﻿Лог утилиты random's system information tool 1.17(автор: random/random)
Run by MOHCTP at 2023-01-27 18:16:11
Microsoft Windows 7 Professional  Service Pack 1
Системный раздел C:  Свободно 813 GB (85%) размер 953 GB
Total RAM: 16332 MB (82% free)
X64


====== Список процессов ======

C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\rundll32.exe "G:\Distrib\wufuc_v1.0.1.201-a52637d4\wufuc\wufuc64.dll",RUNDLL32_Start
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\taskeng.exe
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe" /AUTORUN
"C:\Program Files (x86)\UnHackMe\hackmon.exe" $(Arg0)
C:\Windows\Explorer.EXE
"C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\FastPCTools\Fast VD\FastVD.exe" /astart
"C:\Program Files\DVDFab\Photo Enhancer AI\liveUpdate.exe" --run_mode=background_check
"C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe" /start
"C:\Program Files (x86)\360\Total Security\PromoUtil.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\360\Total Security\softmgr\SML\SoftMgrLite.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe" /watch
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000  -c
"C:\Program Files (x86)\360\Total Security\QHSafeMain.exe"
"C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe"
"C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument http://google.ru/
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" http://google.ru
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\MOHCTP\AppData\Local\AVAST Software\Browser\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\MOHCTP\AppData\Local\AVAST Software\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\MOHCTP\AppData\Local\AVAST Software\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=Avast --annotation=ver=107.0.19254.107 --initial-client-data=0xd0,0xd4,0xd8,0xa4,0xdc,0x7fee11aaea8,0x7fee11aaeb8,0x7fee11aaec8
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4464 CREDAT:275457 /prefetch:2
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=gpu-process --start-stack-profiler --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1268 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:2
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=ru --service-sandbox-type=none --start-stack-profiler --mojo-platform-channel-handle=1528 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:8
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=ru --service-sandbox-type=utility --mojo-platform-channel-handle=1712 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:8
"C:\Program Files (x86)\UnHackMe\reanimator.exe" /wiz /full /hid
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=265226656 --mojo-platform-channel-handle=2544 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=265418696 --mojo-platform-channel-handle=2992 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=265471176 --mojo-platform-channel-handle=3160 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=265473823 --mojo-platform-channel-handle=3116 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=265475583 --mojo-platform-channel-handle=3260 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=265477641 --mojo-platform-channel-handle=3344 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --extension-process --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=265479471 --mojo-platform-channel-handle=3332 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Windows\system32\wuauclt.exe"
"D:\_Work\AutoLogger_\AutoLogger.exe" 
"D:\_Work\AutoLogger_\AutoLogger\AV\AV_Z.exe" Script=AV\GeneralScript.txt HiddenMode=0
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=449957541 --mojo-platform-channel-handle=2052 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4464 CREDAT:275471 /prefetch:2
"C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=ru --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --time-ticks-at-unix-epoch=-1674832042490583 --launch-time-ticks=450137932 --mojo-platform-channel-handle=1992 --field-trial-handle=1304,i,17815149421533744690,16275183649739932506,131072 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchFilterHost.exe" 0 556 560 568 65536 564 
"D:\_Work\AutoLogger_\AutoLogger\RSIT\RSITx64.exe" /silent /m3 /autolog /logfolder "D:\_Work\AutoLogger_\AutoLogger\RSIT\Log" /nohjt /rus 
C:\Windows\system32\wbem\wmiprvse.exe

