Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26

Platform:  x64 Windows 7 (Pro), 6.1.7601.24544, Service Pack: 1
Time:      29.08.2020 - 23:57 (UTC+05:00)
Language:  OS: Russian (0x419). Display: Russian (0x419). Non-Unicode: Russian (0x419)
Elevated:  Yes
Ran by:    Степа	(group: Administrator) on STEPA, FirstRun: yes

Chrome:  85.0.4183.83
Firefox: 79.0.0.7506
Internet Explorer: 11.0.9600.19597
Default: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
   1  C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
   1  C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
   1  C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
   1  C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
   1  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
   1  C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
   1  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
   1  C:\Program Files\FolderSize\FolderSizeSvc.exe
   1  C:\Program Files\Macrium\Common\MacriumService.exe
   1  C:\Program Files\Macrium\Common\ReflectMonitor.exe
   1  C:\Program Files\Macrium\Common\ReflectUI.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   3  C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
   1  C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
   1  C:\Program Files\Windows Defender\MpCmdRun.exe
   1  C:\Program Files\Windows Media Player\wmpnetwk.exe
   1  C:\ProgramData\RealtekHD\taskhost.exe
   1  C:\ProgramData\RealtekHD\taskhostw.exe
   1  C:\ProgramData\RunDLL\rundll.exe
   1  C:\ProgramData\RunDLL\system.exe
   1  C:\ProgramData\WindowsTask\audiodg.exe
   1  C:\Users\Степа\Desktop\AutoLogger\HiJackThis\HiJackThis.exe
   1  C:\Windows\SysWOW64\PnkBstrA.exe
   2  C:\Windows\SysWOW64\cmd.exe
   1  C:\Windows\System32\SearchFilterHost.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SearchProtocolHost.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\System32\alg.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\dwm.exe
   1  C:\Windows\System32\hasplms.exe
   2  C:\Windows\System32\hasplmv.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\lsm.exe
   1  C:\Windows\System32\rundll32.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  13  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskeng.exe
   1  C:\Windows\System32\taskhost.exe
   1  C:\Windows\System32\taskmgr.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wuauclt.exe
   1  C:\Windows\explorer.exe

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}: [SuggestionsURL] = http://suggests.go.mail.ru/ie8?q={SearchTerms} - Поиск@Mail.Ru
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}: [URL] = http://go.mail.ru/search?q={SearchTerms}&fr=iextn&gp=821273 - Поиск@Mail.Ru
O1 - Hosts: Reset contents to default
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O1 - Hosts: 127.0.0.1 bandicam.com
O1 - Hosts: 127.0.0.1 ssl.bandisoft.com
O1 - Hosts: 127.0.0.1 cert.bandicam.com
O1 - Hosts: 127.0.0.1 www.bandicam.com
O1 - Hosts: 127.0.0.1 codeload.github.com
O1 - Hosts: 127.0.0.1 support.kaspersky.ru
O1 - Hosts: 127.0.0.1 kaspersky.ru
O1 - Hosts: 127.0.0.1 virusinfo.info
O1 - Hosts: 127.0.0.1 forum.kasperskyclub.ru
O1 - Hosts: 127.0.0.1 cyberforum.ru
O1 - Hosts: 127.0.0.1 soft-file.ru
O1 - Hosts: 127.0.0.1 www.360totalsecurity.com
O1 - Hosts: 127.0.0.1 cezurity.com
O1 - Hosts: 127.0.0.1 www.dropbox.com
O1 - Hosts: 127.0.0.1 193.228.54.23
O1 - Hosts: 127.0.0.1 spec-komp.com
O1 - Hosts: 127.0.0.1 eset.ua
O1 - Hosts: 127.0.0.1 panel.koronavirusfuck.xyz
O1 - Hosts: 127.0.0.1 360totalsecurity.com
