7C}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Crypt of the NecroDancer\NecroDancer.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{9123E899-57CD-468C-B022-BF7168CC6C60}F:\program files (x86)\hearthstone\hearthstone.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\hearthstone\hearthstone.exe =>.Blizzard Entertainment, Inc.®
O87 - FAEL: 'UDP Query User{C7B03122-D63D-44B2-B54F-3F7A8F535921}F:\program files (x86)\hearthstone\hearthstone.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\hearthstone\hearthstone.exe =>.Blizzard Entertainment, Inc.®
O87 - FAEL: '{1121F6B2-C244-429B-9C6E-F7EA758943EB}' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\hearthstone\hearthstone.exe =>.Blizzard Entertainment, Inc.®
O87 - FAEL: '{58AB977D-D9A2-42DE-B2BC-A232DE756B72}' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\hearthstone\hearthstone.exe =>.Blizzard Entertainment, Inc.®
O87 - FAEL: 'TCP Query User{B48D18AF-196F-4E7F-8863-401D21365D69}F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{998FB094-3775-4664-BEF2-9E736DF1EA5F}F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{2D6E08AD-DC97-44E3-B419-09C243B02D18}F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{84ACFE52-5098-4014-BD0C-ECE78A1786C2}F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{85607BAD-86FA-4255-A750-2F3EB3C3F0C6}F:\program files (x86)\gog galaxy\games\gwent\gwent.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\gog galaxy\games\gwent\gwent.exe =>.GOG.com
O87 - FAEL: 'UDP Query User{E360E0C5-4844-405E-BCA6-B5AB67166BD4}F:\program files (x86)\gog galaxy\games\gwent\gwent.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\gog galaxy\games\gwent\gwent.exe =>.GOG.com
O87 - FAEL: '{5EE7A351-E522-4212-8C11-1C65D6964187}' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\gog galaxy\games\gwent\gwent.exe =>.GOG.com
O87 - FAEL: '{CDDC5F7D-A703-4428-B1AE-59718806DDA8}' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\gog galaxy\games\gwent\gwent.exe =>.GOG.com
O87 - FAEL: 'TCP Query User{B44553E0-11E0-4521-A5E7-098F96E794E1}C:\users\user\desktop\project.zomboid.v40.6\projectzomboid64.exe' [In-None-P6-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\projectzomboid64.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: 'UDP Query User{780ABFB9-E3DA-4706-85AC-5E43D5E71AE1}C:\users\user\desktop\project.zomboid.v40.6\projectzomboid64.exe' [In-None-P17-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\projectzomboid64.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{1720C218-517F-4B4D-9B84-ED8637C8A1FB}' [In-None-P17-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\projectzomboid64.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{7E6602F1-6F50-46EC-BF4F-F2C3E3FFE655}' [In-None-P6-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\projectzomboid64.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: 'TCP Query User{4EB5ADE8-1A0A-4CB5-9D0D-569C30B8D344}C:\users\user\desktop\project.zomboid.v40.6\jre64\bin\java.exe' [In-None-P6-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\jre64\bin\java.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: 'UDP Query User{F7A4D549-B726-4EB5-BE87-409C620032E5}C:\users\user\desktop\project.zomboid.v40.6\jre64\bin\java.exe' [In-None-P17-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\jre64\bin\java.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{32FE615E-6219-47B5-B550-0EF341011BE1}' [In-None-P17-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\jre64\bin\java.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{C0667F0C-0C4D-4C77-83F3-368CA7E930E8}' [In-None-P6-TRUE] .(...) -- C:\users\user\desktop\project.zomboid.v40.6\jre64\bin\java.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{CAD7B2D4-0A9D-4C5C-961E-5CBED2FD5DFD}' [In-None-P6-TRUE] .(.PcWinTech.com - Simple Port Tester By PcWinTech.com.) -- C:\Program Files (x86)\Simple Port Tester\spt.exe =>.PcWinTech.com
O87 - FAEL: '{D32142D2-9405-44D2-83D7-296615BBB8B5}' [Out-None-P6-TRUE] .(.PcWinTech.com - Simple Port Tester By PcWinTech.com.) -- C:\Program Files (x86)\Simple Port Tester\spt.exe =>.PcWinTech.com
O87 - FAEL: '{0E66D7EB-849B-42BA-8ED1-C5FB776B0E85}' [In-None-P6-TRUE] .(.KeepSolid Inc. - VPN Unlimited.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe =>.KeepSolid Inc.®
O87 - FAEL: '{9F23A6F2-9C68-400B-B36E-5F933BB8E3DC}' [In-None-P17-TRUE] .(.KeepSolid Inc. - VPN Unlimited.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe =>.KeepSolid Inc.®
O87 - FAEL: '{67C3369F-EA56-4566-94CE-C4675A3DBEBE}' [In-None-P6-TRUE] .(.The OpenVPN Project - OpenVPN Daemon.) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe =>.The OpenVPN Project
O87 - FAEL: '{6D479402-9EDB-4C5A-A311-37EFC14A390E}' [In-None-P17-TRUE] .(.The OpenVPN Project - OpenVPN Daemon.) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe =>.The OpenVPN Project
O87 - FAEL: '{64E875AE-9AE2-45BE-A1D6-7BC6840C3D5C}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (.not file.) =>.Steam Games
O87 - FAEL: '{78EED7C5-8C33-4798-BB5B-2F8722206AB0}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{28260DC5-957E-4FFB-A912-2EEFBEDA1401}F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{6AB43FA8-9E99-4EB6-80BD-D52E940835B4}F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe (.not file.) =>.Steam Games
O87 - FAEL: '{EAC6AB26-3B0A-48EE-8C1E-E377FD57C03F}' [In-None-P6-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe =>.Valve®
O87 - FAEL: '{8C8BED44-CEDD-45A0-BCFA-C6F52C77E34D}' [In-None-P17-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- F:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe =>.Valve®
O87 - FAEL: 'TCP Query User{F07F973E-0723-46ED-AF9A-383594BEB4FD}F:\program files (x86)\mtga\mtga.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\mtga\mtga.exe =>.Wizards of the Coast, LLC®
O87 - FAEL: 'UDP Query User{0EA0529E-8185-4353-A4FD-37FB6FD34177}F:\program files (x86)\mtga\mtga.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\mtga\mtga.exe =>.Wizards of the Coast, LLC®
O87 - FAEL: '{0A5E3EA5-3348-4EFB-9D23-53C03C2427C0}' [In-None-P6-TRUE] .(.Team17 Software Ltd - Worms Armageddon 3.7.2.2.) -- F:\Program Files (x86)\Steam\SteamApps\common\Worms Armageddon\WA.exe =>.Team17 Software Ltd
O87 - FAEL: '{0ED45DEF-381F-41BA-9948-7059B57B42AE}' [In-None-P17-TRUE] .(.Team17 Software Ltd - Worms Armageddon 3.7.2.2.) -- F:\Program Files (x86)\Steam\SteamApps\common\Worms Armageddon\WA.exe =>.Team17 Software Ltd
O87 - FAEL: 'TCP Query User{F6CADF63-15D5-442F-B688-90B43F4A33F5}C:\overwatch\overwatch.exe' [In-None-P6-TRUE] .(...) -- C:\overwatch\overwatch.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: 'UDP Query User{35D41080-F185-45EC-B749-B1B2331D0B69}C:\overwatch\overwatch.exe' [In-None-P17-TRUE] .(...) -- C:\overwatch\overwatch.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{CB78CEE6-92A8-4C3E-8EED-7DD1873C8A11}' [In-None-P6-TRUE] .(.KeepSolid Inc. - VPN Unlimited.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe =>.KeepSolid Inc.®
O87 - FAEL: '{4961383C-7D51-439D-8658-50965B799F6A}' [In-None-P17-TRUE] .(.KeepSolid Inc. - VPN Unlimited.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe =>.KeepSolid Inc.®
O87 - FAEL: '{0DC62A6E-C61D-454E-9139-B3C1C3F5950B}' [In-None-P6-TRUE] .(.The OpenVPN Project - OpenVPN Daemon.) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe =>.The OpenVPN Project
O87 - FAEL: '{DBD019ED-E926-4EBD-8F17-F07EACA60527}' [In-None-P17-TRUE] .(.The OpenVPN Project - OpenVPN Daemon.) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe =>.The OpenVPN Project
O87 - FAEL: 'TCP Query User{3C6F7B5C-B50E-4E1A-8297-4D3170489D3E}F:\program files (x86)\steam\steamapps\common\minion masters\minionmasters.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\minion masters\minionmasters.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{08292F0A-C6DB-4C48-AE38-894BFF61F6C7}F:\program files (x86)\steam\steamapps\common\minion masters\minionmasters.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\minion masters\minionmasters.exe (.not file.) =>.Steam Games
O87 - FAEL: '{62B42E54-14D2-4AA4-B90B-F57ECB2B5F4C}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{2114A5C0-3B51-4454-BEB5-F359726D2B54}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{FC7BB142-CDD6-4B7C-BA1F-362337EFABA4}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe (.not file.) =>.Steam Games
O87 - FAEL: '{8E48AB42-1E2D-4B74-9ED8-B2AB1F893124}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe (.not file.) =>.Steam Games
O87 - FAEL: '{7835FEB7-CA7B-444B-9E6A-70C652DAA75F}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe (.not file.) =>.Steam Games
O87 - FAEL: '{CFC040AA-586A-4B94-9D8B-1B6F8DD042BD}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe (.not file.) =>.Steam Games
O87 - FAEL: '{DA842AE2-638A-4ABB-A6B9-A535444690D7}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{DB8F656F-4AE4-4A83-878A-E2FD7DB71730}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe (.not file.) =>.Steam Games
O87 - FAEL: '{487A33AB-734A-4AC6-85DC-D4BBB6AB3799}' [In-None-P17-TRUE] .(.KeepSolid Inc. - VPN Unlimited.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe =>.KeepSolid Inc.®
O87 - FAEL: '{66450C57-043F-4129-9FA6-6E2D360ABF47}' [Out-None-P17-TRUE] .(.KeepSolid Inc. - VPN Unlimited.) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe =>.KeepSolid Inc.®
O87 - FAEL: 'TCP Query User{237F8B1D-E947-470F-8D02-A60171F53A13}F:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{C7A1993B-6CDF-4D52-A631-F7E625B9F7B4}F:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\total war warhammer\warhammer.exe (.not file.) =>.Steam Games
O87 - FAEL: '{EC6FE916-EBE1-480B-8715-AE1E68509409}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Total War WARHAMMER\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{CD49829C-58BB-4503-B0A6-46E46B7C7CCC}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Total War WARHAMMER\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{D3E12A7E-47CE-4402-89BB-17EB84E8CEB4}C:\program files (x86)\steam library\steamapps\common\total war warhammer\warhammer.exe' [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam library\steamapps\common\total war warhammer\warhammer.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{2E2403F5-F60C-4C9C-9566-A525B16263E3}C:\program files (x86)\steam library\steamapps\common\total war warhammer\warhammer.exe' [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam library\steamapps\common\total war warhammer\warhammer.exe (.not file.) =>.Steam Games
O87 - FAEL: '{0CC9FD94-C2C8-4CCD-854C-2EF4BA4A462A}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Total War WARHAMMER\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{594D779F-69C6-40F1-B35D-C2A25FDB9361}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Total War WARHAMMER\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{03FF55D8-5321-4E0D-9C61-BE6172E462ED}' [In-None-P6-TRUE] .(.TeamViewer GmbH - TeamViewer 13.) -- C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O87 - FAEL: '{BAE463D8-FF40-4565-B784-18BA9C5503C4}' [In-None-P17-TRUE] .(.TeamViewer GmbH - TeamViewer 13.) -- C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O87 - FAEL: '{9AE21120-5D22-4066-9D13-5B0CB4509188}' [In-None-P6-TRUE] .(.TeamViewer GmbH - TeamViewer 13.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O87 - FAEL: '{7A24BFAD-929E-4FA3-BCB1-55800CFC3AB9}' [In-None-P17-TRUE] .(.TeamViewer GmbH - TeamViewer 13.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O87 - FAEL: 'TCP Query User{C6C973FE-0932-481D-8543-F5F866367337}C:\program files (x86)\steam library\steamapps\common\total war warhammer ii\warhammer2.exe' [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam library\steamapps\common\total war warhammer ii\warhammer2.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{6049E5B8-E738-4674-B6F1-0E1E90314D27}C:\program files (x86)\steam library\steamapps\common\total war warhammer ii\warhammer2.exe' [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam library\steamapps\common\total war warhammer ii\warhammer2.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{8AD01148-3D6D-40BE-9427-486C3F9DB511}C:\programdata\oracle\java\javapath_target_594984\java.exe' [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\programdata\oracle\java\javapath_target_594984\java.exe =>.Oracle America, Inc.®
O87 - FAEL: 'UDP Query User{4B6A8653-2A79-4062-A24E-3811A572ABBE}C:\programdata\oracle\java\javapath_target_594984\java.exe' [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\programdata\oracle\java\javapath_target_594984\java.exe =>.Oracle America, Inc.®
O87 - FAEL: 'TCP Query User{4CFCDACA-E6C3-4DB7-A8C9-8F1A3FF4790B}F:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe' [In-None-P6-TRUE] .(.Epic Games, Inc. - DeadByDaylight.) -- F:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe =>.Epic Games, Inc.
O87 - FAEL: 'UDP Query User{5BBF19CD-85B0-4C4E-AF27-F9753D9DBD9A}F:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe' [In-None-P17-TRUE] .(.Epic Games, Inc. - DeadByDaylight.) -- F:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe =>.Epic Games, Inc.
O87 - FAEL: 'TCP Query User{CD3E5266-9E5C-4A88-AE2E-1090878815E4}F:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{4CD48A6D-B0B6-483F-9468-0A8B54791C74}F:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{5A10B298-A979-4229-A283-E94EFF5DC3F1}F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{05B439A9-BC12-4CEC-B5EE-A0341EDA6BB6}F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{091BFB6F-820B-4880-B45D-D92EA71ABB50}F:\overwatch\overwatch.exe' [In-None-P6-TRUE] .(...) -- F:\overwatch\overwatch.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: 'UDP Query User{36C5B862-80B1-46BA-ADFB-DCD568DA125F}F:\overwatch\overwatch.exe' [In-None-P17-TRUE] .(...) -- F:\overwatch\overwatch.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{5B0749D6-A590-4A66-9B4B-05B2861930F3}' [In-None-P6-TRUE] .(.EasyAntiCheat Ltd - EasyAntiCheat Launcher.) -- F:\Program Files (x86)\Steam\SteamApps\common\Dead by Daylight\DeadByDaylight.exe =>.EasyAntiCheat Oy®
O87 - FAEL: '{805F69D6-A68F-4526-9013-8CC44FFC7B43}' [In-None-P17-TRUE] .(.EasyAntiCheat Ltd - EasyAntiCheat Launcher.) -- F:\Program Files (x86)\Steam\SteamApps\common\Dead by Daylight\DeadByDaylight.exe =>.EasyAntiCheat Oy®
O87 - FAEL: 'TCP Query User{4A08F815-D63A-48DD-BC6E-335813C6F219}C:\program files\android\android studio\jre\bin\java.exe' [In-None-P6-TRUE] .(...) -- C:\program files\android\android studio\jre\bin\java.exe (.not file.) =>.Apache Inc.
O87 - FAEL: 'UDP Query User{19CB4119-BEBF-4E23-AE46-F165E9CEF14B}C:\program files\android\android studio\jre\bin\java.exe' [In-None-P17-TRUE] .(...) -- C:\program files\android\android studio\jre\bin\java.exe (.not file.) =>.Apache Inc.
O87 - FAEL: '{C4747569-921D-41ED-8A9F-76431FFBBDD9}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Crypt of the NecroDancer\NecroDancer.exe =>.Brace Yourself Games (Transcendsense Technologies Inc)®
O87 - FAEL: '{5E419E3A-C3E2-4D31-9FBA-F0C6677E0E87}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Crypt of the NecroDancer\NecroDancer.exe =>.Brace Yourself Games (Transcendsense Technologies Inc)®
O87 - FAEL: '{EA4FC1D2-FE68-49E9-B2B4-16999A12A03D}' [In-None-P6-TRUE] .(.Valve Software - Artifact.) -- F:\Program Files (x86)\Steam\SteamApps\common\Artifact\game\bin\win64\dcg.exe =>.Valve®
O87 - FAEL: '{DD2DA01C-8E3D-4EAD-8A99-2F6FB95058B0}' [In-None-P17-TRUE] .(.Valve Software - Artifact.) -- F:\Program Files (x86)\Steam\SteamApps\common\Artifact\game\bin\win64\dcg.exe =>.Valve®
O87 - FAEL: 'TCP Query User{863B9531-B2D7-4704-9624-7AE34EFBB708}F:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{4E79A885-A7C5-4FF8-B373-D4B50F54B808}F:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe (.not file.) =>.Steam Games
O87 - FAEL: '{53F55F50-92E7-4D20-8FE5-4D83BD41215D}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe =>.Warhorse Studios sro
O87 - FAEL: '{9A53C875-4DBD-48AC-A53A-A70904186D94}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe =>.Warhorse Studios sro
O87 - FAEL: 'TCP Query User{8AD3C4B7-3103-40E6-A316-93D631627E5D}F:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{57DDA10F-8B08-4FE1-80FB-FC2E530FE3AF}F:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe (.not file.) =>.Steam Games
O87 - FAEL: '{D39A9D3D-B34E-439E-8CDD-E07C50753EB0}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Total War WARHAMMER II\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{7B191639-6125-47B0-92F4-E501ECE4D285}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\Total War WARHAMMER II\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{368D80A0-420F-4418-938D-F60D368A4245}' [In-None-P6-TRUE] .(.Piriform Software Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe =>.Piriform Software Ltd®
O87 - FAEL: '{A214F61D-25B0-4987-BE83-56D9CCFA595E}' [In-None-P17-TRUE] .(.Piriform Software Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe =>.Piriform Software Ltd®
O87 - FAEL: '{E3CC47A5-FA45-4B53-AD6E-F487E2B67464}' [In-None-P6-TRUE] .(.Paradox Interactive - CK2.) -- F:\Program Files (x86)\Steam\SteamApps\common\Crusader Kings II\CK2game.exe =>.Paradox Interactive
O87 - FAEL: '{B753BE27-BF2D-4206-B290-F8F962029BA5}' [In-None-P17-TRUE] .(.Paradox Interactive - CK2.) -- F:\Program Files (x86)\Steam\SteamApps\common\Crusader Kings II\CK2game.exe =>.Paradox Interactive
O87 - FAEL: '{9CDE819C-0B1C-4EF2-8518-B790FF82CF41}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: '{97BF55C0-0222-490E-8334-F622E84F35F2}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam Library\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{85588907-780D-4E95-9676-BF82F6BA9228}F:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe' [In-None-P6-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe (.not file.) =>.Steam Games
O87 - FAEL: 'UDP Query User{6FAFD5C8-5C00-4B70-A3B1-0D1EE7818E8A}F:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe' [In-None-P17-TRUE] .(...) -- F:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe (.not file.) =>.Steam Games
O87 - FAEL: 'TCP Query User{42A47044-0B9E-4D03-BEE5-9D94A5EABF74}F:\apex\apex\r5apex.exe' [In-None-P6-TRUE] .(...) -- F:\apex\apex\r5apex.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: 'UDP Query User{576BB589-3AA3-4652-9E05-61003A590564}F:\apex\apex\r5apex.exe' [In-None-P17-TRUE] .(...) -- F:\apex\apex\r5apex.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: '{A3078D32-80C5-4487-A4E9-0FEAA745219C}' [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (.not file.) =>.Steam Games
O87 - FAEL: '{824D5042-80DB-432C-B3C6-36410DD5392B}' [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (.not file.) =>.Steam Games
O87 - FAEL: '{2D7BBEFA-B22D-4E9F-86FF-DF53362BF177}' [In-None-P6-TRUE] .(.Bethesda Softworks - The Elder Scrolls V: Skyrim Special Edition.) -- F:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe =>.Bethesda Softworks
O87 - FAEL: '{88356294-4AB3-4BEE-B0BD-62158D348CCD}' [In-None-P17-TRUE] .(.Bethesda Softworks - The Elder Scrolls V: Skyrim Special Edition.) -- F:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe =>.Bethesda Softworks
O87 - FAEL: 'TCP Query User{C2121589-B452-42CE-A38F-1D93EB7549B2}C:\program files (x86)\byond\bin\byond.exe' [In-None-P6-TRUE] .(...) -- C:\program files (x86)\byond\bin\byond.exe
O87 - FAEL: 'UDP Query User{5E28657D-72CB-452D-BA00-7708811D1739}C:\program files (x86)\byond\bin\byond.exe' [In-None-P17-TRUE] .(...) -- C:\program files (x86)\byond\bin\byond.exe
O87 - FAEL: '{01D9A3EC-C0C4-4525-9F87-1C8577422907}' [In-None-P6-TRUE] .(.Epic Games, Inc. - UE4Game.) -- C:\Program Files (x86)\Steam Library\steamapps\common\Mordhau\Mordhau.exe =>.Epic Games, Inc.
O87 - FAEL: '{C1E413D1-97C9-4475-AA77-4DCB72DA6C6E}' [In-None-P17-TRUE] .(.Epic Games, Inc. - UE4Game.) -- C:\Program Files (x86)\Steam Library\steamapps\common\Mordhau\Mordhau.exe =>.Epic Games, Inc.
O87 - FAEL: '{29B9C732-2F4D-4655-9ADB-60018EF91155}' [In-None-P17-TRUE] .(.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O87 - FAEL: '{AF6C101F-BDFC-45BE-9FEF-A2D72EF654BC}' [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- F:\Program Files (x86)\Steam\SteamApps\common\SlayTheSpire\jre\bin\javaw.exe =>.Oracle America, Inc.®
O87 - FAEL: '{FE12C7B1-5885-4E40-A25B-398BC3B5ABC8}' [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- F:\Program Files (x86)\Steam\SteamApps\common\SlayTheSpire\jre\bin\javaw.exe =>.Oracle America, Inc.®
O87 - FAEL: '{63B7B8FD-25E6-4882-A37E-C9CA976AC58E}' [In-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{0885FC69-22AE-471B-964E-484E0E7B7E67}' [In-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{BFACF32D-60A6-4686-894F-0650F976A426}' [In-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{9197DE3E-8F57-458D-86B8-31F0160BE1D3}' [In-None-P17-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{1060E321-D44A-40F6-81E1-2717497CFF53}' [In-None-P17-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{8486E5BA-E745-40CC-8B3F-C0911AC6BF65}' [In-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{1F58720D-8E4A-448E-8EEE-D0712BD21058}' [Out-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{902D6643-E69D-4827-A9D5-9599D5C8EA6F}' [Out-None-P17-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.109.383.0_x86__zpdnekdrzrea0\Spotify.exe =>.Spotify AB®
O87 - FAEL: '{6623EB50-CB1D-412F-8646-A9EC77B09A2A}' [In-None-P17-TRUE] .(.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
O87 - FAEL: '{C2C5D1E7-1D42-4906-9ABF-021DC48153D2}' [In-None-P17-TRUE] .(.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
O87 - FAEL: '{36CDCA9A-0A6C-4A76-B502-78E28A54803A}' [In-None-P6-TRUE] .(.NVIDIA Corporation - NVIDIA Streamer Server Component.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe =>.NVIDIA Corporation®
O87 - FAEL: '{97F45F33-D2B6-442A-A958-84E4622968C2}' [In-None-P17-TRUE] .(.NVIDIA Corporation - NVIDIA Streamer Server Component.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe =>.NVIDIA Corporation®
O87 - FAEL: '{163AF06F-7A52-461A-B6B5-E0F8ADEDACD1}' [In-None-P6-TRUE] .(.ASUSTeK Computer Inc. - ASUS WiFi GO! Server.) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe =>.ASUSTeK Computer Inc.®
O87 - FAEL: '{0882CECE-EF05-4C63-B049-F40254712A1C}' [In-None-P17-TRUE] .(.ASUSTeK Computer Inc. - ASUS WiFi GO! Server.) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe =>.ASUSTeK Computer Inc.®
O87 - FAEL: '{E813655F-3502-47AE-B8B8-ECB9358E6AA7}' [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe =>.ASUSTeK Computer Inc.®
O87 - FAEL: '{0464CD74-E8E5-47D6-8E26-EF0760224295}' [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\ASUSDMS.exe =>.ASUSTeK Computer Inc.®