====== Папка назначенных заданий ======

C:\Windows\system32\tasks\360ZipUpdater - C:\Program Files (x86)\360\360zip\360zipUpdate.exe /detectupdate
C:\Windows\system32\tasks\AMD Updater - "C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe" /AUTOUPDATEIN
C:\Windows\system32\tasks\Avast Secure Browser Heartbeat Task (Hourly) - C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe --type=heartbeat --hourly
C:\Windows\system32\tasks\Avast Secure Browser Heartbeat Task (Logon) - C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe --type=heartbeat --logon
C:\Windows\system32\tasks\AvastUpdateTaskMachineCore - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c
C:\Windows\system32\tasks\AvastUpdateTaskMachineUA - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\FreeDownloadManagerHelperService - "C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe"
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\GraphicsCardEngine - "C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe"
C:\Windows\system32\tasks\klcp_update - "C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe" /verysilent /update /freq=30
C:\Windows\system32\tasks\KMSAutoNet - "C:\ProgramData\KMSAutoS\KMSAuto Net.exe" /win=act
C:\Windows\system32\tasks\MicrosoftEdgeUpdateTaskMachineCore - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /c
C:\Windows\system32\tasks\MicrosoftEdgeUpdateTaskMachineUA - C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\novaPDF 10 Telemetry - "C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe" /oem=nPdf10_Softland
C:\Windows\system32\tasks\novaPDF 10 Update - "C:\Program Files\Softland\novaPDF 10\Driver\UpdateApplication.exe" /oem=nPdf10_Softland /silent
C:\Windows\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\Windows\system32\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
C:\Windows\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\Windows\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
C:\Windows\system32\tasks\Soft Organizer Applications Updates Check - C:\Program Files\Soft Organizer\SoftOrganizer.exe -SilentUpdatesCheck
C:\Windows\system32\tasks\UnHackMe Task Scheduler - C:\Program Files (x86)\UnHackMe\hackmon.exe $(Arg0)
C:\Windows\system32\tasks\WinSysCleanUC - C:\Program Files\WinSysClean X10 PRO\WinSysClean.exe
C:\Windows\system32\tasks\wufuc.{72EEE38B-9997-42BD-85D3-2DD96DA17307} - "C:\Windows\System32\rundll32.exe" "G:\Distrib\wufuc_v1.0.1.201-a52637d4\wufuc\wufuc64.dll",RUNDLL32_Start
C:\Windows\system32\tasks\{1F217DED-E972-4BBC-B6CE-9AD6ACD4B0DE} - I:\GSetup.exe
C:\Windows\system32\tasks\{25F0D702-F176-405D-B654-C1899D2A87B4} - I:\GSetup.exe
C:\Windows\system32\tasks\{6F266901-B75C-42A9-9F31-C7422287CB47} - I:\run.exe
C:\Windows\system32\tasks\{DE7447D3-C137-4131-9BFB-3E1394300067} - I:\run.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-3998227131-1028738202-2379393147-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - %systemroot%\system32\sc.exe start osppsvc
C:\Windows\system32\tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan - c:\program files\windows defender\MpCmdRun.exe Scan -ScheduleJob -WinTask -RestrictPrivilegesScan
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Microsoft\Office\Office 15 Subscription Heartbeat - %ProgramFiles%\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\Windows\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - "C:\Program Files\Microsoft Office\Office16\msoia.exe" scan upload mininterval:2880
C:\Windows\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - "C:\Program Files\Microsoft Office\Office16\msoia.exe" scan upload
C:\Windows\system32\tasks\HardDiskSentinel\Hard Disk Sentinel_MOHCTP - C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe /AUTORUN
C:\Windows\system32\tasks\Abelssoft\FileFusion_97 - C:\ProgramData\Abelssoft\FileFusion\Program\FileFusion.exe -remind -silent -autorun

=========Mozilla firefox=========

ProfilePath - C:\Users\MOHCTP\AppData\Roaming\Mozilla\Firefox\Profiles\qo4733vi.default-release

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.351.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.351.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_351\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=3]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=9]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.351.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.351.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_351\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


C:\Users\MOHCTP\AppData\Roaming\Mozilla\Firefox\Profiles\qo4733vi.default-release\addons.json

C:\Users\MOHCTP\AppData\Roaming\Mozilla\Firefox\Profiles\qo4733vi.default-release\extensions.json
DoH Roll-Out - extension - doh-rollout@mozilla.org - 
Form Autofill - extension - formautofill@mozilla.org - 
Picture-In-Picture - extension - pictureinpicture@mozilla.org - 
Firefox Screenshots - extension - screenshots@mozilla.org - 
WebCompat Reporter - extension - webcompat-reporter@mozilla.org - 
Web Compatibility Interventions - extension - webcompat@mozilla.org - 
System theme — auto - theme - default-theme@mozilla.org - 
Add-ons Search Detection - extension - addons-search-detection@mozilla.com - 
Google - extension - google@search.mozilla.org - 
Wikipedia (en) - extension - wikipedia@search.mozilla.org - 
DuckDuckGo - extension - ddg@search.mozilla.org - 
Light - theme - firefox-compact-light@mozilla.org - 
Dark - theme - firefox-compact-dark@mozilla.org - 
Firefox Alpenglow - theme - firefox-alpenglow@mozilla.org - 