O1 - Hosts: 127.0.0.1 www.esetnod32.ru
O1 - Hosts: 127.0.0.1 www.comss.ru
O1 - Hosts: 127.0.0.1 blog-pc.ru
O1 - Hosts: 127.0.0.1 www.securrity.ru
O1 - Hosts: 127.0.0.1 vellisa.ru
O1 - Hosts: 127.0.0.1 download-software.ru
O1 - Hosts: 127.0.0.1 drweb-cureit.ru
O1 - Hosts: 127.0.0.1 softpacket.ru
O1 - Hosts: 127.0.0.1 www.kaspersky.com
O1 - Hosts: 127.0.0.1 www.avast.ua
O1 - Hosts: 127.0.0.1 www.avast.ru
O1 - Hosts: 127.0.0.1 zillya.ua
O1 - Hosts: 127.0.0.1 safezone.ua
O1 - Hosts: 127.0.0.1 vms.drweb.ru
O1 - Hosts: 127.0.0.1 www.drweb.ua
O1 - Hosts: 127.0.0.1 free.drweb.ru
O1 - Hosts: 127.0.0.1 biblprog.org.ua
O1 - Hosts: 127.0.0.1 free-software.com.ua
O1 - Hosts: 127.0.0.1 free.dataprotection.com.ua
O1 - Hosts: 127.0.0.1 www.drweb.com
O1 - Hosts: 127.0.0.1 www.softportal.com
O1 - Hosts: 127.0.0.1 www.nashnet.ua
O1 - Hosts: 127.0.0.1 softlist.com.ua
O1 - Hosts: 127.0.0.1 it-doc.info
O1 - Hosts: 127.0.0.1 esetnod32.ru
O1 - Hosts: 127.0.0.1 blog-bridge.ru
O1 - Hosts: 127.0.0.1 remontka.pro
O1 - Hosts: 127.0.0.1 securos.org.ua
O1 - Hosts: 127.0.0.1 pc-helpp.com
O1 - Hosts: 127.0.0.1 softdroid.net
O1 - Hosts: 127.0.0.1 malwarebytes.com
O1 - Hosts: 127.0.0.1 ru.vessoft.com
O1 - Hosts: 127.0.0.1 AlpineFile.ru
O1 - Hosts: 127.0.0.1 malwarebytes-anti-malware.ru.uptodown.com
O1 - Hosts: 127.0.0.1 ProgramDownloadFree.com
O1 - Hosts: 127.0.0.1 download.cnet.com
O1 - Hosts: 127.0.0.1 soft.mydiv.net
O1 - Hosts: 127.0.0.1 spyware-ru.com
O1 - Hosts: 127.0.0.1 remontcompa.ru
O1 - Hosts: 127.0.0.1 www.hitmanpro.com
O1 - Hosts: 127.0.0.1 hitman-pro.ru.uptodown.com
O1 - Hosts: 127.0.0.1 www.bleepingcomputer.com
O1 - Hosts: 127.0.0.1 soft.oszone.net
O1 - Hosts: 127.0.0.1 krutor.org
O1 - Hosts: 127.0.0.1 RuTracker.org
O1 - Hosts: 127.0.0.1 www.greatis.com
O1 - Hosts: 127.0.0.1 unhackme.ru.uptodown.com
O1 - Hosts: 127.0.0.1 programy.com.ua
O1 - Hosts: 127.0.0.1 rsload.net
O1 - Hosts: 127.0.0.1 softobase.com
O1 - Hosts: 127.0.0.1 www.besplatnoprogrammy.ru
O1 - Hosts: 127.0.0.1 unhackme.en.softonic.com
O1 - Hosts: 127.0.0.1 unhackme.com
O1 - Hosts: 127.0.0.1 unhackme.ru
O1 - Hosts: 127.0.0.1 nnm-club.name
O1 - Hosts: 127.0.0.1 vgrom.com
O1 - Hosts: 127.0.0.1 moneropool.com
O1 - Hosts: 127.0.0.1 mine.moneropool.com
O1 - Hosts: 127.0.0.1 xmr.cryptopool.org
O1 - Hosts: 127.0.0.1 pool.monero.org
O1 - Hosts: 127.0.0.1 minexmr.com
O1 - Hosts: 127.0.0.1 monero.crypto-pool.fr
O1 - Hosts: 127.0.0.1 dwarfpool.com
O1 - Hosts: 127.0.0.1 disk-space.ru
O1 - Hosts: 127.0.0.1 file7.ru
O1 - Hosts: 127.0.0.1 ufille.ru
O1 - Hosts: 127.0.0.1 rgho.st
O1 - Hosts: 127.0.0.1 yadi.su
O1 - Hosts: 127.0.0.1 catcut.net
O1 - Hosts: 127.0.0.1 fsdisk.ru
O1 - Hosts: 127.0.0.1 rpfile.ru
O1 - Hosts: 127.0.0.1 cheats.file-a.ru
O1 - Hosts: 127.0.0.1 file-space.org
O1 - Hosts: 127.0.0.1 sfailo.ru
O1 - Hosts: 127.0.0.1 sendspace.com
O1 - Hosts: 127.0.0.1 www.sendspace.com
O1 - Hosts: 127.0.0.1 fille-7.ru
O1 - Hosts: 127.0.0.1 loufile.ru
O1 - Hosts: 127.0.0.1 file-seven.com
O1 - Hosts: 127.0.0.1 file-a.ru
O1 - Hosts: 127.0.0.1 fail-7.ru
O1 - Hosts: 127.0.0.1 1-kk.ru
O1 - Hosts: 127.0.0.1 rufile.net
O1 - Hosts: 127.0.0.1 filexpwx.space
O1 - Hosts: 127.0.0.1 sfile.net
O1 - Hosts: 127.0.0.1 mdiskfile.com
O1 - Hosts: 127.0.0.1 mega.nz
O1 - Hosts: 127.0.0.1 dfile.su
O1 - Hosts: 127.0.0.1 rgfail.ru
O1 - Hosts: 127.0.0.1 rudwnl.ru
O1 - Hosts: 127.0.0.1 dfile.info
O1 - Hosts: 127.0.0.1 flles.ru
O1 - Hosts: 127.0.0.1 pool.minexmr.to
O1 - Hosts: 127.0.0.1 ska4ay.pl
O1 - Hosts: 127.0.0.1 ska4ay.ru
O1 - Hosts: 127.0.0.1 ska4ay.club
O1 - Hosts: 127.0.0.1 ska4ay.net