---\ Product Upgrade Codes (65) - 1s
O90 - PUC: '000061090900E0400000000000F01FEC' [HKLM] . (.Microsoft DCF MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109110000000000000000F01FEC' [HKLM] . (.Microsoft Office Professional Plus 2016.) =>.Microsoft Corporation
O90 - PUC: '000061091A00E0400000000000F01FEC' [HKLM] . (.Microsoft OneNote MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '000061091E00E0400000000000F01FEC' [HKLM] . (.Microsoft Office OSM MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '000061092E00E0400000000000F01FEC' [HKLM] . (.Microsoft Office OSM UX MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '000061094400E0400000000000F01FEC' [HKLM] . (.Microsoft InfoPath MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '000061095100E0400000000000F01FEC' [HKLM] . (.Microsoft Access MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '000061096100E0400000000000F01FEC' [HKLM] . (.Microsoft Excel MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '000061098100E0400000000000F01FEC' [HKLM] . (.Microsoft PowerPoint MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '000061099100E0400000000000F01FEC' [HKLM] . (.Microsoft Publisher MUI (Hungarian) 2016.) =>.bl.org
O90 - PUC: '00006109A100E0400000000000F01FEC' [HKLM] . (.Microsoft Outlook MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109A20000000100000000F01FEC' [HKLM] . (.Microsoft Office 64-bit Components 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109A200E0400100000000F01FEC' [HKLM] . (.Microsoft Office Shared 64-bit MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109AB00E0400000000000F01FEC' [HKLM] . (.Microsoft Groove MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109B100E0400000000000F01FEC' [HKLM] . (.Microsoft Word MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109B210E0400000000000F01FEC' [HKLM] . (.Microsoft Skype for Business MUI (Hungarian) 2016.) =>.Skype Technologies
O90 - PUC: '00006109C200E0400000000000F01FEC' [HKLM] . (.Microsoft Office Proofing (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109E600E0400000000000F01FEC' [HKLM] . (.Microsoft Office Shared MUI (Hungarian) 2016.) =>.Microsoft Corporation
O90 - PUC: '00006109F10070400000000000F01FEC' [HKLM] . (.Microsoft Office Korrekturhilfen 2016 – Deutsch.) -- C:\WINDOWS\Installer\{90160000-001F-0407-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation
O90 - PUC: '00006109F10090400000000000F01FEC' [HKLM] . (.Microsoft Office Proofing Tools 2016 - English.) -- C:\WINDOWS\Installer\{90160000-001F-0409-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation
O90 - PUC: '00006109F100E0400000000000F01FEC' [HKLM] . (.Microsoft Office Nyelvi ellenőrző eszközök 2016 – magyar.) -- C:\WINDOWS\Installer\{90160000-001F-040E-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation
O90 - PUC: '1926E8D15D0BCE53481466615F760A7F' [HKLM] . (.Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219.) =>.bl.org
O90 - PUC: '1A57DEF7C006B493386717E2A288162F' [HKLM] . (.Microsoft Visual C++ 2017 x86 Additional Runtime - 14.12.25810.) =>.Microsoft Corporation
O90 - PUC: '1D5E3C0FEDA1E123187686FED06E995A' [HKLM] . (.Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.) =>.bl.org
O90 - PUC: '21EE4A31AE32173319EEFE3BD6FDFFE3' [HKLM] . (.Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005.) =>.Microsoft Corporation
O90 - PUC: '22BEFC8F7E2A1793E9ADB411DEFE1C58' [HKLM] . (.Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005.) =>.Microsoft Corporation
O90 - PUC: '4EA42A62D9304AC4784BF2238110160F' [HKLM] . (.Java 8 Update 161.) -- C:\Program Files (x86)\Java\jre1.8.0_161\\bin\javaws.exe =>.Sun Microsystems
O90 - PUC: '4EA42A62D9304AC4784BF238120712FF' [HKLM] . (.Java 7 Update 21.) =>.Sun Microsystems
O90 - PUC: '6273C6FD35E7277479369E1F7467F915' [HKLM] . (.Asmedia ASM106x SATA Host Controller Driver.) -- C:\Windows\Installer\{DF6C3726-7E53-4772-9763-E9F147769F51}\ARPPRODUCTICON.exe =>.ASMedia Technology Inc
O90 - PUC: '62DBF9290209B993A9A757D1160F9B24' [HKLM] . (.Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005.) =>.Microsoft Corporation
O90 - PUC: '66704617F7518ED44BF5967BB6F0F5EC' [HKLM] . (.calibre.) -- C:\WINDOWS\Installer\{71640766-157F-4DE8-B45F-69B76B0F5FCE}\main_icon =>.Kovid Goyal
O90 - PUC: '67D6ECF5CD5FBA732B8B22BAC8DE1B4D' [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161.) =>.bl.org
O90 - PUC: '68AB67CA408033019195008142136144' [HKLM] . (.Adobe Refresh Manager.) -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824311644}\ARPPRODUCTICON.exe =>.Western Digital Technologies
O90 - PUC: '68AB67CA7DA78301B744CAF070E41400' [HKLM] . (.Adobe Acrobat Reader DC - Hungarian.) -- C:\Windows\Installer\{AC76BA86-7AD7-1038-7B44-AC0F074E4100}\SC_Reader.ico =>.Adobe Inc.
O90 - PUC: '6E815EB96CCE9A53884E7857C57002F0' [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161.) =>.bl.org
O90 - PUC: '6E8D947A316B3EB3F8F540C548BE2AB9' [HKLM] . (.Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005.) =>.Microsoft Corporation
O90 - PUC: '70AF0CCEE368CB44B8D1AD229FE6F57B' [HKLM] . (.LogMeIn Hamachi.) =>.LogMeIn Entreprise
O90 - PUC: '76B6936749C5807409FB9E0007AC7504' [HKLM] . (.Microsoft Mouse and Keyboard Center.) -- C:\WINDOWS\Installer\{76396B67-5C94-4708-90BF-E90070CA5740}\DeviceCenter.ico =>.Microsoft Corporation
O90 - PUC: '770EC1A51117D7C45A5C2E014D6BA88D' [HKLM] . (.AMD Ryzen Master.) -- C:\WINDOWS\Installer\{5A1CE077-7111-4C7D-A5C5-E210D4B68AD8}\ARPPRODUCTICON.exe =>.Advanced Micro Devices Inc
O90 - PUC: '7A948DC21A686A438B9F7DF2B5129AEA' [HKLM] . (.Microsoft Visual C++ 2017 x64 Additional Runtime - 14.12.25810.) =>.Microsoft Corporation
O90 - PUC: '7AFDFA3032A71B14AA2C83899511723D' [HKLM] . (.Dauntless.) -- C:\WINDOWS\Installer\{03AFDFA7-7A23-41B1-AAC2-3898591127D3}\ARPPRODUCTICON.exe
O90 - PUC: '7C9F8B73BF303523781852719CD9C700' [HKLM] . (.Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: '84b9c17023c712640acaf308593282f8' [HKLM] . (.Microsoft Visual C++ 2005 Redistributable (x64).) =>.bl.org
O90 - PUC: '93B0BF4E199C7EE459DDA1A187753DD3' [HKLM] . (.Asmedia USB Host Controller Driver.) -- C:\Windows\Installer\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}\ARPPRODUCTICON.exe =>.ASMedia Technology Inc
O90 - PUC: '96F071321C0420728110000010000000' [HKLM] . (.7-Zip 18.01 (x64 edition).) =>.Igor Pavlov
O90 - PUC: 'A089CE062ADB6BC44A720BA745894BAC' [HKLM] . (.Google Update Helper.) =>.Google Inc.
O90 - PUC: 'AECFCA3CF042CCD40A3CDD55EF6E3C2C' [HKLM] . (.Update for Windows 10 for x64-based Systems (KB4023057).) =>.Microsoft Corporation
O90 - PUC: 'b25099274a207264182f8181add555d0' [HKLM] . (.Microsoft Visual C++ 2005 Redistributable.) =>.bl.org
O90 - PUC: 'B49B480DE8A31B54DB7A931EAD896078' [HKLM] . (.MTG Arena.) -- C:\WINDOWS\Installer\{D084B94B-3A8E-45B1-BDA7-39E1DA980687}\Icon_1.exe
O90 - PUC: 'BE25982827556663C89A00B0C67E3905' [HKLM] . (.Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.12.25810.) =>.Microsoft Corporation
O90 - PUC: 'C025571B2A687A53689168CD7369889B' [HKLM] . (.Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: 'C3AEB2FCAE628F23AAB933F1E743AB79' [HKLM] . (.Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: 'CDA2E99C7430E6336A301F99B2905D28' [HKLM] . (.Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.12.25810.) =>.Microsoft Corporation
O90 - PUC: 'D20352A90C039D93DBF6126ECE614057' [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17.) =>.bl.org
O90 - PUC: 'DC8A59DBF9D1DA5389A1E3975220E6BB' [HKLM] . (.Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: 'E5070DFEB8954D64D8B554933471468B' [HKLM] . (.Balanced.) -- C:\WINDOWS\Installer\{EFD0705E-598B-46D4-8D5B-4539431764B8}\ARPPRODUCTICON.exe =>.Adobe Inc.
O90 - PUC: 'EDE8C96D5CBBB634E8E05C6A3D11FCF4' [HKLM] . (.Microsoft XNA Framework Redistributable 4.0 Refresh.) -- C:\WINDOWS\Installer\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}\ProductIcon =>.bl.org
O90 - PUC: 'F0C9304F1C4E5095E9D7DD8ADE3E56CB' [HKLM] . (.Java(TM) SE Development Kit 11.0.1 (64-bit).) -- C:\Program Files\Java\jdk-11.0.1\\bin\java.exe =>.Sun Microsystems
O90 - PUC: 'F60730A4A66673047777F5728467D401' [HKLM] . (.Java Auto Updater.) =>.Sun Microsystems
O90 - PUC: 'F8385C66458B55A4986E6A3178744AFD' [HKLM] . (.Epic Games Launcher Prerequisites (x64).) -- C:\Windows\Installer\{66C5838F-B854-4A55-89E6-A6138747A4DF}\UnrealEngineLauncher.ico =>.Legitimate
O90 - PUC: 'FD5EFB39E677F6346839FDF1270C3E1C' [HKLM] . (.Epic Games Launcher.) -- C:\Windows\Installer\{93BFE5DF-776E-436F-8693-DF1F72C0E3C1}\Installer.ico =>.Epic Games
O90 - PUC: '254308F1F897BF945ADDF925F707714E' [HKCU] . (.GoTo Opener.) -- %APPDATA%\Microsoft\Installer\{1F803452-798F-49FB-A5DD-9F527F7017E4}\icon.ico =>.LogMeIn Entreprise
O90 - PUC: '33DCD5F793012B3C59836B546BB5AB36' [HKCU] . (.OEM Application Profile.) -- %APPDATA%\Microsoft\Installer\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}\ARPPRODUCTICON.exe =>.Advanced Micro Devices Inc
O90 - PUC: '254308F1F897BF945ADDF925F707714E' [HKU] . (.GoTo Opener.) -- %APPDATA%\Microsoft\Installer\{1F803452-798F-49FB-A5DD-9F527F7017E4}\icon.ico =>.LogMeIn Entreprise
O90 - PUC: '33DCD5F793012B3C59836B546BB5AB36' [HKU] . (.OEM Application Profile.) -- %APPDATA%\Microsoft\Installer\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}\ARPPRODUCTICON.exe =>.Advanced Micro Devices Inc