=========Google Chrome=========

C:\Users\MOHCTP\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Интернет-магазин Chrome 0.2
Extension glcimepnljoholdmjchkloafkggfoijh 0 Защита от веб-угроз 360 2.1.44
Extension ibknafobnmndicojahlppolcaaibngjf 0 Поиск  Яндексa 2.0.3.22
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.21
Extension nmmhkkegccagdldgiimedpiccmgmieda   
Homepage: 
default_search_provider.search_url: 
C:\Users\MOHCTP\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage: 
default_search_provider.search_url: 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhancbnhabhandieicagelcddkdfgoif]
"Path"=C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.24.7.8183\BVDChromeExt.crx

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\glcimepnljoholdmjchkloafkggfoijh]
"Path"=


======Снимок реестра ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\109.0.1518.70\BHO\ie_to_edge_bho_64.dll [2023-01-26 594856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
GBHO.BHO - mscoree.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_351\bin\ssv.dll [2022-10-24 737440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office16\URLREDIR.DLL [2015-07-31 580312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B69F34DD-F0F9-42DC-9EDD-957187DA688D}]
SafeMon Class - C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2022-11-24 1198336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~1\MICROS~1\Office16\GROOVEEX.DLL [2017-02-22 2179376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_351\bin\jp2ssv.dll [2022-10-24 351392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\109.0.1518.70\BHO\ie_to_edge_bho.dll [2023-01-26 454056]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_351\bin\ssv.dll [2022-10-24 619168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office16\URLREDIR.DLL [2015-07-31 403672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B69F34DD-F0F9-42DC-9EDD-957187DA688D}]
SafeMon Class - C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2022-11-24 1553936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL [2017-02-22 1524528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_351\bin\jp2ssv.dll [2022-10-24 282792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{1d09c093-f71e-43c3-b948-19316cbd695e} - Smart Backup - mscoree.dll []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"FastVD"=C:\Program Files (x86)\FastPCTools\Fast VD\FastVD.exe [2022-01-31 2433560]
"606ba22cbf04c325e033981c7c38631c"=C:\Program Files\DVDFab\Photo Enhancer AI\liveUpdate.exe [2023-01-17 3040584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AntDM]
C:\Program Files (x86)\Ant Download Manager\AntDM.exe [2022-03-17 5256192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftEther VPN Client UI Helper]
C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2022-06-16 6018112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SoftEther VPN Client Manager Startup.lnk]
C:\PROGRA~1\SOFTET~1\VPNCMG~1.EXE [2022-06-16 6209088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^MOHCTP^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Exiland Backup Standard.lnk]
C:\EXILAN~1\EXILAN~1.EXE [2022-01-27 4499176]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QHSafeTray"=C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [2022-11-24 1919904]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files\Google\Chrome\Application\107.0.5304.121\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}]
"StubPath" = "C:\Program Files (x86)\Microsoft\Edge\Application\109.0.1518.70\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A8504530-742B-42BC-895D-2BAD6406F698}]
"StubPath" = "C:\Program Files (x86)\AVAST Software\Browser\Application\107.0.19254.107\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

====== Ассоциации файлов ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== Список файлов и папок, созданных за последние 3 месяца ======