O1 - Hosts: 127.0.0.1 ska4ay.org
O1 - Hosts: 127.0.0.1 ska4ay.com
O1 - Hosts: 127.0.0.1 ska4ay.pro
O1 - Hosts: 127.0.0.1 ska4ay.pw
O1 - Hosts: 127.0.0.1 ska4ay.online
O1 - Hosts: 127.0.0.1 skachaty.pl
O1 - Hosts: 127.0.0.1 skachaty.ru
O1 - Hosts: 127.0.0.1 skachaty.club
O1 - Hosts: 127.0.0.1 skachaty.net
O1 - Hosts: 127.0.0.1 skachaty.org
O1 - Hosts: 127.0.0.1 skachaty.com
O1 - Hosts: 127.0.0.1 skachaty.pro
O1 - Hosts: 127.0.0.1 skachaty.pw
O1 - Hosts: 127.0.0.1 skachaty.online
O1 - Hosts: 127.0.0.1 skachay.pl
O1 - Hosts: 127.0.0.1 skachay.ru
O1 - Hosts: 127.0.0.1 skachay.club
O1 - Hosts: 127.0.0.1 skachay.net
O1 - Hosts: 127.0.0.1 skachay.org
O1 - Hosts: 127.0.0.1 skachay.com
O1 - Hosts: 127.0.0.1 skachay.pro
O1 - Hosts: 127.0.0.1 skachay.pw
O1 - Hosts: 127.0.0.1 skachay.website
O1 - Hosts: 127.0.0.1 skachay.online
O1 - Hosts: 127.0.0.1 ska4aty.pl
O1 - Hosts: 127.0.0.1 ska4aty.ru
O1 - Hosts: 127.0.0.1 ska4aty.club
O1 - Hosts: 127.0.0.1 ska4aty.net
O1 - Hosts: 127.0.0.1 ska4aty.org
O1 - Hosts: 127.0.0.1 ska4aty.com
O1 - Hosts: 127.0.0.1 ska4aty.pro
O1 - Hosts: 127.0.0.1 ska4aty.pw
O1 - Hosts: 127.0.0.1 ska4aty.online
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll
O2 - HKLM\..\BHO: ScriptInjectionPluginBrowserHelperObject - {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll
O2-32 - HKLM\..\BHO: ScriptInjectionPluginBrowserHelperObject - {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O3 - HKLM\..\Toolbar: Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll
O3-32 - HKLM\..\Toolbar: Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O4 - HKCU\..\Run: [CCleaner Monitoring] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR
O4 - HKCU\..\Run: [Discord] = C:\Users\Степа\AppData\Local\Discord\app-0.0.307\Discord.exe
O4 - HKCU\..\Run: [Folder Size] = C:\Program Files\FolderSize\FolderSize.exe
O4 - HKCU\..\Run: [MailRuUpdater] = C:\Users\Степа\AppData\Local\Mail.Ru\MailRuUpdater.exe
O4 - HKCU\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent
O4 - HKCU\..\Run: [com.blitz.app] = C:\Users\Степа\AppData\Local\Programs\Blitz\Blitz.exe --autostart
O4 - HKLM\..\Run: [FlightSupport] = C:\Program Files\Logitech\FlightSupport\FlightSupport.exe
O4 - HKLM\..\Run: [Realtek HD Audio] = C:\ProgramData\RealtekHD\taskhostw.exe
O4 - HKLM\..\Run: [Reflect UI] = C:\Program Files\Macrium\Common\ReflectUI.exe
O4 - HKLM\..\Run: [Riot Vanguard] = C:\Program Files\Riot Vanguard\vgtray.exe
O4 - HKLM\..\Run: [X52] = C:\Program Files\Logitech\X52\X52_Profiler.exe
O4 - MSConfig\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk [backup] => C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe (2017/10/17)
O4 - MSConfig\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Zaxar Games Browser.lnk [backup] => C:\Program Files (x86)\Zaxar\ZaxarLoader.exe /verysilent (2017/10/17) (file missing)
O4 - MSConfig\startupfolder: C:^Users^Степа^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Контроль предупреждений о чернилах - HP Deskjet 3070 B611 series (сеть).lnk [backup] => C:\Windows\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 3070 B611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN241682BH05MQ;CONNECTION=NW;MONITOR=1; (2017/10/17)
O4 - MSConfig\startupreg: Acronis Scheduler2 Service [command] = C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (HKLM) (2020/07/04)
O4 - MSConfig\startupreg: BCSSync [command] = C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices (HKLM) (2017/10/17)
O4 - MSConfig\startupreg: Bloody2 [command] = C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe Minimum (HKCU) (2017/10/17)