---\ Windows Installer Scan (37) - 50s
[MD5.0F2AE29610864A8487889E1EEA69C07A] [WIS][2018/12/08 00:22:08] (.Oracle Corporation - Java(TM) SE Development Kit 11.0.1 (64-bit).) -- C:\WINDOWS\Installer\12fad9c.msi [157143040] =>.Oracle Corporation
[MD5.39C3132D0E66CB358719ABE4725919E0] [WIS][2018/01/24 19:32:27] (.Oracle - Java SE Runtime Environment 7.0.) -- C:\WINDOWS\Installer\1338aa.msi [887296] =>.Oracle
[MD5.BF592B056BDB8105559F2A80389ABA0B] [WIS][2019/04/03 12:52:00] (.Wizards of the Coast - MTG Arena.) -- C:\WINDOWS\Installer\13bb40c.msi [3976192] =>.Wizards of the Coast
[MD5.F52386501B26231F5E99F363298C57D4] [WIS][2018/03/04 20:01:20] (.LogMeIn, Inc. - GoTo Opener 1.0.0.473.) -- C:\WINDOWS\Installer\1954980.msi [118784] =>.LogMeIn, Inc.
[MD5.17F74E5251853FC0F8D3CE5AE28AD9DA] [WIS][2019/01/03 16:32:12] (.Advanced Micro Devices, Inc. - AMD Ryzen Master.) -- C:\WINDOWS\Installer\1bf451.msi [52445696] =>.Advanced Micro Devices, Inc.
[MD5.94E752CF7EB9999AAD359AC251914DEE] [WIS][2019/04/04 05:32:02] (.LogMeIn, Inc. - LogMeIn Hamachi Installer.) -- C:\WINDOWS\Installer\22231.msi [9142272] =>.LogMeIn, Inc.
[MD5.259A0C643C4BDECE6D01908F759F0178] [WIS][2018/07/11 13:04:52] (.Phoenix Labs - Dauntless.) -- C:\WINDOWS\Installer\241388e3.msi [60349952] =>.Phoenix Labs
[MD5.202B7EC9D41CDA7ECC9A5DB38301AB9F] [WIS][2019/05/15 16:12:27] (.Google LLC - Google Update Helper.) -- C:\WINDOWS\Installer\83f6b.msi [40960] =>.Google LLC
[MD5.37A0C7A58DACB06F2074A4593B9750C7] [WIS][2018/01/24 19:21:04] (.Oracle Corporation - Java SE Runtime Environment 8 Update 161.) -- C:\WINDOWS\Installer\8ccc2.msi [61681664] =>.Oracle Corporation
[MD5.1CE69AAB7A515676FA76AD9072411664] [WIS][2018/01/24 19:20:54] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\8ccc6.msi [765952] =>.Oracle Corporation
[MD5.CA0294C7B4650B1D6F8BFA146FE95D44] [WIS][2015/03/17 10:41:48] (.Adobe Systems Incorporated.) -- C:\WINDOWS\Installer\8cd4b.msi [2801664] =>.Adobe Systems Incorporated
[MD5.1AFC4C8781D64BC6A800C37C1BF3B6F9] [WIS][2018/03/09 22:47:05] (.Igor Pavlov - 7-Zip (x64 edition) Package.) -- C:\WINDOWS\Installer\8dfee9.msi [1709056] =>.Igor Pavlov
[MD5.A5D5B4055E0879974B4F30CD2E13C657] [WIS][2016/08/18 22:51:54] (.Advanced Micro Devices, Inc. - OEM Application Profile.) -- C:\WINDOWS\Installer\9627e.msi [1081856] =>.Advanced Micro Devices, Inc.
[MD5.EC92033C38C276EA431E5DB2D8A0B5D4] [WIS][2017/04/12 17:07:07] (.Advanced Micro Devices, Inc. - Balanced.) -- C:\WINDOWS\Installer\96286.msi [1553408] =>.Advanced Micro Devices, Inc.
[MD5.DAEF9610629678DE57C4567339F6E52C] [WIS][2019/02/12 11:53:11] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\WINDOWS\Installer\b9e7b.msi [889856] =>.Adobe Systems Incorporated
[MD5.7C89755C18F46136D533B33B8D8E7F70] [WIS][2018/09/15 11:05:04] (.Kovid Goyal - calibre Installer.) -- C:\WINDOWS\Installer\c52761.msi [64929792] =>.Kovid Goyal
[MD5.2F1A04407A93F20F4FD8E05F01D2FF0E] [WIS][2018/05/20 10:29:02] (.Epic Games, Inc. - Epic Games Launcher.) -- C:\WINDOWS\Installer\da5a04.msi [32362496] =>.Epic Games, Inc.
[MD5.7873ACD3BFA53B19469E6AB5606C80FE] [WIS][2015/11/19 10:56:58] (.Epic Games, Inc. - Epic Games Launcher Prerequisites (x64).) -- C:\WINDOWS\Installer\da5a0b.msi [11919360] =>.Epic Games, Inc.
[MD5.A534C16ED3BDCF504274CAE4DB6BA450] [WIS][2018/01/24 19:28:09] (.Asmedia Technology - Asmedia ASM106x SATA Host Controller Driver.) -- C:\WINDOWS\Installer\f6452.msi [3401216] =>.Asmedia Technology
[MD5.C12143F513895064B9B74CAD35CDCA7B] [WIS][2018/01/24 19:28:43] (.Asmedia Technology - Asmedia USB Host Controller Driver.) -- C:\WINDOWS\Installer\f6458.msi [6802780] =>.Asmedia Technology
[MD5.87BDB58F9E5B4EFC3B72EB9AD83EDE24] [WIS][2018/11/13 06:24:12] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\1050b.msp [3485696] =>.Adobe Systems, Incorporated
[MD5.E05CA6506E1D5ECE25152018D3FF00CE] [WIS][2018/05/12 08:05:37] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\1c1c5137.msp [7094272] =>.Adobe Systems, Incorporated
[MD5.A9095FC652E0273E10F1D9481C59067D] [WIS][2018/02/23 15:25:19] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\1f687a27.msp [1343488] =>.Adobe Systems, Incorporated
[MD5.2F159BBD3479AEB0C168488067503723] [WIS][2018/07/09 07:47:48] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\2413896b.msp [27000832] =>.Adobe Systems, Incorporated
[MD5.0F461CA2CD45767BC8254CD491025B19] [WIS][2015/10/02 23:19:07] (. - Customization Patch.) -- C:\WINDOWS\Installer\26391a57.msp [1859584]
[MD5.158DB85A7E9649803519367B8E1A7CD7] [WIS][2019/02/11 08:36:53] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\323bf.msp [8757248] =>.Adobe Systems, Incorporated
[MD5.B02CDF597655C7CAD392D0404975E9AB] [WIS][2018/10/01 11:41:46] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\37bf7.msp [194531328] =>.Adobe Systems, Incorporated
[MD5.FC195281214C157DAC91C0B02FA35554] [WIS][2018/12/10 08:52:51] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\41983.msp [44044288] =>.Adobe Systems, Incorporated
[MD5.894F8CA42DB45DFDB94D579984B5B89A] [WIS][2018/09/18 10:10:59] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\621e4.msp [4706304] =>.Adobe Systems, Incorporated
[MD5.E7BD518BB2F9A3A86C8AD97881120EBB] [WIS][2018/10/08 13:11:44] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\7b28faf.msp [2174976] =>.Adobe Systems, Incorporated
[MD5.D65FA317AC2DF76CBE3F765A60BD8809] [WIS][2018/08/13 08:19:45] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\8887397.msp [1441792] =>.Adobe Systems, Incorporated
[MD5.AD68D39EDFB11EFC6F9808DD3B80680A] [WIS][2017/11/05 00:36:53] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\8cd4c.msp [102899712] =>.SUP.Obsolete.Adobe
[MD5.26712DE883E87BB94D42E4EEA32B7E9E] [WIS][2019/02/20 14:28:20] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\8f032.msp [1986560] =>.Adobe Systems, Incorporated
[MD5.A58EAEAA86B7D4FA1891CA2EEDDCA3DD] [WIS][2018/02/12 16:26:08] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\ac9a088.msp [103362560] =>.Adobe Systems, Incorporated
[MD5.3617A09ABC822D955214EBE86A991CF3] [WIS][2017/11/29 12:42:28] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\c0276.msp [1355776] =>.SUP.Obsolete.Adobe
[MD5.7DF2196737D027C989EEE176078B4E7F] [WIS][2018/10/22 15:33:19] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\c623189.msp [2584576] =>.Adobe Systems, Incorporated
[MD5.79254CC5CD24307A97C66DE7D7AD4B08] [WIS][2019/01/03 11:17:04] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\dbf96.msp [1720320] =>.Adobe Systems, Incorporated

---\ FEATURE CONTROLE. (875) - 4s
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ACTIVEX_REPURPOSEDETECTION]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:infopath.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_INPUT_PROMPTS]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_INPUT_PROMPTS]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:productAgentUI.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:hamachi-2-ui.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPfewgsrv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGUI.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGuiIT.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLgPad.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLOGON.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:Scale_for_R3.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:ieuser.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_TELNET_PROTOCOL]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_TELNET_PROTOCOL]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK]:YahooMusicEngine.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DOCUMENT_COMPATIBLE_MODE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:devenv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:dexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:helppane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FEEDS]:msfeedssync.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Common.DBConnection64.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_XML_PROLOG]:msiexec.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:cs.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:waol.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:wm.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_INTERNET_SHELL_FOLDERS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DISPPARAMS]:helppane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DLCONTROL_BEHAVIORS]:wlmail.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:mshta.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:eek:utlook.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:sidebar.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RELEASE_CALLBACK_ON_STOP_BINDING]:communicator.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:winmail.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_OBJECT_DATA_ATTRIBUTE]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Common.DBConnection64.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Common.ShowHelp.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Common.DBConnection64.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHIM_MSHELP_COMBINE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHIM_MSHELP_COMBINE]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_APP_PROTOCOL_WARN_DIALOG]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SSLUX]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:eek:utlook.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:winmail.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Common.DBConnection64.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:excel.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:infopath.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:powerpnt.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:winword.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Common.DBConnection64.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VIEWLINKEDWEBOC_IS_UNSAFE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD]:msn.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:ACCICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSACCESS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Common.DBConnection.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:presentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:VSTOInstaller.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OSE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:Setup.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ODeploy.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:Oarpmany.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OSPPREARM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:LICLUA.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:FLTLDR.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOSQM.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:CMigrate.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:protocolhandler.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:CSISYNCCLIENT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:CLVIEW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:NAMECONTROLSERVER.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:DW20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:DWTRIG20.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOHTMED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOXMLED.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:msotd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:msoev.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOSYNC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOUC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OLicenseHeartbeat.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:FIRSTRUN.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:SETLANG.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:GRAPH.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSQRY32.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:SmartTagInstall.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:SQLDumper.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:EXCEL.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:XLICONS.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:Microsoft.Mashup.Container.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:Microsoft.Mashup.Container.NetFX40.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:Microsoft.Mashup.Container.NetFX45.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:excelcnv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:pOWERPNT.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:pPTICO.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:misc.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOSREC.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ORGCHART.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:pDFREFLOW.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:WINWORD.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:WORDICON.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ACCICONS.EXE =>.Legitimate