2023-01-26 21:56:03 ----D---- C:\Users\MOHCTP\AppData\Roaming\RenPy
2023-01-26 18:14:35 ----D---- C:\ProgramData\F-Secure
2023-01-26 18:12:14 ----D---- C:\Users\MOHCTP\AppData\Roaming\CleanerOnePro
2023-01-26 18:12:14 ----D---- C:\ProgramData\Trend Micro
2023-01-26 18:11:55 ----D---- C:\Program Files (x86)\Cleaner One Pro
2023-01-26 17:26:40 ----D---- C:\Program Files\Trend Micro
2023-01-26 17:22:46 ----A---- C:\Windows\ntbtlog.txt
2023-01-19 21:55:38 ----D---- C:\Program Files\muCommander
2023-01-19 13:13:30 ----D---- C:\Users\MOHCTP\AppData\Roaming\StreamUpdate
2023-01-19 11:48:14 ----D---- C:\Users\MOHCTP\AppData\Roaming\LiveUpdate
2023-01-19 11:47:16 ----D---- C:\Users\MOHCTP\AppData\Roaming\DVDFab
2023-01-19 11:39:01 ----D---- C:\Program Files\DVDFab
2023-01-18 20:59:36 ----D---- C:\Users\MOHCTP\AppData\Roaming\Q-Dir
2023-01-18 20:59:36 ----D---- C:\Program Files\Q-Dir
2023-01-18 20:52:17 ----D---- C:\Users\MOHCTP\AppData\Roaming\Fileside
2023-01-18 00:22:52 ----D---- C:\Windows\pss
2023-01-17 23:12:12 ----D---- C:\Program Files\Mozilla Firefox
2023-01-15 11:07:25 ----A---- C:\Windows\system32\GDIPFONTCACHEV1.DAT
2023-01-14 11:27:06 ----A---- C:\Windows\SYSWOW64\GDIPFONTCACHEV1.DAT
2023-01-14 00:43:46 ----D---- C:\Windows\system32\appmgmt
2023-01-07 14:51:04 ----D---- C:\Program Files (x86)\SoftOrbits Photo Retoucher
2022-12-30 16:00:09 ----D---- C:\Users\MOHCTP\AppData\Roaming\Sylpheed
2022-12-30 15:59:16 ----D---- C:\Program Files (x86)\Sylpheed
2022-12-12 19:13:15 ----D---- C:\Program Files\StreamFab
2022-12-02 14:22:41 ----D---- C:\Program Files (x86)\Icecream PDF Converter
2022-11-27 20:48:25 ----D---- C:\Users\MOHCTP\AppData\Roaming\ActionWorks
2022-11-27 20:48:25 ----D---- C:\ProgramData\ActionWorks
2022-11-26 21:35:56 ----D---- C:\Program Files (x86)\SoftOrbits
2022-11-26 21:35:50 ----D---- C:\Program Files (x86)\SoftOrbits Flash Drive Recovery
2022-11-26 21:35:19 ----D---- C:\ProgramData\360zip
2022-11-25 15:50:24 ----D---- C:\Users\MOHCTP\AppData\Roaming\360zip
2022-11-25 15:49:31 ----D---- C:\Windows\system32\CleanLog
2022-11-24 21:27:24 ----SHD---- C:\Users\MOHCTP\AppData\Roaming\360Quarant
2022-11-24 19:53:34 ----SHD---- C:\$360Section
2022-11-24 19:39:24 ----D---- C:\ProgramData\360sd
2022-11-24 19:31:44 ----D---- C:\ProgramData\360Quarant
2022-11-24 19:29:42 ----D---- C:\Users\MOHCTP\AppData\Roaming\360safe
2022-11-24 19:29:40 ----A---- C:\Windows\SYSWOW64\drivers\360AvFlt.sys
2022-11-24 19:29:38 ----D---- C:\Users\MOHCTP\AppData\Roaming\360DesktopLite
2022-11-24 19:29:37 ----A---- C:\Windows\system32\drivers\360fsflt.sys
2022-11-24 19:29:36 ----RSHD---- C:\360SANDBOX
2022-11-24 19:29:36 ----A---- C:\Windows\system32\drivers\BAPIDRV64.SYS
2022-11-24 19:29:36 ----A---- C:\Windows\system32\drivers\360netmon.sys
2022-11-24 19:29:36 ----A---- C:\Windows\system32\drivers\360Box64.sys
2022-11-24 19:29:33 ----A---- C:\Windows\system32\drivers\360Hvm64.sys
2022-11-24 19:29:33 ----A---- C:\Windows\system32\drivers\360Hvm64.dat
2022-11-24 19:29:33 ----A---- C:\Windows\system32\drivers\360Camera64.sys
2022-11-24 19:29:33 ----A---- C:\Windows\system32\drivers\360AvFlt.sys
2022-11-24 19:29:33 ----A---- C:\Windows\system32\drivers\360AntiHacker64.sys
2022-11-24 19:29:16 ----D---- C:\ProgramData\360Safe
2022-11-24 19:29:12 ----D---- C:\Users\MOHCTP\AppData\Roaming\360TotalSecurity
2022-11-24 19:29:12 ----D---- C:\ProgramData\360TotalSecurity
2022-11-24 19:29:02 ----D---- C:\Program Files (x86)\360
2022-11-14 15:48:15 ----D---- C:\ProgramData\SecuritySuite