O4 - MSConfig\startupreg: CCleaner Monitoring [command] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (HKCU) (2017/10/17)
O4 - MSConfig\startupreg: EpicGamesLauncher [command] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent (HKCU) (2020/07/04)
O4 - MSConfig\startupreg: HP Deskjet 3070 B611 series (NET) [command] = C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\ScanToPCActivationApp.exe -deviceID "CN241682BH05MQ:NW" -scfn "HP Deskjet 3070 B611 series (NET)" -AutoStart 1 (HKCU) (2017/10/17)
O4 - MSConfig\startupreg: HP Software Update [command] = C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe (HKLM) (2017/10/17)
O4 - MSConfig\startupreg: LogMeIn Hamachi Ui [command] = C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start (HKLM) (2020/07/04)
O4 - MSConfig\startupreg: RTHDVCPL [command] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s (HKLM) (2017/10/17) (file missing)
O4 - MSConfig\startupreg: ShadowPlay [command] = C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart (HKLM) (2017/10/17)
O4 - MSConfig\startupreg: Skype [command] = C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun (HKCU) (2017/10/17) (file missing)
O4 - MSConfig\startupreg: StartCCC [command] = C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun (HKLM) (2017/10/17)
O4 - MSConfig\startupreg: SunJavaUpdateSched [command] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (HKLM) (2017/10/17)
O5 - HKCU\Control Panel\don't load: [RTSnMg64.cpl] (file missing)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [10] = Cezurity_Scanner_Pro_Free.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [11] = Cube.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [1] = eav_trial_rus.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [2] = avast_free_antivirus_setup_online.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [3] = eis_trial_rus.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [4] = essf_trial_rus.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [5] = hitmanpro_x64.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [6] = ESETOnlineScanner_UKR.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [7] = ESETOnlineScanner_RUS.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [8] = HitmanPro.exe (disabled)
O7 - Policy: HKCU\..\Policies\Explorer\DisallowRun: [9] = 360TS_Setup_Mini.exe (disabled)
O7 - Taskbar policy: HKCU\..\Policies\Explorer: [DisallowRun] = 1
O17 - DHCP DNS 1: 192.168.1.2
O18 - HKLM\Software\Classes\Protocols\Handler\soloresinternetrusengnum: [CLSID] = {1B7043A7-84E1-443A-804F-20A75728892C} - D:\SOLO9R~1\SoloRes.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YandexDisk1 SyncDone: Yandex.Disk Icon Overlay (SyncDone) - {C5F6CDD1-FB7B-4971-A53F-4B00757F756B} - C:\Users\Степа\AppData\Roaming\Yandex\YandexDisk2\3.1.20.3664\YandexDisk3ShellExt-1511.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YandexDisk2 SyncProgress: Yandex.Disk Icon Overlay (SyncProgress) - {75EF3512-D401-4172-BA0F-00E000DCBCE4} - C:\Users\Степа\AppData\Roaming\Yandex\YandexDisk2\3.1.20.3664\YandexDisk3ShellExt-1511.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YandexDisk3 SyncDisabled: Yandex.Disk Icon Overlay (SyncDisabled) - {8EEE3CD5-1F70-4B63-B19D-A5F1457761DB} - C:\Users\Степа\AppData\Roaming\Yandex\YandexDisk2\3.1.20.3664\YandexDisk3ShellExt-1511.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YandexDisk4 SyncError: Yandex.Disk Icon Overlay (SyncError) - {9CE04609-A360-4266-9937-9D799E8D2D5A} - C:\Users\Степа\AppData\Roaming\Yandex\YandexDisk2\3.1.20.3664\YandexDisk3ShellExt-1511.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\    YandexDisk5 SyncPart: Yandex.Disk Icon Overlay (SyncPart) - {63ADB0D1-6DA0-46A2-89D0-E0CE44536E32} - C:\Users\Степа\AppData\Roaming\Yandex\YandexDisk2\3.1.20.3664\YandexDisk3ShellExt-1511.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O22 - Task: (activation) \Microsoft\Windows\Windows Activation Technologies\ValidationTask - C:\Windows\system32\Wat\WatAdminSvc.exe /run (Microsoft)