---\ Additional Scan (O88) (271) - 6s
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
C:\WINDOWS\Installer\8cd4c.msp =>.SUP.Obsolete.Adobe
C:\WINDOWS\Installer\c0276.msp =>.SUP.Obsolete.Adobe
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\018 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\126 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\127 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\128 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\129 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\130 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\131 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\132 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\133 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\134 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\135 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\136 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\137 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\138 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\139 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\140 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\141 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\142 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\143 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\144 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\145 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\146 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\147 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\148 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\149 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\150 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\151 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\152 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\153 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\154 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\155 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\156 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\157 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\158 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\159 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\160 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\161 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\162 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\163 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\164 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\165 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\166 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\167 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\168 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\169 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\170 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\171 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\172 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\173 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\174 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\175 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\176 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\177 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\178 =>.SUP.Temporary.Chrome
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\179 =>.SUP.Temporary.Chrome
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileSyncConfig.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\ChromeSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\FileSyncConfig.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\JavaSetup8u161.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\7z1800-x64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\readerdc_hu_xa_cra_install.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Realtek_Audio_V7848_20160617\AsusSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\vlc-2.2.8-win32.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\ASMEDIA_Win7_81_10-Ver3160\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Asmedia_USB3_V116351\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\Matrix_1.03.04\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\OneDriveSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\Ai Charger+\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\AsusUpdate\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\AsusUpdate\AppSetup\AsUpIo\AsUpIoIns.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\DIGI+ Power Control\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\EPU\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\FanXpert\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\MyLogo\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\MyLogo\AppSetup\AsUpIo\AsUpIoIns.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\Network iControl\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\Probe_II\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\Remote GO!\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\System Information\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\TurboV EVO\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\USB 3.0 Boost\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\USB 3.0 Boost\AppSetup\USBDriver\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\USB 3.0 Boost\AppSetup\UASDriver\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\USB BIOS Flashback\AppSetup\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AISuite_II_V20401_M5A97_EVO_R2_XPVistaWin7-8-81-10\USB BIOS Flashback\AppSetup\AsUpIo\AsUpIoIns.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\InstallShield Installation Information\{F178DD09-E45A-4C29-979A-1EEAEFC35A5F}\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\InstallShield Installation Information\{BEE4C824-BEA3-454F-BC9B-A22BFA52E458}\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\InstallShield Installation Information\{5153DBF7-58C5-4C3F-A648-6EA91089F851}\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\InstallShield Installation Information\{36AC4397-6287-4075-A4FB-66A0D81F0A87}\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\aida64extreme595\aida64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Unigine_Heaven-4.0.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\RealTemp_370\RealTemp.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\RealTemp_370\RealTempGT.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Core-Temp-setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\Peti\AppData\Local\Temp\GUM39DA.tmp\GoogleUpdateSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Google\Chrome\Application\63.0.3239.132\Installer\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\uTorrent.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\390.77-desktop-win10-64bit-international-whql.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\DTLite1050-0221.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Install_ESO.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\DAEMON Tools Lite\DTLauncher.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\MTGAInstaller.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\UserBenchMark.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\setup_galaxy_1.2.37.7.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Git-2.16.2-64-bit.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\GPU-Z.2.8.0.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\avast_free_antivirus_setup_online.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\AVAST Software\Avast\AvastUI.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\ProgramData\NVIDIA Corporation\Downloader\9ea5f785c6c51bd4074453f93cd9d725\GeForce_Experience_Update_v3.13.1.30_Official_8540CC.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\GPU-Z.2.8.0 (1).exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Unigine_Heaven-4.0 (1).exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Unigine_Valley-1.0.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\190a6581-f7f5-46cc-9c7a-24badcc2e780\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\winrar-x64-550hu.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\d7fa6de1-daeb-41dc-a7af-7a4afc75b031\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\cpu-z_1.85-en.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\DriverEasy_Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\radeon-software-adrenalin-18.4.1-minimalsetup-180426_web.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Easeware\DriverEasy\unins000.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\MSI\Live Update\unins000.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\UserBenchMark (1).exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\TeamViewer_Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Far.Cry.Primal.REPACK-KaOs\Install.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\ProgramData\NVIDIA Corporation\Downloader\641ce1481194bca086021343e4eaeca8\GeForce_Experience_Update_v3.14.0.139_Official_F5B5E1.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\UserBenchMark (2).exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\prime95.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\InstallRealmPTS.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\OriginThinSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\7zS88254F36\GenericSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Hearthstone-Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\osu!install.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\7zS474E597D\GenericSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Discord\Update1.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\7zS8CEE1E6F\GenericSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\7zS07C12D5A\GenericSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\7zSCF6B8385\GenericSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\7 Days To Die Alpha 16.4 HUN\7 Days To Die Alpha 16.4 HUN.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\Common Files\Overwolf\0.116.2.23\OverwolfHelper.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\Common Files\Overwolf\0.116.2.23\OverwolfHelper64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.83.318.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.83.318.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.83.318.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\InstallEnglishVer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\Survivors Viy\Viy new One English Multiplayer 2.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\HDT-Installer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.84.344.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.84.344.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\setup_gwent_1.2.44.30_en-US.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\05b3b87f-172e-4bb6-94b9-ac868b3ff80b\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\bitdefender_online.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Gw2Setup-64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\RarSFX1\bddeploy.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\DauntlessSetup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Desktop\Project.Zomboid.v40.6\ProjectZomboid64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\simple_port_tester_setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\left4dead2\SFK Standalone 10.1.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\left4dead2\left4dead2.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\left4dead2\L4D2Launcher\SFK Server Launcher.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\left4dead2\L4D2Launcher\SFK Avatar Installer\SFK Avatar Installer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.85.257.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.85.257.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.85.259.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.85.259.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.86.337.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\MTGA\MtgaLauncher.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Adobe\Adobe Photoshop CC 2018\Photoshop.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.87.491.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\VPN_Unlimited_v4.24.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.88.353.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.89.313.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.90.268.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\VPN Unlimited\vpn_unlimited_4.25.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\VPN Unlimited\vpn_unlimited_5.0.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Overwatch\Overwatch Launcher.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\ProgramData\NVIDIA Corporation\Downloader\PostProcessing\GFE\7b79447f02e83b50c6a1719c740616a7\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Desktop\titan-launcher.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\PokerStarsInstallEU.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\PokerStars.EU\PokerStarsUninstall.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Microsoft.Office.2016.Professional.Plus.32bit.VL.Hun.2018.September-fatebringer\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\android-studio-ide-181.5056338-windows.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Memu-Setup-5.6.2.1.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Microvirt\MEmu\MEmuConsole.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Android\Android Studio\bin\studio64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Opera_Mobile_Emulator_12.1_Windows.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.93.244.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayService.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\MouseKeyboardCenter_64bit_ENG_10.4.0.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\MouseKeyboardCenter_64bit_ENG_10.4.0 (1).exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Desktop\Új mappa (2)\DRIVER\Setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Desktop\Új mappa (2)\DRIVER\sx64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.94.262.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\standaloneflashplayer_setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.94.262.0_x86__zpdnekdrzrea0\Spotify.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\netbeans-8.2-javase-windows.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\jdk-11.0.1_windows-x64_bin.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\NetBeans 8.2\bin\netbeans64.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AMD-Ryzen-Master.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\AMD-Ryzen-Master-UI.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\hwmonitor_1.38.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\CPUID\HWMonitor\HWMonitor.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Common FilesEAInstaller\Battlefield 1\Cleanup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\CPUID\HWMonitor\unins000.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Temp\RarSFX0\agent_launcher.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Ubisoft Game Launcher\Uplay.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\ccsetup551.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\SimBro Ver. 2.7\simbro.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.99.250.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Ubisoft Game Launcher\UplayService.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Honey Select [FitGirl Repack]\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Honey Select EMF Patch 0.4.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\ApexLegendsInstaller.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Heaven Benchmark 4.0\unins000.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\PTrainer_2.03-win\Princess Trainer GE.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Witch_Trainer_1.02-win\Witch Trainer.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files (x86)\Origin\Origin.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.99.250.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Microvirt\MEmu\uninstall\uninstall.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\UplayInstaller.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Innocent_Witches-0.2F-pc\Innocent Witches.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\strive\Strive.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Harem_Hotel-v0.6.1-pc\Harem_Hotel-v0.6.1-pc\Harem_Hotel.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\GoodnightKiss-1.01-pc\GoodnightKiss.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\ShapingHerFuture-0.11.01-pc\ShapingHerFuture.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.101.348.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\HS_0.1_win_lin\HS.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.101.348.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\ProgramData\NVIDIA Corporation\Downloader\PostProcessing\GFE\7b69c8594affa73d0f6357d0d998abcf\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\ProgramData\NVIDIA Corporation\Downloader\PostProcessing\GFE\daa4fab973e53fae3db151e3f11c3c7e\setup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\AppData\Local\Discord\app-0.0.301\Discord.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.103.259.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Shelter en\Shelter.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.104.197.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\AVAST Software\Avast\setup\instup.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.104.197.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\RE226841\Game\EZ.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.106.113.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\x64\ninetyss.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\LOK Rebirth 0.7b [Win64]\LOK Rebirth.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Kingdom_of_Deception-pc\Kingdom of Deception.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\The Ninja Rape Legend - Ajisai\Game.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\Holy Road PC 18+\Holy Road.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Users\User\Downloads\The_Magus_Lab_v.0.25A.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.107.13766.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.108.439.0_x86__zpdnekdrzrea0\SpotifyMigrator.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.108.439.0_x86__zpdnekdrzrea0\SpotifyStartupTask.exe =>.SUP.Orphan.Compatibility
[HKCU\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]:C:\Program Files\Common Files\EAInstaller\Apex\Cleanup.exe =>.SUP.Orphan.Compatibility

---\ Summary of the elements found (5) - 0s
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Obsolete.Adobe
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Chrome
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Orphan.Compatibility

~ Unselected Options:
~ End of the scan, 12158 items in 04mn44s (3666)(0)
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
Adware Removal Tool Scan.



Download Adware removal tool to your desktop, right click the icon and select Run as Administrator.













Hit Ok.











Hit next make sure to leave all items checked, for removal.













The Program will close all open programs to complete the removal, so save any work and hit OK. Then hit OK after the removal process is complete, thenOK again to finish up. Post log generated by tool.






Hijack This Fix.

Start HijackThis , Right Click Run as Admin.
Close all other open programs prior to running this tool!!
Click System Scan Only.
Then check mark the items listed below.

O1 - Hosts: 0.0.0.0 91.206.200.221
O1 - Hosts: 0.0.0.0 bidtraffic.ru
O1 - Hosts: 0.0.0.0 bir3yka.narod2.ru
O1 - Hosts: 0.0.0.0 enet.vn.ua
O1 - Hosts: 0.0.0.0 rax.ru
O1 - Hosts: 0.0.0.0 yandex.ru
O1 - Hosts: 0.0.0.0 ukraine.com.ua
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] = C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun (file missing)
O4 - HKCU\..\Run: [uTorrent] = C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKU\S-1-5-19\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4 - HKU\S-1-5-20\..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade
O4-32 - HKLM\..\Run: [LogMeIn Hamachi Ui] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O5 - HKCU\Control Panel\don't load: [RTSnMg64.cpl] (file missing)
O9-32 - Button: HKLM\..\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}: OneNote – c&satolt feljegyzések - (no file)
O9-32 - Tools menu item: HKLM\..\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}: OneNote – c&satolt feljegyzések - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O23 - Service S2: ICEsound Service - (ICEsoundService) - C:\WINDOWS\system32\ICEsoundService64.exe (file missing)
O23 - Service S2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (file missing)
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe (file missing)

Now click on fix checked.
After the fix is complete, then reboot your machine.


Temp File Cleaner.




  • Note: This program may very well reboot your machine. Save any work prior to running.
  • Clean up your temp files with TFC.exe
  • Save it to your desktop.
  • Right click run as admin.
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
1 Drive c: () (Fixed) (Total:111.25 GB) (Free:8.97 GB) NTFS
You only have eight percent free space.
I'd suggest you free up some space.
In order for windows to function correctly it needs 15 percent free space.
Here is a guide I wrote for another site, it explains very much so how to clean up a HDD.


You have any idea what this file is?

C:\Users\User\AppData\Local\7.b - A játék DEMÓ
 
Last edited:

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
Click on Download Windows 10 Disable Most Of Ads It should give you a zip file, which you will need to right click on and Extract All, Extract then right click on the .reg and MERGE. Then reboot.

ZHP Diag Fix.


ZHP Fix







  • Disable your antivirus prior to this fix!
  • Download ZHP-Fix from here.
  • UnZip it to your desktop -- Tool Here if needed.... 7-Zip
  • Install it.
  • Click Suivant 5 Times.
  • Then Installer.
  • Then Terminer.
  • Then right clcick the ZHP Fix icon Run as admin.
  • Copy the entire content of the code box below, the next step will grab it from your clipboard.
  • Then click on import.
  • Then click GO.
  • If you see any Prompts like the one below, select Oui. = Yes in French.



  • Allow completion.
  • A log file will appear on your desktop.
  • Post it here in your next reply.
Code:
Script Zhpfix
O23 - Service: C:\WINDOWS\System32\diagtrack.dll (DiagTrack) . (.Microsoft Corporation - Microsoft Windows diagnosztikai nyomkövetés.) - C:\WINDOWS\System32\diagtrack.dll =>.Microsoft Corporation
O23 - Service: ICEsound Service (ICEsoundService) . (...) - C:\WINDOWS\system32\ICEsoundService64.exe (.not file.)
O23 - Service: Origin Web Helper Service (Origin Web Helper Service) . (...) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (.not file.)
SR - Auto [00/00/0000] [ 0] ICEsound Service (ICEsoundService) . (...) - C:\WINDOWS\system32\ICEsoundService64.exe (.not file.)
SS - Demand [00/00/0000] [ 0] Origin Client Service (Origin Client Service) . (...) - C:\Program Files (x86)\Origin\OriginClientService.exe (.not file.)
SR - Auto [00/00/0000] [ 0] Origin Web Helper Service (Origin Web Helper Service) . (...) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (.not file.)
O38 - TASK: {ACE16E21-C4E3-44D8-A78C-B834AC609F6B} [64Bits][\CCleaner Update] - (.Piriform Software Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [619416] =>.Piriform Software Ltd
O4 - HKUS\S-1-5-19\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000 =>.SUP.Orphan
O4 - HKUS\S-1-5-20\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000 =>.SUP.Orphan
C:\WINDOWS\System32\diagtrack.dll
C:\ProgramData\AVAST Software =>.AVAST Software
C:\WINDOWS\System32\drivers\lpsport.sys
C:\Windows\System32\dmwappushsvc.dll
O4 - HKUS\S-1-5-21-1620667201-3233266275-4011120631-1001\..\Run: [CCleaner Smart Cleaning] . (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Software Ltd®
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:CCleaner Smart Cleaning =>.Piriform Ltd
[HKEY_USERS\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:CCleaner Smart Cleaning =>.Piriform Ltd
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AvastUI.exe =>.Avast Software s.r.o
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:AvastUI.exe =>.Avast Software s.r.o
O42 - Logiciel: Java 7 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217021FF} =>.Oracle
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\WOW6432Node\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKCU\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKCU\SOFTWARE\Chromium =>.Chromium
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Chromium =>.Chromium
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
C:\WINDOWS\Installer\8cd4c.msp =>.SUP.Obsolete.Adobe
C:\WINDOWS\Installer\c0276.msp =>.SUP.Obsolete.Adobe
EmptyPrefetch
Emptytemp
EmptyClsid
 

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
I freed up some space.
Yes, I do, it's a small game, nothing special.
Also, I posted on another forum as well, and the problem seems to be either PSU or heat related, do I really have to keep downloading these programs? I don't think it's software related.
 
  • Like
Reactions: Malnutrition

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
When you have completed the above steps, reboot your machine and get me an autoruns log, we will then disable some things from loading when windows loads, that will free up some ram for you. :)

Download Autoruns and Autorunsc Unzip it to your desktop and then double click autoruns.exe
After the scan is finished then click on File>>>>>>>>>>>Save
The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option.
in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.
 

Attachments

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
do I really have to keep downloading these programs? I don't think it's software related.

You have got a mess going on with your machine . Your choice, but having all this stuff running can not be good. These programs are going to be deleted at the end of this. Id say you will be happy at the end of this. There is no one click solution when there is this much clutter.
 

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
And so what's that mess exactly?