====== Список файлов и папок, измененных за последние 3 месяца ======

2023-01-27 18:16:10 ----D---- C:\Windows\Temp
2023-01-27 18:14:46 ----D---- C:\Program Files (x86)\UnHackMe
2023-01-27 18:09:54 ----D---- C:\ProgramData\NVIDIA
2023-01-27 18:08:54 ----D---- C:\Windows\SysWOW64
2023-01-27 17:47:44 ----D---- C:\Windows\system32\config
2023-01-27 14:18:47 ----D---- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-27 13:37:20 ----D---- C:\Windows\Tasks
2023-01-27 12:37:41 ----D---- C:\Program Files\WinSysClean X10 PRO
2023-01-27 08:34:25 ----D---- C:\Windows\system32\Tasks
2023-01-27 08:32:16 ----RD---- C:\Unreal Commander
2023-01-27 07:51:51 ----D---- C:\Windows
2023-01-27 02:18:46 ----D---- C:\Windows\inf
2023-01-27 02:18:44 ----D---- C:\Users\MOHCTP\AppData\Roaming\Notepad++
2023-01-26 21:10:24 ----D---- C:\Users\MOHCTP\AppData\Roaming\Elephant Games
2023-01-26 21:05:11 ----RD---- C:\Program Files
2023-01-26 18:14:35 ----D---- C:\ProgramData
2023-01-26 18:11:55 ----RD---- C:\Program Files (x86)
2023-01-26 16:56:08 ----D---- C:\Windows\system32\drivers\etc
2023-01-26 16:49:01 ----SHD---- C:\$Recycle.Bin
2023-01-26 13:13:57 ----SHD---- C:\System Volume Information
2023-01-26 13:02:57 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2023-01-24 21:00:34 ----D---- C:\Users\MOHCTP\AppData\Roaming\Eipix
2023-01-21 23:22:52 ----D---- C:\Users\MOHCTP\AppData\Roaming\GrandMA Studios
2023-01-21 10:05:01 ----D---- C:\ProgramData\KMSAutoS
2023-01-20 22:43:20 ----D---- C:\Users\MOHCTP\AppData\Roaming\DominiGames
2023-01-19 21:59:25 ----D---- C:\W7P_Backups
2023-01-19 21:56:07 ----SHD---- C:\Windows\Installer
2023-01-19 20:28:55 ----D---- C:\Windows\system32\catroot
2023-01-19 20:28:11 ----D---- C:\Windows\System32
2023-01-19 20:28:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2023-01-19 20:21:58 ----D---- C:\Program Files (x86)\Driver Magician
2023-01-19 11:30:20 ----AD---- C:\ProgramData\TEMP
2023-01-18 13:26:21 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2023-01-18 12:08:30 ----D---- C:\Windows\system32\catroot2
2023-01-18 01:12:58 ----D---- C:\Program Files\SoftEther VPN Server
2023-01-17 13:50:05 ----D---- C:\Program Files\SoftEther VPN Client
2023-01-16 14:01:49 ----D---- C:\Program Files (x86)\Hard Disk Sentinel
2023-01-14 00:18:01 ----D---- C:\Windows\debug
2023-01-11 16:54:24 ----D---- C:\Windows\system32\MRT
2023-01-11 16:43:50 ----AC---- C:\Windows\system32\MRT.exe
2023-01-08 15:02:57 ----D---- C:\Users\MOHCTP\AppData\Roaming\AlawarEntertainment
2023-01-07 14:51:04 ----D---- C:\Users\MOHCTP\AppData\Roaming\softorbits
2022-12-31 22:07:32 ----D---- C:\Users\MOHCTP\AppData\Roaming\8floor
2022-12-22 17:26:13 ----D---- C:\Windows\system32\DriverStore
2022-12-22 17:24:08 ----D---- C:\Windows\twain_64
2022-12-22 17:24:08 ----D---- C:\Windows\twain_32
2022-12-22 17:24:08 ----D---- C:\Program Files\VueScan
2022-11-25 15:49:37 ----D---- C:\Windows\Panther
2022-11-25 15:49:37 ----D---- C:\Windows\MiniDump
2022-11-25 15:49:37 ----D---- C:\Windows\Logs
2022-11-25 15:43:38 ----D---- C:\Program Files (x86)\Google
2022-11-25 13:18:33 ----D---- C:\ProgramData\Microsoft Help
2022-11-25 09:25:25 ----D---- C:\Windows\winsxs
2022-11-25 00:16:31 ----A---- C:\Windows\win.ini
2022-11-24 19:38:01 ----HD---- C:\Windows\system32\GroupPolicy
2022-11-24 19:38:01 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2022-11-24 19:29:40 ----D---- C:\Windows\SYSWOW64\drivers
2022-11-24 19:29:37 ----D---- C:\Windows\system32\drivers
2022-11-24 19:29:31 ----D---- C:\Program Files (x86)\Common Files
2022-11-14 11:01:07 ----D---- C:\ProgramData\Avira
2022-11-11 17:26:22 ----D---- C:\ProgramData\Avast Software
2022-11-11 17:26:21 ----D---- C:\Program Files\Common Files
2022-11-02 18:58:54 ----D---- C:\Program Files\SecureAge