O22 - Task: (activation) \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - C:\Windows\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\CompatTelRunner.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\Windows\system32\compattelrunner.exe -maintenance (Microsoft)
O22 - Task: \Microsoft\Windows\Wininet\Cleaner - C:\Programdata\WindowsTask\winlogon.exe
O22 - Task: \Microsoft\Windows\Wininet\RealtekHDControl - C:\Programdata\RealtekHD\taskhost.exe
O22 - Task: \Microsoft\Windows\Wininet\RealtekHDStartUP - C:\Programdata\RealtekHD\taskhost.exe
O22 - Task: \Microsoft\Windows\Wininet\Taskhost - C:\Programdata\RealtekHD\taskhostw.exe
O22 - Task: \Microsoft\Windows\Wininet\Taskhostw - C:\Programdata\RealtekHD\taskhostw.exe
O23 - Service R2: AMD FUEL Service - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe /launchService
O23 - Service R2: Acronis Nonstop Backup Service - (afcdpsrv) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service R2: Acronis Scheduler2 Service - (AcrSch2Svc) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service R2: Diagnostics Tracking Service - (DiagTrack) - C:\Windows\System32\svchost.exe -k utcsvc; "ServiceDll" = C:\Windows\system32\diagtrack.dll
O23 - Service R2: Folder Size - (FolderSize) - C:\Program Files\FolderSize\FolderSizeSvc.exe
O23 - Service R2: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe -s
O23 - Service R2: Macrium Service - (MacriumService) - C:\Program Files\Macrium\Common\MacriumService.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
O23 - Service R2: PnkBstrA - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service R2: QMEmulatorService - C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
O23 - Service R2: Sentinel LDK License Manager - (hasplms) - C:\Windows\system32\hasplms.exe -run
O23 - Service R2: UMVPFSrv - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service S2: Hi-Rez Studios Authenticate and Update Service - (HiPatchService) - D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe Files (x86)\Hi-Rez Studios\HiPatchService.exe (file missing)
O23 - Service S2: Kaspersky Anti-Virus Service 17.0.0 - (AVP17.0.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe -r
O23 - Service S2: Служба Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.83\elevation_service.exe
O23 - Service S3: Kaspersky Secure Connection Service 1.0.0 - (KSDE1.0.0) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe -r
O23 - Service S3: MRAC Service - (mracsvc) - C:\Windows\System32\mracsvc.exe
O23 - Service S3: McAfee Security Scan Component Host Service - (McComponentHostService) - C:\Program Files\McAfee Security Scan\3.11.599\McCHSvc.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService
O23 - Service S3: klvssbrigde64 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe
O23 - Service S3: vgc - C:\Program Files\Riot Vanguard\vgc.exe
O23 - Service S3: Служба Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc


--
End of file - Time spent: 7,9 sec. - 44356 bytes, CRC32: FFFFFFFF. Sign: 