ZHP-Fix:

Rapport de ZHPFix 2015.10.19.9 par Nicolas Coolman, Update du 19/10/2015
Fichier d'export Registre :
Run by User at 2019. 06. 18. 8:50:37
High Elevated Privileges : OK
Windows 8 Business Edition, 64-bit Service Pack 1 (17134)

Recycle Bin emptied (00mn 02s)
Prefetcher emptied

========== Software ==========
REMOVES: Java 7 Update 21

========== Memory modules ==========
REMOVES Reboot: Memory Module: C:\WINDOWS\System32\diagtrack.dll
REMOVES Reboot: Memory Module: C:\Windows\System32\dmwappushsvc.dll

========== Registry keys ==========
REMOVES: Service: DiagTrack
REMOVES: Service: ICEsoundService
REMOVES: Service: Origin Web Helper Service
REMOVES: HKLM\SOFTWARE\AVAST Software
REMOVES: HKCU\SOFTWARE\AvastAdSDK
REMOVES: HKCU\SOFTWARE\Browser Cleanup
REMOVES: HKCU\SOFTWARE\Chromium
REMOVES: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
REMOVES: HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32
REMOVES: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32

========== Registry values ==========
REMOVES RunValue: CCleaner Smart Cleaning
REMOVES [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:CCleaner Smart Cleaning
REMOVES [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AvastUI.exe
REMOVES [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:AvastUI.exe

========== Folders ==========
No folders empty CLSID Local user

========== Files ==========
REMOVES: C:\WINDOWS\System32\drivers\lpsport.sys
REMOVES: c:\program files\ccleaner\ccleaner64.exe
REMOVES: C:\WINDOWS\Installer\8cd4c.msp
REMOVES: C:\WINDOWS\Installer\c0276.msp
Deletes temporary Windows (31) (20 729 994 octets)

========== Other ==========
NON-TREATY O38 - TASK: {ACE16E21-C4E3-44D8-A78C-B834AC609F6B} [64Bits][\CCleaner Update] - (.Piriform Software Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [619416]
NON-TREATY O4 - HKUS\S-1-5-19\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000
NON-TREATY O4 - HKUS\S-1-5-20\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000
NON-TREATY [HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\AvastAdSDK]
NON-TREATY [HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Browser Cleanup]
NON-TREATY [HKU\S-1-5-21-1620667201-3233266275-4011120631-1001\SOFTWARE\Chromium]


========== Summary ==========
2 : Memory modules
10 : Registry keys
4 : Registry values
1 : Folders
5 : Files
1 : Software
6 : Other


End of clean in 00mn 35s

Autoruns:

========== Path to file report ==========
C:\Users\User\AppData\Roaming\ZHP\ZHPFix[R1].txt - 2019. 06. 18. 8:50:40 [2699]

"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\AlternateShell" "" "" "" "2019. 06. 15. 16:25" ""
+ "cmd.exe" "Windows Command Processor" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "1971. 01. 08. 10:44" ""
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2019. 06. 18. 8:44" ""
+ "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "(Verified) Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe" "2018. 04. 11. 9:32" ""
+ "AdobeGCInvoker-1.0" "Adobe GC Invoker Utility" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agcinvokerutility.exe" "2019. 05. 04. 16:21" ""
+ "RtkAudUService" "Realtek HD Audio Universal Service" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\rtkauduservice64.exe" "2019. 01. 15. 10:10" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2019. 04. 09. 20:58" ""
+ "ASUS WiFi GO! FileTransfer Execute" "WiFil GO! File Transfer" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\remote go!\assisttools\wifile\wifiletransfer.exe" "2013. 03. 14. 8:01" ""
+ "LogMeIn Hamachi Ui" "Hamachi Client Application" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe" "2019. 04. 02. 16:58" ""
+ "SunJavaUpdateSched" "Java Update Scheduler" "(Verified) Oracle America, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe" "2017. 12. 20. 4:30" ""
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2019. 06. 18. 8:50" ""
+ "DAEMON Tools Lite Automount" "" "" "File not found: C:\Program Files\DAEMON Tools Lite\DTAgent.exe" "" ""
+ "Discord" "Discord" "(Verified) Discord Inc." "c:\users\user\appdata\local\discord\app-0.0.305\discord.exe" "2019. 03. 07. 23:44" ""
+ "GoToAssist Remote Support Expert" "GoToAssist" "(Verified) LogMeIn, Inc." "c:\users\user\appdata\local\gotoassist remote support expert\1599\g2ax_start.exe" "2018. 04. 24. 14:26" ""
+ "Overwolf" "Overwolf Launcher" "(Verified) Overwolf Ltd" "f:\overwolf\overwolflauncher.exe" "2019. 03. 05. 13:09" ""
+ "Spotify" "Spotify" "(Verified) Spotify AB" "c:\users\user\appdata\roaming\spotify\spotify.exe" "2019. 06. 10. 15:38" ""
+ "uTorrent" "µTorrent" "(Verified) BitTorrent Inc" "c:\users\user\appdata\roaming\utorrent\utorrent.exe" "2019. 06. 03. 18:23" ""
+ "VPN Unlimited" "VPN Unlimited Launcher" "(Verified) KeepSolid Inc." "c:\program files (x86)\vpn unlimited\vpn-unlimited-launcher.exe" "2018. 10. 15. 10:54" ""
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "2018. 05. 26. 7:19" ""
+ "Google Chrome" "Google Chrome Installer" "(Verified) Google LLC" "c:\program files (x86)\google\chrome\application\74.0.3729.169\installer\chrmstp.exe" "2019. 05. 20. 7:00" ""
+ "n/a" "Microsoft .NET IE SECURITY REGISTRATION" "(Verified) Microsoft Corporation" "c:\windows\system32\mscories.dll" "2018. 02. 08. 6:18" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "2018. 05. 26. 7:09" ""
+ "n/a" "Microsoft .NET IE SECURITY REGISTRATION" "(Verified) Microsoft Corporation" "c:\windows\syswow64\mscories.dll" "2018. 02. 08. 6:03" ""
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" "" "2018. 11. 03. 19:58" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "(Verified) Microsoft Corporation" "c:\program files\common files\microsoft shared\office16\msoxmlmf.dll" "2017. 06. 27. 16:18" ""
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "2019. 06. 18. 8:50" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
+ "WinRAR" "WinRAR shell extension" "(Verified) win.rar GmbH" "c:\program files\winrar\rarext.dll" "2019. 02. 24. 21:03" ""
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "2019. 04. 09. 20:58" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not Verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" "" "2018. 05. 26. 7:09" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not Verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "2018. 05. 26. 7:09" ""
+ "NvCplDesktopContext" "NVIDIA Display Shell Extension" "(Verified) NVIDIA Corporation" "c:\windows\system32\nvshext.dll" "2019. 05. 22. 23:50" ""
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "2019. 06. 18. 8:50" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not Verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
+ "WinRAR" "WinRAR shell extension" "(Verified) win.rar GmbH" "c:\program files\winrar\rarext.dll" "2019. 02. 24. 21:03" ""
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "2018. 05. 26. 7:09" ""
+ "WinRAR" "WinRAR shell extension" "(Verified) win.rar GmbH" "c:\program files\winrar\rarext.dll" "2019. 02. 24. 21:03" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "2018. 11. 03. 19:58" ""
+ " SkyDrivePro1 (ErrorConflict)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
+ " SkyDrivePro2 (SyncInProgress)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
+ " SkyDrivePro3 (InSync)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "2018. 11. 03. 19:58" ""
+ "Microsoft OneDrive for Business Browser Helper" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
+ "Skype for Business Browser Helper" "Skype for Business" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\ochelper.dll" "2018. 04. 10. 20:57" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "2019. 06. 18. 8:50" ""
+ "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_161\bin\ssv.dll" "2017. 12. 20. 4:04" ""
+ "{DBC80044-A445-435b-BC74-9C25C1C588A9}" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_161\bin\jp2ssv.dll" "2017. 12. 20. 4:04" ""
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "2018. 11. 03. 19:58" ""
+ "Kül&dés a OneNote programba" "Microsoft OneNote Internet Explorer Add-in" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\onbttnie.dll" "2018. 05. 08. 17:02" ""
+ "OneNote – c&satolt feljegyzések" "Microsoft OneNote Internet Explorer Add-in" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\onbttnielinkednotes.dll" "2018. 05. 08. 17:11" ""
+ "Skype Vállalati verzió – Gyorshívó" "Skype for Business" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\ochelper.dll" "2018. 04. 10. 20:57" ""
"Task Scheduler" "" "" "" "" ""
X "\Adobe Acrobat Update Task" "Adobe Reader and Acrobat Manager" "(Verified) Adobe Systems, Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe" "2018. 12. 17. 5:24" ""
+ "\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-User" "Adobe GC Invoker Utility" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agcinvokerutility.exe" "2019. 05. 04. 16:21" ""
+ "\ASUS\ASUS AI Suite II Execute" "ASUS Routine Controller" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\asroutinecontroller.exe" "2012. 03. 13. 6:33" ""
+ "\ASUS\ASUS Network iControl Help Execute" "NetSvcHelpEntry" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\network icontrol\netsvchelp\netsvchelpentry.exe" "2013. 01. 24. 10:33" ""
+ "\ASUS\ASUS WiFi GO! Server Execute" "ASUS WiFi GO! Server" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\remote go!\assisttools\wifi go! server.exe" "2013. 08. 26. 4:20" ""
+ "\ASUS\USB 3.0 Boost Service" "U3Checker MFC Application" "" "c:\program files (x86)\asus\ai suite ii\usb 3.0 boost\u3boostsvr.exe" "2011. 09. 09. 17:15" ""
+ "\CCleanerSkipUAC" "CCleaner" "(Verified) Piriform Software Ltd" "c:\program files\ccleaner\ccleaner.exe" "2018. 12. 10. 11:47" ""
+ "\HardDiskSentinel\Hard Disk Sentinel_User" "Hard Disk Sentinel" "(Verified) Janos Mathe" "c:\program files (x86)\hard disk sentinel\hdsentinel.exe" "1992. 06. 20. 0:22" ""
+ "\Microsoft\Office\Office 15 Subscription Heartbeat" "" "" "File not found: C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe" "" ""
+ "\Microsoft\Office\OfficeTelemetryAgentFallBack2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "2015. 07. 30. 14:19" ""
+ "\Microsoft\Office\OfficeTelemetryAgentLogOn2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "2015. 07. 30. 14:19" ""
+ "\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" "Microsoft Malware Protection Command Line Utility" "(Not verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
+ "\Microsoft\Windows\Windows Defender\Windows Defender Cleanup" "Microsoft Malware Protection Command Line Utility" "(Not Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
+ "\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "(Not Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
+ "\Microsoft\Windows\Windows Defender\Windows Defender Verification" "Microsoft Malware Protection Command Line Utility" "(Not Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
X "\Microsoft_Hardware_Launch_ipoint_exe" "IPoint.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\ipoint.exe" "2018. 11. 19. 4:45" ""
X "\Microsoft_Hardware_Launch_itype_exe" "IType.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\itype.exe" "2018. 11. 19. 4:37" ""
X "\Microsoft_Hardware_Launch_mousekeyboardcenter_exe" " " "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\mousekeyboardcenter.exe" "2018. 11. 19. 4:49" ""
X "\Microsoft_MKC_Logon_Task_ceip.exe" "CEIP" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\ceip.exe" "2018. 11. 19. 4:27" ""
X "\Microsoft_MKC_Logon_Task_ipoint.exe" "IPoint.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\ipoint.exe" "2018. 11. 19. 4:45" ""
X "\Microsoft_MKC_Logon_Task_itype.exe" "IType.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\itype.exe" "2018. 11. 19. 4:37" ""
+ "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA Container" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA Container" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA GeForce Experience" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvidia geforce experience\nvidia geforce experience.exe" "2019. 05. 23. 11:09" ""
+ "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA nodejs launcher" "(Verified) NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvnode\nvnodejslauncher.exe" "2019. 05. 22. 15:26" ""
+ "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "2019. 05. 14. 20:15" ""
+ "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "2019. 05. 14. 20:15" ""
+ "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
+ "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
+ "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
+ "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "2019. 06. 18. 8:50" ""
+ "AdobeARMservice" "Adobe Acrobat Update Service: Adobe Acrobat Updater keeps your Adobe software up to date." "(Verified) Adobe Systems, Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe" "2018. 12. 17. 5:23" ""
+ "AGMService" "Adobe Genuine Monitor Service: Adobe Genuine Monitor Service" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agmservice.exe" "2019. 05. 04. 16:21" ""
+ "AGSService" "Adobe Genuine Software Integrity Service: Adobe Genuine Software Integrity Service" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agsservice.exe" "2019. 05. 04. 16:21" ""
+ "asComSvc" "ASUS Com Service: " "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\axsp\1.00.19\atkexcomsvc.exe" "2012. 05. 17. 13:45" ""
+ "asHmComSvc" "ASUS HM Com Service: " "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\aahm\1.00.20\aahmsvc.exe" "2012. 02. 02. 11:43" ""
+ "AsSysCtrlService" "ASUS System Control Service: " "" "c:\program files (x86)\asus\assysctrlservice\1.00.22\assysctrlservice.exe" "2014. 03. 21. 10:31" ""
+ "AsusFanControlService" "AsusFanControlService: ASUS Motherboard Fan Control Service" "(Not verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\asusfancontrolservice\1.02.00\asusfancontrolservice.exe" "2012. 11. 09. 9:51" ""
+ "BEService" "BattlEye Service: " "(Verified) BattlEye Innovations e.K." "c:\program files (x86)\common files\battleye\beservice.exe" "2019. 01. 25. 7:20" ""
+ "Disc Soft Lite Bus Service" "Disc Soft Lite Bus Service: Disc Soft Bus Service Lite" "(Verified) Disc Soft Ltd" "c:\program files\daemon tools lite\discsoftbusservicelite.exe" "2016. 11. 21. 14:01" ""
+ "EasyAntiCheat" "EasyAntiCheat: Provides integrated security and services for online multiplayer games." "(Verified) EasyAntiCheat Oy" "c:\program files (x86)\easyanticheat\easyanticheat.exe" "2018. 06. 19. 8:58" ""
+ "FontCache3.0.0.0" "Windows megjelenítési alaprendszer betűtípus-gyorsítótára 3.0.0.0: A gyakran használt betűtípusadatok gyorsítótárba másolásával javítja a Windows megjelenítési alaprendszer (Windows Presentation Foundation – WPF) alkalmazások teljesítményét. A WPF-alkalmazások elindítják ezt a szolgáltatást, ha még nem fut. E szolgáltatás letiltható, azonban ez csökkenti a WPF-alkalmazások teljesítményét." "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe" "2018. 02. 09. 7:03" ""
+ "GalaxyClientService" "GalaxyClientService: GOG Galaxy component for handling privileged tasks." "(Verified) GOG Sp. z o.o." "f:\program files (x86)\gog galaxy\galaxyclientservice.exe" "2018. 02. 02. 16:22" ""
+ "GalaxyCommunication" "GalaxyCommunication: GalaxyCommunicationService" "(Verified) GOG Sp. z o.o." "c:\programdata\gog.com\galaxy\redists\galaxycommunication.exe" "2018. 05. 23. 12:05" ""
+ "GoogleChromeElevationService" "Google Chrome Elevation Service: Google Chrome" "(Verified) Google LLC" "c:\program files (x86)\google\chrome\application\74.0.3729.169\elevation_service.exe" "2019. 05. 20. 7:00" ""
+ "gupdate" "Google frissítés Szolgáltatás (gupdate): Rendszeresen frissíti az Ön által használt Google-szoftvereket. Ha kikapcsolja vagy leállítja ezt a szolgáltatást, a Google-szoftverek nem frissülnek, ami azt jelenti, hogy az esetlegesen felmerülő biztonsági hibákat nem lehet kijavítani, és az új funkciók sem jelennek meg. Ez a szolgáltatás eltávolítja saját magát, ha semmilyen Google-szoftver nem használja." "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "2017. 07. 14. 4:07" ""
+ "gupdatem" "Google frissítés Szolgáltatás (gupdatem): Rendszeresen frissíti az Ön által használt Google-szoftvereket. Ha kikapcsolja vagy leállítja ezt a szolgáltatást, a Google-szoftverek nem frissülnek, ami azt jelenti, hogy az esetlegesen felmerülő biztonsági hibákat nem lehet kijavítani, és az új funkciók sem jelennek meg. Ez a szolgáltatás eltávolítja saját magát, ha semmilyen Google-szoftver nem használja." "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "2017. 07. 14. 4:07" ""
+ "Hamachi2Svc" "LogMeIn Hamachi Tunneling Engine: Hamachi Client Tunneling Engine" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\x64\hamachi-2.exe" "2019. 04. 02. 17:00" ""
+ "HiPatchService" "Hi-Rez Studios Authenticate and Update Service: HiPatchService" "(Not verified) Hi-Rez Studios" "f:\program files (x86)\hi-rez studios\hipatchservice.exe" "2018. 06. 11. 20:57" ""
+ "LMIGuardianSvc" "LMIGuardianSvc: Support LogMeIn processes with quality assurance feedback" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\x64\lmiguardiansvc.exe" "2016. 05. 27. 15:03" ""
+ "NvContainerLocalSystem" "NVIDIA LocalSystem Container: Container service for NVIDIA root features" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "NvContainerNetworkService" "NVIDIA NetworkService Container: Container service for NVIDIA network features" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "NVDisplay.ContainerLocalSystem" "NVIDIA Display Container LS: Container service for NVIDIA root features" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\display.nvcontainer\nvdisplay.container.exe" "2019. 02. 26. 13:38" ""
+ "NvTelemetryContainer" "NVIDIA Telemetry Container: Container service for NVIDIA Telemetry" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvtelemetry\nvtelemetrycontainer.exe" "2019. 02. 26. 13:38" ""
+ "Origin Client Service" "Origin Client Service: " "" "File not found: C:\Program Files (x86)\Origin\OriginClientService.exe" "" ""
+ "ose" "Office Source Engine: Ez a szolgáltatás menti a frissítéshez és javításhoz használandó telepítőfájlokat, és a telepítési frissítések letöltéséhez, illetve a Watson program által küldött hibajelentésekhez van rá szükség." "(Verified) Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe" "2018. 06. 12. 16:36" ""
+ "OverwolfUpdater" "Overwolf Updater Windows SCM: OverwolfUpdater" "(Verified) Overwolf Ltd" "f:\overwolf\overwolfupdater.exe" "2019. 03. 06. 15:26" ""
+ "ProductAgentService" "ProductAgentService: Bitdefender Product Agent Service description" "(Verified) Bitdefender SRL" "c:\program files\bitdefender agent\productagentservice.exe" "2018. 11. 15. 14:38" ""
+ "RtkAudioUniversalService" "Realtek Audio Universal Service: Realtek Audio Universal Service" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\rtkauduservice64.exe" "2019. 01. 15. 10:10" ""
+ "Steam Client Service" "Steam Client Service: Steam Client Service monitors and updates Steam content" "(Verified) Valve" "c:\program files (x86)\common files\steam\steamservice.exe" "2019. 06. 14. 22:52" ""
+ "TeamViewer" "TeamViewer 13: TeamViewer Remote Software" "(Verified) TeamViewer GmbH" "c:\program files (x86)\teamviewer\teamviewer_service.exe" "2018. 09. 10. 16:07" ""
+ "VPNUnlimitedService" "VPN Unlimited Service: VPN Unlimited Service" "(Verified) KeepSolid Inc." "c:\program files (x86)\vpn unlimited\vpn-unlimited-daemon.exe" "2018. 10. 15. 10:54" ""
+ "WdNisSvc" "A Windows Defender víruskereső hálózatvizsgáló szolgáltatása: Védelem a hálózati protokollok ismert és újonnan észlelt biztonsági réseit célzó behatolási kísérletek ellen" "(Not verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\nissrv.exe" "1902. 09. 24. 20:05" ""
+ "WinDefend" "Windows Defender víruskereső szolgáltatás: A felhasználói adatok védelme a kártevők és az egyéb vélhetően nemkívánatos szoftverek ellen" "(Not verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\msmpeng.exe" "1954. 01. 31. 5:02" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "2019. 06. 18. 8:50" ""
+ "AiChargerPlus" "AiChargerPlus: ASUS Charger driver" "(Verified) ASUSTeK Computer Inc." "c:\windows\syswow64\drivers\aichargerplus.sys" "2012. 04. 19. 3:17" ""
+ "amdgpio2" "AMD GPIO Client Driver: AMD GPIO Controller Driver" "(Verified) Advanced Micro Devices Inc." "c:\windows\system32\drivers\amdgpio2.sys" "2018. 03. 30. 12:56" ""
+ "amdkmcsp" "AMD Kernel Mode CSP Service: amdkmcsp sys" "(Verified) Advanced Micro Devices Inc." "c:\windows\system32\drivers\amdkmcsp.sys" "2017. 06. 05. 23:27" ""
+ "AMDPCIDev" "AMD PCI: AMD PCI Device driver" "(Verified) Advanced Micro Devices Inc." "c:\windows\system32\drivers\amdpcidev.sys" "2018. 04. 12. 8:14" ""
+ "amdpsp" "AMD PSP Service: amdpsp sys" "(Verified) Advanced Micro Devices, Inc." "c:\windows\system32\drivers\amdpsp.sys" "2017. 10. 27. 21:49" ""
+ "AMDRyzenMasterDriverV13" "AMDRyzenMasterDriverV13: AMD Ryzen Master Service Driver" "(Verified) Advanced Micro Devices Inc." "c:\program files\amd\ryzenmaster\bin\amdryzenmasterdriver.sys" "2018. 10. 18. 6:47" ""
+ "AsIO" "AsIO: " "(Verified) ASUSTeK Computer Inc." "c:\windows\syswow64\drivers\asio.sys" "2012. 08. 22. 11:54" ""
+ "asmthub3" "ASMedia USB3.1 Hub Service: ASMedia USB3 Hub Driver" "(Verified) ASMedia Technology Inc." "c:\windows\system32\drivers\asmthub3.sys" "2016. 04. 11. 8:16" ""
+ "asmtxhci" "ASMedia XHCI Service: ASMedia xHCI Host Controller Driver" "(Verified) ASMedia Technology Inc." "c:\windows\system32\drivers\asmtxhci.sys" "2016. 04. 11. 8:15" ""
+ "asstahci64" "asstahci64: Asmedia 106x SATA Host Controller Driver" "(Verified) ASMedia Technology Inc." "c:\windows\system32\drivers\asstahci64.sys" "2015. 06. 17. 5:36" ""
+ "AsUpIO" "AsUpIO: " "(Verified) ASUSTeK Computer Inc." "c:\windows\syswow64\drivers\asupio.sys" "2010. 08. 03. 4:47" ""
+ "ASUSFILTER" "ASUSFILTER: ASUS USB Hub filter driver" "(Verified) MCCI Corporation" "c:\windows\syswow64\drivers\asusfilter.sys" "2011. 09. 20. 17:46" ""
+ "catchme" "" "" "File not found: C:\Users\User\AppData\Local\Temp\catchme.sys" "" ""
+ "dg_ssudbus" "SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.): SAMSUNG USB Composite Device Driver" "(Verified) Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\ssudbus.sys" "2017. 05. 15. 9:53" ""
+ "dtlitescsibus" "DAEMON Tools Lite Virtual SCSI Bus: DAEMON Tools Lite Virtual SCSI Bus Driver" "(Verified) Disc Soft Ltd" "c:\windows\system32\drivers\dtlitescsibus.sys" "2015. 09. 24. 22:17" ""
+ "dtliteusbbus" "DAEMON Tools Lite Virtual USB Bus: DAEMON Tools Lite Virtual USB Bus Driver" "(Verified) Disc Soft Ltd" "c:\windows\system32\drivers\dtliteusbbus.sys" "2015. 12. 28. 15:05" ""
+ "hidusbf" "USB Mouse Rate Adjuster Lower Filter by SweetLow: USB Mouse Rate Adjuster Lower Filter" "(Verified) Jeshua Starr Scully" "c:\windows\system32\drivers\hidusbf.sys" "2016. 04. 13. 21:28" ""
+ "HWiNFO" "HWiNFO Kernel Driver: HWiNFO AMD64 Kernel Driver" "(Verified) Martin Malik - REALiX" "c:\windows\system32\drivers\hwinfo64a.sys" "2019. 03. 14. 9:28" ""
+ "iaLPSSi_GPIO" "Intel(R) soros be- és kimeneti vezérlő, GPIO-vezérlő illesztőprogramja: Intel(R) Serial IO GPIO Controller Driver" "(Verified) Intel Corporation - Client Components Group" "c:\windows\system32\drivers\ialpssi_gpio.sys" "2015. 02. 02. 11:00" ""
+ "IntcAzAudAddService" "Service for Realtek HD Audio (WDM): Realtek(r) High Definition Audio Function Driver" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys" "2019. 01. 15. 13:45" ""
+ "ndisrd" "WinpkFilter LightWeight Filter: WinpkFilter LightWeight Filter" "(Verified) Realtek Semiconductor Corp" "c:\windows\system32\drivers\ndisrd.sys" "2013. 02. 21. 4:40" ""
+ "NVHDA" "Service for NVIDIA High Definition Audio Driver: NVIDIA HDMI Audio Driver" "(Verified) NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys" "2019. 03. 19. 6:47" ""
+ "nvlddmkm" "nvlddmkm: NVIDIA Windows Kernel Mode Driver, Version 430.86 " "(Verified) NVIDIA Corporation" "c:\windows\system32\driverstore\filerepository\nv_dispi.inf_amd64_b49751b9038af669\nvlddmkm.sys" "2019. 05. 22. 23:18" ""
+ "NvStreamKms" "NVIDIA KMS: Nvidia Streaming Kernel Service" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvstreamsrv\nvstreamkms.sys" "2018. 06. 26. 1:52" ""
+ "nvvad_WaveExtensible" "NVIDIA Virtual Audio Device (Wave Extensible) (WDM): NVIDIA Virtual Audio Driver" "(Verified) NVIDIA Corporation" "c:\windows\system32\drivers\nvvad64v.sys" "2019. 03. 14. 10:58" ""
+ "nvvhci" "NVVHCI Enumerator Service: Virtual USB Host Controller driver" "(Verified) NVIDIA Corporation" "c:\windows\system32\drivers\nvvhci.sys" "2018. 08. 16. 22:01" ""
+ "rt640x64" "Realtek RT640 NT Driver: Realtek 8125/8136/8168/8169 NDIS 6.40 64-bit Driver " "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\drivers\rt640x64.sys" "2018. 08. 28. 10:09" ""
+ "ssudmdm" "SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.): SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)" "(Verified) Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\ssudmdm.sys" "2017. 05. 15. 9:53" ""
+ "tap0901" "TAP-Windows Adapter V9: TAP-Windows Virtual Network Driver" "(Verified) OpenVPN Technologies, Inc." "c:\windows\system32\drivers\tap0901.sys" "2013. 08. 22. 14:40" ""
+ "VBAudioVACMME" "@oem20.inf,%DeviceName% (WDM);VB-Audio Virtual Cable (WDM): VB Virtual Audio Device" "(Verified) Vincent Burel" "c:\windows\system32\drivers\vbaudio_cable64_win7.sys" "2014. 08. 14. 8:15" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "2019. 06. 15. 19:18" ""
+ "VIDC.RTV1" "" "" "c:\windows\system32\rtvcvfw64.dll" "2012. 09. 28. 21:45" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "2019. 06. 15. 19:18" ""
+ "VIDC.RTV1" "" "" "c:\windows\syswow64\rtvcvfw32.dll" "2012. 09. 28. 21:45" ""
"HKLM\SOFTWARE\Classes\Htmlfile\Shell\Open\Command\(Default)" "" "" "" "2019. 03. 23. 2:24" ""
+ "C:\Program Files\Internet Explorer\IEXPLORE.EXE" "Internet Explorer" "(Verified) Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe" "1940. 11. 22. 20:25" ""
"HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" "" "2018. 04. 12. 1:38" ""
+ "_wow64" "" "" "c:\windows\syswow64\wow64.dll" "" ""
+ "_wow64cpu" "" "" "c:\windows\syswow64\wow64cpu.dll" "" ""
+ "_wow64win" "" "" "c:\windows\syswow64\wow64win.dll" "" ""
+ "_wowarmhw" "" "" "c:\windows\system32\wowarmhw.dll" "" ""
+ "_wowarmhw" "" "" "c:\windows\syswow64\wowarmhw.dll" "" ""
"HKCU\Software\Microsoft\Office\Outlook\Addins" "" "" "" "2018. 11. 03. 20:08" ""
+ "{5B7AB748-6D2E-4827-90A5-32B426DC61B7}" "" "" "" "2018. 11. 03. 20:08" ""
"HKCU\Software\Microsoft\Office\Excel\Addins" "" "" "" "2018. 11. 03. 20:08" ""
+ "{509E7382-B849-49A4-8A3F-BEAB7E7D904C}" "" "" "" "2018. 11. 03. 20:08" ""
+ "{A2DBA3BE-42CC-4D0E-95FD-BCAA051BA798}" "" "" "" "2018. 11. 03. 20:08" ""
"HKLM\Software\Wow6432Node\Microsoft\Office\Excel\Addins" "" "" "" "2018. 11. 03. 20:00" ""
+ "{237428F1-F2C7-4F86-B7ED-ADE148ACF95F}" "Microsoft Office 2016 component" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\dcf\nativeshim.dll" "2015. 07. 30. 14:15" ""
+ "{F39D01F3-69C1-45E1-93B2-7BF0BC6EB63E}" "Microsoft Office 2016 component" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\addins\power map excel add-in\excelpluginshell.dll" "2015. 07. 30. 14:14" ""
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
Open Autoruns, Uncheck these items then reboot.. After you reboot then post a new Autoruns log. I still didn't get a Adware Removal Tool Scan.