File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed

====== Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено) ======

R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2019-05-14 51120]
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2015-03-30 85704]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2015-03-30 43720]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2021-05-12 213736]
R1 360Box64;360Box mini-filter driver; C:\Windows\system32\DRIVERS\360Box64.sys [2022-11-24 350984]
R1 360FsFlt;360FsFlt mini-filter driver; C:\Windows\system32\DRIVERS\360FsFlt.sys [2022-11-24 530696]
R1 360netmon;360netmon; C:\Windows\system32\DRIVERS\360netmon.sys [2022-11-24 87672]
R1 BAPIDRV;BAPIDRV; C:\Windows\system32\DRIVERS\BAPIDRV64.sys [2022-11-24 225576]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2021-05-12 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2017-05-15 40936]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2016-05-19 60416]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2016-12-21 171952]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2019-05-14 38320]
R2 BlueStacksDrv_msi2;BlueStacks Hypervisor_msi2; \??\C:\Program Files\BlueStacks_msi2\BstkDrv_msi2.sys [2021-10-26 315768]
R2 LdVBoxDrv;LdVBoxDrv; \??\C:\Program Files\ldplayerbox\LdVBoxDrv.sys [2022-07-05 319376]
R3 360AntiHacker;360Safe Anti Hacker Service; C:\Windows\System32\Drivers\360AntiHacker64.sys [2022-11-24 191272]
R3 360AvFlt;360AvFlt mini-filter driver; C:\Windows\system32\DRIVERS\360AvFlt.sys [2022-11-24 86248]
R3 360Camera;360Safe Camera Filter Service; C:\Windows\System32\Drivers\360Camera64.sys [2022-11-24 49584]
R3 amdhub31;AMD USB3.1 Hub Service; C:\Windows\system32\DRIVERS\amdhub31.sys [2018-01-27 154464]
R3 amdxhc31;AMD XHCI Service; C:\Windows\system32\DRIVERS\amdxhc31.sys [2018-01-27 465248]
R3 gdrv2;gdrv2; \??\C:\Windows\gdrv2.sys [2021-10-05 32600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2021-07-20 6573360]
R3 Neo_SoftEthernet_VPN;VPN Client Device Driver - SoftEthernet_VPN; C:\Windows\system32\DRIVERS\Neo_0070.sys [2022-06-16 38088]
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2016-08-12 2251576]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2021-09-14 129960]
R3 NvModuleTracker;NvModuleTracker; C:\Windows\system32\DRIVERS\NvModuleTracker.sys [2021-09-14 43408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2021-11-01 48552]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2021-09-14 67464]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2021-07-16 1129976]
R3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2016-04-21 27136]
R3 tapprotonvpn;TAP-ProtonVPN Windows Adapter V9; C:\Windows\system32\DRIVERS\tapprotonvpn.sys [2022-04-01 39696]
R3 UCX01000;USB Controller Extension; C:\Windows\system32\DRIVERS\ucx01000.sys [2018-05-02 216520]
R3 USBHUB3;Концентратор SuperSpeed; C:\Windows\system32\DRIVERS\UsbHub3.sys [2014-07-24 452040]
R3 USBXHCI;xHCI-совместимый хост-контроллер USB; C:\Windows\system32\DRIVERS\USBXHCI.SYS [2017-02-13 342472]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2013-07-24 36864]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2016-05-19 18432]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S1 rtf62;Realtek LightWeight Filter (NDIS6.20); C:\Windows\system32\DRIVERS\rtf62x64.sys [2017-09-26 60904]
S3 bntap;BetterNet TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\bntap.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2016-05-19 12520]
S3 ProtonVPNCallout;ProtonVPN Callout; \??\C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win7\ProtonVPN.CalloutDriver.sys [2022-04-01 25824]
S3 pxwfp;SoftEther PacketiX VPN IPsec WFP Callout Driver; \??\C:\Windows\system32\drivers\pxwfp.sys [2022-06-16 33992]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2016-05-19 166400]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2021-05-12 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SEE;SoftEther Ethernet Layer Driver; C:\Windows\system32\drivers\see.sys [2022-06-16 52424]
S3 stornvme;stornvme; C:\Windows\system32\drivers\stornvme.sys [2016-05-19 50408]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 tapoas;TAP-Win32 Adapter OAS; C:\Windows\system32\DRIVERS\tapoas.sys [2012-07-15 30720]
S3 tapwindscribe0901;Windscribe VPN; C:\Windows\system32\DRIVERS\tapwindscribe0901.sys [2022-05-06 48544]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2021-05-12 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2021-05-12 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2021-05-12 29696]
S3 UASPStor;Драйвер USB-устройства SCSI (UAS); C:\Windows\system32\drivers\uaspstor.sys [2012-07-26 101832]
S3 usbscan;Драйвер USB-сканера; C:\Windows\system32\DRIVERS\usbscan.sys [2021-05-12 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2016-05-19 199400]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 windtun420;Windtun420; C:\Windows\system32\DRIVERS\windtun420.sys [2022-05-06 38312]
S4 360Hvm;360Safe HVM; C:\Windows\System32\Drivers\360Hvm64.sys [2022-11-24 338696]

====== Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено) ======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-11-01 82640]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\cscsvc.dll
R2 EasyTuneEngineService;EasyTune Engine; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [2020-07-01 143072]
R2 Gservice;Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [2016-12-02 19888]
R2 NovaPdf10Server;novaPDF 10 Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [2021-07-28 52032]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2022-01-17 903368]
R2 QHActiveDefense;360 Total Security; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [2022-11-24 1102080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2021-03-05 125880]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2021-03-05 152000]
S2 edgeupdate;Служба "Обновление Microsoft Edge" (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-12-26 214960]
S3 AppMgmt;@appmgmts.dll,-3250; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\appmgmts.dll
S3 edgeupdatem;Служба "Обновление Microsoft Edge" (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-12-26 214960]
S3 gupdate;Служба Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2021-10-05 154456]
S3 gupdatem;Служба Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2021-10-05 154456]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2021-05-12 116224]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\109.0.1518.70\elevation_service.exe [2023-01-26 1747360]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2023-01-17 247200]
S3 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2021-11-16 903024]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-31 202928]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2015-07-30 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; %SystemRoot%\System32\svchost.exe -k PeerDist;"ServiceDll" = %SystemRoot%\system32\peerdistsvc.dll
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\system32\storsvc.dll
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\umrdp.dll
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2021-05-12 1255736]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\wiarpc.dll
S4 aspnet_state;Служба состояний ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S4 avast;Служба Avast Browser Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2021-10-11 193872]
S4 avastm;Служба Avast Browser Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2021-10-11 193872]
S4 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService); C:\Program Files (x86)\AVAST Software\Browser\Application\107.0.19254.107\elevation_service.exe [2022-11-11 2321328]
S4 Backupper Service;AOMEI Backupper Scheduler Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.9.0\ABService.exe [2022-02-28 1092656]
S4 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll" = %SystemRoot%\system32\diagtrack.dll
S4 gadjservice;GIGABYTE Adjust; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [2015-06-25 17920]
S4 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files\Google\Chrome\Application\107.0.5304.121\elevation_service.exe [2022-11-24 1730328]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 ProtonVPN Service;ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [2022-04-12 122464]
S4 ProtonVPN Update Service;ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [2022-04-12 65632]
S4 ProtonVPN WireGuard;ProtonVPN WireGuard; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.WireGuardService.exe [2022-04-12 50784]
S4 SEVPNCLIENT;SoftEther VPN Client; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2022-06-16 6018112]
S4 SEVPNSERVER;SoftEther VPN Server; C:\Program Files\SoftEther VPN Server\vpnserver_x64.exe [2022-06-16 6038080]
S4 VPNUnlimitedService;VPN Unlimited Service; C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe [2021-10-26 47128]

-----------------EOF-----------------