"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"

+ "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "(Verified) Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe" "2018. 04. 11. 9:32" ""
+ "AdobeGCInvoker-1.0" "Adobe GC Invoker Utility" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agcinvokerutility.exe" "2019. 05. 04. 16:21" ""
+ "ASUS WiFi GO! FileTransfer Execute" "WiFil GO! File Transfer" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\remote go!\assisttools\wifile\wifiletransfer.exe" "2013. 03. 14. 8:01" ""
+ "LogMeIn Hamachi Ui" "Hamachi Client Application" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe" "2019. 04. 02. 16:58" ""
+ "SunJavaUpdateSched" "Java Update Scheduler" "(Verified) Oracle America, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe" "2017. 12. 20. 4:30" ""
+ "DAEMON Tools Lite Automount" "" "" "File not found: C:\Program Files\DAEMON Tools Lite\DTAgent.exe" "" ""
+ "Discord" "Discord" "(Verified) Discord Inc." "c:\users\user\appdata\local\discord\app-0.0.305\discord.exe" "2019. 03. 07. 23:44" ""
+ "GoToAssist Remote Support Expert" "GoToAssist" "(Verified) LogMeIn, Inc." "c:\users\user\appdata\local\gotoassist remote support expert\1599\g2ax_start.exe" "2018. 04. 24. 14:26" ""
+ "Overwolf" "Overwolf Launcher" "(Verified) Overwolf Ltd" "f:\overwolf\overwolflauncher.exe" "2019. 03. 05. 13:09" ""
+ "Spotify" "Spotify" "(Verified) Spotify AB" "c:\users\user\appdata\roaming\spotify\spotify.exe" "2019. 06. 10. 15:38" ""
+ "uTorrent" "µTorrent" "(Verified) BitTorrent Inc" "c:\users\user\appdata\roaming\utorrent\utorrent.exe" "2019. 06. 03. 18:23" ""
+ "Google Chrome" "Google Chrome Installer" "(Verified) Google LLC" "c:\program files (x86)\google\chrome\application\74.0.3729.169\installer\chrmstp.exe" "2019. 05. 20. 7:00" ""
+ "n/a" "Microsoft .NET IE SECURITY REGISTRATION" "(Verified) Microsoft Corporation" "c:\windows\system32\mscories.dll" "2018. 02. 08. 6:18" ""



"Task Scheduler"

+ "\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-User" "Adobe GC Invoker Utility" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agcinvokerutility.exe" "2019. 05. 04. 16:21" ""
+ "\ASUS\ASUS AI Suite II Execute" "ASUS Routine Controller" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\asroutinecontroller.exe" "2012. 03. 13. 6:33" ""
+ "\ASUS\USB 3.0 Boost Service" "U3Checker MFC Application" "" "c:\program files (x86)\asus\ai suite ii\usb 3.0 boost\u3boostsvr.exe" "2011. 09. 09. 17:15" ""
+ "\CCleanerSkipUAC" "CCleaner" "(Verified) Piriform Software Ltd" "c:\program files\ccleaner\ccleaner.exe" "2018. 12. 10. 11:47" ""
+ "\HardDiskSentinel\Hard Disk Sentinel_User" "Hard Disk Sentinel" "(Verified) Janos Mathe" "c:\program files (x86)\hard disk sentinel\hdsentinel.exe" "1992. 06. 20. 0:22" ""
+ "\Microsoft\Office\Office 15 Subscription Heartbeat" "" "" "File not found: C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe" "" ""
+ "\Microsoft\Office\OfficeTelemetryAgentFallBack2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "2015. 07. 30. 14:19" ""
+ "\Microsoft\Office\OfficeTelemetryAgentLogOn2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "2015. 07. 30. 14:19" ""
+ "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA Container" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA Container" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA GeForce Experience" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvidia geforce experience\nvidia geforce experience.exe" "2019. 05. 23. 11:09" ""
+ "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA nodejs launcher" "(Verified) NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvnode\nvnodejslauncher.exe" "2019. 05. 22. 15:26" ""
+ "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "2019. 05. 14. 20:15" ""
+ "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "2019. 05. 14. 20:15" ""
+ "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
+ "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
+ "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
+ "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
 
Last edited:

Fexerrum

PCHF Member
PCHF Member
Jun 16, 2019
13
2
18
Yes, sorry, I missed it.

Autoruns:

"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\AlternateShell" "" "" "" "2019. 06. 15. 16:25" ""
+ "cmd.exe" "Windows Command Processor" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "1971. 01. 08. 10:44" ""
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2019. 06. 18. 21:11" ""
+ "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "(Verified) Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe" "2018. 04. 11. 9:32" ""
+ "AdobeGCInvoker-1.0" "Adobe GC Invoker Utility" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agcinvokerutility.exe" "2019. 05. 04. 16:21" ""
+ "RtkAudUService" "Realtek HD Audio Universal Service" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\rtkauduservice64.exe" "2019. 01. 15. 10:10" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2019. 04. 09. 20:58" ""
+ "ASUS WiFi GO! FileTransfer Execute" "WiFil GO! File Transfer" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\remote go!\assisttools\wifile\wifiletransfer.exe" "2013. 03. 14. 8:01" ""
+ "LogMeIn Hamachi Ui" "Hamachi Client Application" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe" "2019. 04. 02. 16:58" ""
+ "SunJavaUpdateSched" "Java Update Scheduler" "(Verified) Oracle America, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe" "2017. 12. 20. 4:30" ""
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2019. 06. 18. 21:15" ""
X "DAEMON Tools Lite Automount" "" "" "File not found: C:\Program Files\DAEMON Tools Lite\DTAgent.exe" "" ""
X "Discord" "Discord" "(Verified) Discord Inc." "c:\users\user\appdata\local\discord\app-0.0.305\discord.exe" "2019. 03. 07. 23:44" ""
X "GoToAssist Remote Support Expert" "GoToAssist" "(Verified) LogMeIn, Inc." "c:\users\user\appdata\local\gotoassist remote support expert\1599\g2ax_start.exe" "2018. 04. 24. 14:26" ""
X "Overwolf" "Overwolf Launcher" "(Verified) Overwolf Ltd" "f:\overwolf\overwolflauncher.exe" "2019. 03. 05. 13:09" ""
X "Spotify" "Spotify" "(Verified) Spotify AB" "c:\users\user\appdata\roaming\spotify\spotify.exe" "2019. 06. 10. 15:38" ""
X "uTorrent" "µTorrent" "(Verified) BitTorrent Inc" "c:\users\user\appdata\roaming\utorrent\utorrent.exe" "2019. 06. 03. 18:23" ""
X "VPN Unlimited" "VPN Unlimited Launcher" "(Verified) KeepSolid Inc." "c:\program files (x86)\vpn unlimited\vpn-unlimited-launcher.exe" "2018. 10. 15. 10:54" ""
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "2018. 05. 26. 7:19" ""
+ "Google Chrome" "Google Chrome Installer" "(Verified) Google LLC" "c:\program files (x86)\google\chrome\application\74.0.3729.169\installer\chrmstp.exe" "2019. 05. 20. 7:00" ""
+ "n/a" "Microsoft .NET IE SECURITY REGISTRATION" "(Verified) Microsoft Corporation" "c:\windows\system32\mscories.dll" "2018. 02. 08. 6:18" ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "2018. 05. 26. 7:09" ""
+ "n/a" "Microsoft .NET IE SECURITY REGISTRATION" "(Verified) Microsoft Corporation" "c:\windows\syswow64\mscories.dll" "2018. 02. 08. 6:03" ""
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" "" "2018. 11. 03. 19:58" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "(Verified) Microsoft Corporation" "c:\program files\common files\microsoft shared\office16\msoxmlmf.dll" "2017. 06. 27. 16:18" ""
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "2019. 06. 18. 8:50" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
+ "WinRAR" "WinRAR shell extension" "(Verified) win.rar GmbH" "c:\program files\winrar\rarext.dll" "2019. 02. 24. 21:03" ""
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "2019. 04. 09. 20:58" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not Verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" "" "2018. 05. 26. 7:09" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not Verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "2018. 05. 26. 7:09" ""
+ "NvCplDesktopContext" "NVIDIA Display Shell Extension" "(Verified) NVIDIA Corporation" "c:\windows\system32\nvshext.dll" "2019. 05. 22. 23:50" ""
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "2019. 06. 18. 8:50" ""
+ "7-Zip" "7-Zip Shell Extension" "(Not Verified) Igor Pavlov" "c:\program files\7-zip\7-zip.dll" "2018. 01. 28. 17:00" ""
+ "WinRAR" "WinRAR shell extension" "(Verified) win.rar GmbH" "c:\program files\winrar\rarext.dll" "2019. 02. 24. 21:03" ""
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "2018. 05. 26. 7:09" ""
+ "WinRAR" "WinRAR shell extension" "(Verified) win.rar GmbH" "c:\program files\winrar\rarext.dll" "2019. 02. 24. 21:03" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "2018. 11. 03. 19:58" ""
+ " SkyDrivePro1 (ErrorConflict)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
+ " SkyDrivePro2 (SyncInProgress)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
+ " SkyDrivePro3 (InSync)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "2018. 11. 03. 19:58" ""
+ "Microsoft OneDrive for Business Browser Helper" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "2018. 05. 29. 22:02" ""
+ "Skype for Business Browser Helper" "Skype for Business" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\ochelper.dll" "2018. 04. 10. 20:57" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "2019. 06. 18. 8:50" ""
+ "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_161\bin\ssv.dll" "2017. 12. 20. 4:04" ""
+ "{DBC80044-A445-435b-BC74-9C25C1C588A9}" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_161\bin\jp2ssv.dll" "2017. 12. 20. 4:04" ""
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "2018. 11. 03. 19:58" ""
+ "Kül&dés a OneNote programba" "Microsoft OneNote Internet Explorer Add-in" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\onbttnie.dll" "2018. 05. 08. 17:02" ""
+ "OneNote – c&satolt feljegyzések" "Microsoft OneNote Internet Explorer Add-in" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\onbttnielinkednotes.dll" "2018. 05. 08. 17:11" ""
+ "Skype Vállalati verzió – Gyorshívó" "Skype for Business" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\ochelper.dll" "2018. 04. 10. 20:57" ""
"Task Scheduler" "" "" "" "" ""
X "\Adobe Acrobat Update Task" "Adobe Reader and Acrobat Manager" "(Verified) Adobe Systems, Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe" "2018. 12. 17. 5:24" ""
X "\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-Peti" "Adobe GC Invoker Utility" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agcinvokerutility.exe" "2019. 05. 04. 16:21" ""
X "\AdobeGCInvoker-1.0-DESKTOP-NQ7JARN-User" "Adobe GC Invoker Utility" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agcinvokerutility.exe" "2019. 05. 04. 16:21" ""
X "\AMDAutoUpdate" "AMD AutoUpdate" "(Verified) Advanced Micro Devices Inc." "c:\program files\amd\autoupdate\amdautoupdate.exe" "2018. 08. 02. 9:00" ""
X "\ASUS\ASUS AI Suite II Execute" "ASUS Routine Controller" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\asroutinecontroller.exe" "2012. 03. 13. 6:33" ""
X "\ASUS\ASUS Network iControl Help Execute" "NetSvcHelpEntry" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\network icontrol\netsvchelp\netsvchelpentry.exe" "2013. 01. 24. 10:33" ""
X "\ASUS\ASUS WiFi GO! Server Execute" "ASUS WiFi GO! Server" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\remote go!\assisttools\wifi go! server.exe" "2013. 08. 26. 4:20" ""
X "\ASUS\USB 3.0 Boost Service" "U3Checker MFC Application" "" "c:\program files (x86)\asus\ai suite ii\usb 3.0 boost\u3boostsvr.exe" "2011. 09. 09. 17:15" ""
X "\Avast Software\Overseer" "Avast Overseer" "(Verified) AVAST Software s.r.o." "c:\program files\common files\avast software\overseer\overseer.exe" "2019. 06. 03. 10:23" ""
X "\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" "Bitdefender Agent WatchDog" "(Verified) Bitdefender SRL" "c:\program files\bitdefender agent\watchdog.exe" "2019. 06. 13. 17:30" ""
X "\CCleaner Update" "CCleaner emergency updater" "(Verified) Piriform Software Ltd" "c:\program files\ccleaner\ccupdate.exe" "2019. 02. 04. 14:09" ""
X "\CCleanerSkipUAC" "CCleaner" "(Verified) Piriform Software Ltd" "c:\program files\ccleaner\ccleaner.exe" "2018. 12. 10. 11:47" ""
X "\GoogleUpdateTaskMachineCore" "Google telepítő" "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "2017. 07. 14. 4:07" ""
X "\GoogleUpdateTaskMachineUA" "Google telepítő" "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "2017. 07. 14. 4:07" ""
X "\HardDiskSentinel\Hard Disk Sentinel_User" "Hard Disk Sentinel" "(Verified) Janos Mathe" "c:\program files (x86)\hard disk sentinel\hdsentinel.exe" "1992. 06. 20. 0:22" ""
X "\Microsoft\Office\Office 15 Subscription Heartbeat" "" "" "File not found: C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe" "" ""
X "\Microsoft\Office\OfficeTelemetryAgentFallBack2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "2015. 07. 30. 14:19" ""
X "\Microsoft\Office\OfficeTelemetryAgentLogOn2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "2015. 07. 30. 14:19" ""
X "\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" "Microsoft Malware Protection Command Line Utility" "(Not verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
X "\Microsoft\Windows\Windows Defender\Windows Defender Cleanup" "Microsoft Malware Protection Command Line Utility" "(Not Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
X "\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "(Not Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
X "\Microsoft\Windows\Windows Defender\Windows Defender Verification" "Microsoft Malware Protection Command Line Utility" "(Not Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\mpcmdrun.exe" "1913. 03. 01. 20:46" ""
X "\Microsoft_Hardware_Launch_ipoint_exe" "IPoint.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\ipoint.exe" "2018. 11. 19. 4:45" ""
X "\Microsoft_Hardware_Launch_itype_exe" "IType.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\itype.exe" "2018. 11. 19. 4:37" ""
X "\Microsoft_Hardware_Launch_mousekeyboardcenter_exe" " " "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\mousekeyboardcenter.exe" "2018. 11. 19. 4:49" ""
X "\Microsoft_MKC_Logon_Task_ceip.exe" "CEIP" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\ceip.exe" "2018. 11. 19. 4:27" ""
X "\Microsoft_MKC_Logon_Task_ipoint.exe" "IPoint.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\ipoint.exe" "2018. 11. 19. 4:45" ""
X "\Microsoft_MKC_Logon_Task_itype.exe" "IType.exe" "(Verified) Microsoft Corporation" "c:\program files\microsoft mouse and keyboard center\itype.exe" "2018. 11. 19. 4:37" ""
X "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA Container" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
X "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA Container" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
X "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA GeForce Experience" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvidia geforce experience\nvidia geforce experience.exe" "2019. 05. 23. 11:09" ""
X "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA nodejs launcher" "(Verified) NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvnode\nvnodejslauncher.exe" "2019. 05. 22. 15:26" ""
X "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "2019. 05. 14. 20:15" ""
X "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA driver profile updater" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\update core\nvprofileupdater64.exe" "2019. 05. 14. 20:15" ""
X "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
X "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
X "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
X "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA crash and telemetry reporter" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvbackend\nvtmrep.exe" "2019. 05. 14. 20:22" ""
X "\OneDrive Standalone Update Task-S-1-5-21-1620667201-3233266275-4011120631-1002" "" "" "File not found: C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe" "" ""
X "\Overwolf Updater Task" "OverwolfUpdater" "(Verified) Overwolf Ltd" "f:\overwolf\overwolfupdater.exe" "2019. 03. 06. 15:26" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "2019. 06. 18. 21:11" ""
+ "AdobeARMservice" "Adobe Acrobat Update Service: Adobe Acrobat Updater keeps your Adobe software up to date." "(Verified) Adobe Systems, Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe" "2018. 12. 17. 5:23" ""
+ "AGMService" "Adobe Genuine Monitor Service: Adobe Genuine Monitor Service" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agmservice.exe" "2019. 05. 04. 16:21" ""
+ "AGSService" "Adobe Genuine Software Integrity Service: Adobe Genuine Software Integrity Service" "(Verified) Adobe Inc." "c:\program files (x86)\common files\adobe\adobegcclient\agsservice.exe" "2019. 05. 04. 16:21" ""
+ "asComSvc" "ASUS Com Service: " "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\axsp\1.00.19\atkexcomsvc.exe" "2012. 05. 17. 13:45" ""
+ "asHmComSvc" "ASUS HM Com Service: " "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\aahm\1.00.20\aahmsvc.exe" "2012. 02. 02. 11:43" ""
+ "AsSysCtrlService" "ASUS System Control Service: " "" "c:\program files (x86)\asus\assysctrlservice\1.00.22\assysctrlservice.exe" "2014. 03. 21. 10:31" ""
+ "AsusFanControlService" "AsusFanControlService: ASUS Motherboard Fan Control Service" "(Not verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\asusfancontrolservice\1.02.00\asusfancontrolservice.exe" "2012. 11. 09. 9:51" ""
+ "BEService" "BattlEye Service: " "(Verified) BattlEye Innovations e.K." "c:\program files (x86)\common files\battleye\beservice.exe" "2019. 01. 25. 7:20" ""
+ "Disc Soft Lite Bus Service" "Disc Soft Lite Bus Service: Disc Soft Bus Service Lite" "(Verified) Disc Soft Ltd" "c:\program files\daemon tools lite\discsoftbusservicelite.exe" "2016. 11. 21. 14:01" ""
+ "EasyAntiCheat" "EasyAntiCheat: Provides integrated security and services for online multiplayer games." "(Verified) EasyAntiCheat Oy" "c:\program files (x86)\easyanticheat\easyanticheat.exe" "2018. 06. 19. 8:58" ""
+ "FontCache3.0.0.0" "Windows megjelenítési alaprendszer betűtípus-gyorsítótára 3.0.0.0: A gyakran használt betűtípusadatok gyorsítótárba másolásával javítja a Windows megjelenítési alaprendszer (Windows Presentation Foundation – WPF) alkalmazások teljesítményét. A WPF-alkalmazások elindítják ezt a szolgáltatást, ha még nem fut. E szolgáltatás letiltható, azonban ez csökkenti a WPF-alkalmazások teljesítményét." "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe" "2018. 02. 09. 7:03" ""
+ "GalaxyClientService" "GalaxyClientService: GOG Galaxy component for handling privileged tasks." "(Verified) GOG Sp. z o.o." "f:\program files (x86)\gog galaxy\galaxyclientservice.exe" "2018. 02. 02. 16:22" ""
+ "GalaxyCommunication" "GalaxyCommunication: GalaxyCommunicationService" "(Verified) GOG Sp. z o.o." "c:\programdata\gog.com\galaxy\redists\galaxycommunication.exe" "2018. 05. 23. 12:05" ""
+ "GoogleChromeElevationService" "Google Chrome Elevation Service: Google Chrome" "(Verified) Google LLC" "c:\program files (x86)\google\chrome\application\74.0.3729.169\elevation_service.exe" "2019. 05. 20. 7:00" ""
+ "gupdate" "Google frissítés Szolgáltatás (gupdate): Rendszeresen frissíti az Ön által használt Google-szoftvereket. Ha kikapcsolja vagy leállítja ezt a szolgáltatást, a Google-szoftverek nem frissülnek, ami azt jelenti, hogy az esetlegesen felmerülő biztonsági hibákat nem lehet kijavítani, és az új funkciók sem jelennek meg. Ez a szolgáltatás eltávolítja saját magát, ha semmilyen Google-szoftver nem használja." "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "2017. 07. 14. 4:07" ""
+ "gupdatem" "Google frissítés Szolgáltatás (gupdatem): Rendszeresen frissíti az Ön által használt Google-szoftvereket. Ha kikapcsolja vagy leállítja ezt a szolgáltatást, a Google-szoftverek nem frissülnek, ami azt jelenti, hogy az esetlegesen felmerülő biztonsági hibákat nem lehet kijavítani, és az új funkciók sem jelennek meg. Ez a szolgáltatás eltávolítja saját magát, ha semmilyen Google-szoftver nem használja." "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "2017. 07. 14. 4:07" ""
+ "Hamachi2Svc" "LogMeIn Hamachi Tunneling Engine: Hamachi Client Tunneling Engine" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\x64\hamachi-2.exe" "2019. 04. 02. 17:00" ""
+ "HiPatchService" "Hi-Rez Studios Authenticate and Update Service: HiPatchService" "(Not verified) Hi-Rez Studios" "f:\program files (x86)\hi-rez studios\hipatchservice.exe" "2018. 06. 11. 20:57" ""
+ "LMIGuardianSvc" "LMIGuardianSvc: Support LogMeIn processes with quality assurance feedback" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\x64\lmiguardiansvc.exe" "2016. 05. 27. 15:03" ""
+ "NvContainerLocalSystem" "NVIDIA LocalSystem Container: Container service for NVIDIA root features" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "NvContainerNetworkService" "NVIDIA NetworkService Container: Container service for NVIDIA network features" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe" "2019. 02. 26. 13:38" ""
+ "NVDisplay.ContainerLocalSystem" "NVIDIA Display Container LS: Container service for NVIDIA root features" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\display.nvcontainer\nvdisplay.container.exe" "2019. 02. 26. 13:38" ""
+ "NvTelemetryContainer" "NVIDIA Telemetry Container: Container service for NVIDIA Telemetry" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvtelemetry\nvtelemetrycontainer.exe" "2019. 02. 26. 13:38" ""
+ "Origin Client Service" "Origin Client Service: " "" "File not found: C:\Program Files (x86)\Origin\OriginClientService.exe" "" ""
+ "ose" "Office Source Engine: Ez a szolgáltatás menti a frissítéshez és javításhoz használandó telepítőfájlokat, és a telepítési frissítések letöltéséhez, illetve a Watson program által küldött hibajelentésekhez van rá szükség." "(Verified) Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe" "2018. 06. 12. 16:36" ""
+ "OverwolfUpdater" "Overwolf Updater Windows SCM: OverwolfUpdater" "(Verified) Overwolf Ltd" "f:\overwolf\overwolfupdater.exe" "2019. 03. 06. 15:26" ""
+ "ProductAgentService" "ProductAgentService: Bitdefender Product Agent Service description" "(Verified) Bitdefender SRL" "c:\program files\bitdefender agent\productagentservice.exe" "2019. 05. 14. 20:13" ""
+ "RtkAudioUniversalService" "Realtek Audio Universal Service: Realtek Audio Universal Service" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\rtkauduservice64.exe" "2019. 01. 15. 10:10" ""
+ "Steam Client Service" "Steam Client Service: Steam Client Service monitors and updates Steam content" "(Verified) Valve" "c:\program files (x86)\common files\steam\steamservice.exe" "2019. 06. 18. 1:31" ""
+ "TeamViewer" "TeamViewer 13: TeamViewer Remote Software" "(Verified) TeamViewer GmbH" "c:\program files (x86)\teamviewer\teamviewer_service.exe" "2018. 09. 10. 16:07" ""
+ "VPNUnlimitedService" "VPN Unlimited Service: VPN Unlimited Service" "(Verified) KeepSolid Inc." "c:\program files (x86)\vpn unlimited\vpn-unlimited-daemon.exe" "2018. 10. 15. 10:54" ""
+ "WdNisSvc" "A Windows Defender víruskereső hálózatvizsgáló szolgáltatása: Védelem a hálózati protokollok ismert és újonnan észlelt biztonsági réseit célzó behatolási kísérletek ellen" "(Not verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\nissrv.exe" "1902. 09. 24. 20:05" ""
+ "WinDefend" "Windows Defender víruskereső szolgáltatás: A felhasználói adatok védelme a kártevők és az egyéb vélhetően nemkívánatos szoftverek ellen" "(Not verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1905.4-0\msmpeng.exe" "1954. 01. 31. 5:02" ""
"HKLM\System\CurrentControlSet\Services" "" "" "" "2019. 06. 18. 21:11" ""
+ "AiChargerPlus" "AiChargerPlus: ASUS Charger driver" "(Verified) ASUSTeK Computer Inc." "c:\windows\syswow64\drivers\aichargerplus.sys" "2012. 04. 19. 3:17" ""
+ "amdgpio2" "AMD GPIO Client Driver: AMD GPIO Controller Driver" "(Verified) Advanced Micro Devices Inc." "c:\windows\system32\drivers\amdgpio2.sys" "2018. 03. 30. 12:56" ""
+ "amdkmcsp" "AMD Kernel Mode CSP Service: amdkmcsp sys" "(Verified) Advanced Micro Devices Inc." "c:\windows\system32\drivers\amdkmcsp.sys" "2017. 06. 05. 23:27" ""
+ "AMDPCIDev" "AMD PCI: AMD PCI Device driver" "(Verified) Advanced Micro Devices Inc." "c:\windows\system32\drivers\amdpcidev.sys" "2018. 04. 12. 8:14" ""
+ "amdpsp" "AMD PSP Service: amdpsp sys" "(Verified) Advanced Micro Devices, Inc." "c:\windows\system32\drivers\amdpsp.sys" "2017. 10. 27. 21:49" ""
+ "AMDRyzenMasterDriverV13" "AMDRyzenMasterDriverV13: AMD Ryzen Master Service Driver" "(Verified) Advanced Micro Devices Inc." "c:\program files\amd\ryzenmaster\bin\amdryzenmasterdriver.sys" "2018. 10. 18. 6:47" ""
+ "AsIO" "AsIO: " "(Verified) ASUSTeK Computer Inc." "c:\windows\syswow64\drivers\asio.sys" "2012. 08. 22. 11:54" ""
+ "asmthub3" "ASMedia USB3.1 Hub Service: ASMedia USB3 Hub Driver" "(Verified) ASMedia Technology Inc." "c:\windows\system32\drivers\asmthub3.sys" "2016. 04. 11. 8:16" ""
+ "asmtxhci" "ASMedia XHCI Service: ASMedia xHCI Host Controller Driver" "(Verified) ASMedia Technology Inc." "c:\windows\system32\drivers\asmtxhci.sys" "2016. 04. 11. 8:15" ""
+ "asstahci64" "asstahci64: Asmedia 106x SATA Host Controller Driver" "(Verified) ASMedia Technology Inc." "c:\windows\system32\drivers\asstahci64.sys" "2015. 06. 17. 5:36" ""
+ "AsUpIO" "AsUpIO: " "(Verified) ASUSTeK Computer Inc." "c:\windows\syswow64\drivers\asupio.sys" "2010. 08. 03. 4:47" ""
+ "ASUSFILTER" "ASUSFILTER: ASUS USB Hub filter driver" "(Verified) MCCI Corporation" "c:\windows\syswow64\drivers\asusfilter.sys" "2011. 09. 20. 17:46" ""
+ "catchme" "catchme: " "" "File not found: C:\Users\User\AppData\Local\Temp\catchme.sys" "" ""
+ "dg_ssudbus" "SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.): SAMSUNG USB Composite Device Driver" "(Verified) Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\ssudbus.sys" "2017. 05. 15. 9:53" ""
+ "dtlitescsibus" "DAEMON Tools Lite Virtual SCSI Bus: DAEMON Tools Lite Virtual SCSI Bus Driver" "(Verified) Disc Soft Ltd" "c:\windows\system32\drivers\dtlitescsibus.sys" "2015. 09. 24. 22:17" ""
+ "dtliteusbbus" "DAEMON Tools Lite Virtual USB Bus: DAEMON Tools Lite Virtual USB Bus Driver" "(Verified) Disc Soft Ltd" "c:\windows\system32\drivers\dtliteusbbus.sys" "2015. 12. 28. 15:05" ""
+ "EasyAntiCheatSys" "EasyAntiCheatSys: EasyAntiCheat Driver" "(Verified) EasyAntiCheat Oy" "c:\program files (x86)\easyanticheat\easyanticheat.sys" "2019. 06. 11. 11:07" ""
+ "hidusbf" "USB Mouse Rate Adjuster Lower Filter by SweetLow: USB Mouse Rate Adjuster Lower Filter" "(Verified) Jeshua Starr Scully" "c:\windows\system32\drivers\hidusbf.sys" "2016. 04. 13. 21:28" ""
+ "HWiNFO" "HWiNFO Kernel Driver: HWiNFO AMD64 Kernel Driver" "(Verified) Martin Malik - REALiX" "c:\windows\system32\drivers\hwinfo64a.sys" "2019. 03. 14. 9:28" ""
+ "iaLPSSi_GPIO" "Intel(R) soros be- és kimeneti vezérlő, GPIO-vezérlő illesztőprogramja: Intel(R) Serial IO GPIO Controller Driver" "(Verified) Intel Corporation - Client Components Group" "c:\windows\system32\drivers\ialpssi_gpio.sys" "2015. 02. 02. 11:00" ""
+ "IntcAzAudAddService" "Service for Realtek HD Audio (WDM): Realtek(r) High Definition Audio Function Driver" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys" "2019. 01. 15. 13:45" ""
+ "MpKslc322314b" "MpKslc322314b: KSLDriver" "(Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\definition updates\{e45968d6-4fe6-4b6b-90ca-d2029460bfc0}\mpkslc322314b.sys" "1989. 02. 28. 3:54" ""
+ "ndisrd" "WinpkFilter LightWeight Filter: WinpkFilter LightWeight Filter" "(Verified) Realtek Semiconductor Corp" "c:\windows\system32\drivers\ndisrd.sys" "2013. 02. 21. 4:40" ""
+ "NVHDA" "Service for NVIDIA High Definition Audio Driver: NVIDIA HDMI Audio Driver" "(Verified) NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys" "2019. 03. 19. 6:47" ""
+ "nvlddmkm" "nvlddmkm: NVIDIA Windows Kernel Mode Driver, Version 430.86 " "(Verified) NVIDIA Corporation" "c:\windows\system32\driverstore\filerepository\nv_dispi.inf_amd64_b49751b9038af669\nvlddmkm.sys" "2019. 05. 22. 23:18" ""
+ "NvStreamKms" "NVIDIA KMS: Nvidia Streaming Kernel Service" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nvstreamsrv\nvstreamkms.sys" "2018. 06. 26. 1:52" ""
+ "nvvad_WaveExtensible" "NVIDIA Virtual Audio Device (Wave Extensible) (WDM): NVIDIA Virtual Audio Driver" "(Verified) NVIDIA Corporation" "c:\windows\system32\drivers\nvvad64v.sys" "2019. 03. 14. 10:58" ""
+ "nvvhci" "NVVHCI Enumerator Service: Virtual USB Host Controller driver" "(Verified) NVIDIA Corporation" "c:\windows\system32\drivers\nvvhci.sys" "2018. 08. 16. 22:01" ""
+ "rt640x64" "Realtek RT640 NT Driver: Realtek 8125/8136/8168/8169 NDIS 6.40 64-bit Driver " "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\drivers\rt640x64.sys" "2018. 08. 28. 10:09" ""
+ "ssudmdm" "SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.): SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)" "(Verified) Samsung Electronics Co., Ltd." "c:\windows\system32\drivers\ssudmdm.sys" "2017. 05. 15. 9:53" ""
+ "tap0901" "TAP-Windows Adapter V9: TAP-Windows Virtual Network Driver" "(Verified) OpenVPN Technologies, Inc." "c:\windows\system32\drivers\tap0901.sys" "2013. 08. 22. 14:40" ""
+ "VBAudioVACMME" "@oem20.inf,%DeviceName% (WDM);VB-Audio Virtual Cable (WDM): VB Virtual Audio Device" "(Verified) Vincent Burel" "c:\windows\system32\drivers\vbaudio_cable64_win7.sys" "2014. 08. 14. 8:15" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "2019. 06. 15. 19:18" ""
+ "VIDC.RTV1" "" "" "c:\windows\system32\rtvcvfw64.dll" "2012. 09. 28. 21:45" ""
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "2019. 06. 15. 19:18" ""
+ "VIDC.RTV1" "" "" "c:\windows\syswow64\rtvcvfw32.dll" "2012. 09. 28. 21:45" ""
"HKLM\SOFTWARE\Classes\Htmlfile\Shell\Open\Command\(Default)" "" "" "" "2019. 03. 23. 2:24" ""
+ "C:\Program Files\Internet Explorer\IEXPLORE.EXE" "Internet Explorer" "(Verified) Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe" "1940. 11. 22. 20:25" ""
"HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" "" "2018. 04. 12. 1:38" ""
+ "_wow64" "" "" "c:\windows\syswow64\wow64.dll" "" ""
+ "_wow64cpu" "" "" "c:\windows\syswow64\wow64cpu.dll" "" ""
+ "_wow64win" "" "" "c:\windows\syswow64\wow64win.dll" "" ""
+ "_wowarmhw" "" "" "c:\windows\system32\wowarmhw.dll" "" ""
+ "_wowarmhw" "" "" "c:\windows\syswow64\wowarmhw.dll" "" ""
"HKCU\Software\Microsoft\Office\Outlook\Addins" "" "" "" "2018. 11. 03. 20:08" ""
+ "{5B7AB748-6D2E-4827-90A5-32B426DC61B7}" "" "" "" "2018. 11. 03. 20:08" ""
"HKCU\Software\Microsoft\Office\Excel\Addins" "" "" "" "2018. 11. 03. 20:08" ""
+ "{509E7382-B849-49A4-8A3F-BEAB7E7D904C}" "" "" "" "2018. 11. 03. 20:08" ""
+ "{A2DBA3BE-42CC-4D0E-95FD-BCAA051BA798}" "" "" "" "2018. 11. 03. 20:08" ""
"HKLM\Software\Wow6432Node\Microsoft\Office\Excel\Addins" "" "" "" "2018. 11. 03. 20:00" ""
+ "{237428F1-F2C7-4F86-B7ED-ADE148ACF95F}" "Microsoft Office 2016 component" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\dcf\nativeshim.dll" "2015. 07. 30. 14:15" ""
+ "{F39D01F3-69C1-45E1-93B2-7BF0BC6EB63E}" "Microsoft Office 2016 component" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\addins\power map excel add-in\excelpluginshell.dll" "2015. 07. 30. 14:14" ""

Adw Remover:

[-] Deleted ->> File ->> C:\Users\User\\Desktop\mc2\Bukkit\.git\refs\heads\spigot
[-] Deleted ->> File ->> C:\Users\User\\Desktop\mc2\Bukkit\.git\logs\refs\heads\spigot
[-] Deleted ->> File ->> C:\Users\User\\Desktop\mc2\Spigot\Bukkit\.git\refs\remotes\origin\spigot
[-] Deleted ->> File ->> C:\Users\User\\Desktop\mc2\Spigot\Bukkit\.git\logs\refs\remotes\origin\spigot
[-] Repaired ->> File ->> C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Preferences
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Jul 22, 2016
3,211
544
Need to uncheck these and reboot.

"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2019. 04. 09. 20:58" ""


+ "ASUS WiFi GO! FileTransfer Execute" "WiFil GO! File Transfer" "(Verified) ASUSTeK Computer Inc." "c:\program files (x86)\asus\ai suite ii\remote go!\assisttools\wifile\wifiletransfer.exe" "2013. 03. 14. 8:01" ""
+ "LogMeIn Hamachi Ui" "Hamachi Client Application" "(Verified) LogMeIn, Inc." "c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe" "2019. 04. 02. 16:58" ""

Unless you use the two above on a daily basis...

+ "SunJavaUpdateSched" "Java Update Scheduler" "(Verified) Oracle America, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe" "2017. 12. 20. 4:30" ""

How is your machine running now?
 
Status
Not open for further replies.