Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2020
Ran by Zdenka (administrator) on LAPTOP-M0S9OJP7 (LENOVO 81D6) (14-01-2020 14:57:22)
Running from C:\Users\Zdenka\Downloads
Loaded Profiles: Zdenka (Available Profiles: Zdenka)
Platform: Windows 10 Home Version 1903 18362.535 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\KMS-R@1n.exe
() [File not signed] C:\Windows\SysWOW64\srvany.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0326517.inf_amd64_913dfb8e59bdfa8a\B326481\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0326517.inf_amd64_913dfb8e59bdfa8a\B326481\atiesrxx.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.5.169.0\AVGBrowserCrashHandler.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.5.169.0\AVGBrowserCrashHandler64.exe
(AVG Technologies USA, Inc. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
(Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe
(Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.0.50.0_x64__5grkq8ppsgwt4\VFS\ProgramFilesX64\Lenovo\LenovoUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.27.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe
(Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\Zdenka\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [653256 2018-03-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [316336 2019-11-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\...\Run: [AVGBrowserAutoLaunch_B4E5C23972FD1F5477747F5B2E0947D8] => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2039240 2019-11-05] (AVG Technologies USA, Inc. -> AVG Technologies)
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\...\MountPoints2: {1e394d65-1e5d-11ea-9337-8c164594f53f} - "F:\HiSuiteDownLoader.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\77.2.2157.122\Installer\chrmstp.exe [2019-11-27] (AVG Technologies USA, Inc. -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-10] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0813CDB9-1244-412B-A2C8-ACFFFC153B3D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\14e6a7f9-1049-41e0-8d6d-4ccf548a232b => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {1EE2072A-5D56-4F21-B174-2FD7F7DA9F11} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6c1cbb37-98f0-4e15-9414-a276fe16548f => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {23E7A971-068D-403E-B6FE-9DDE17D2FE59} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {28CF1E07-49E9-4635-8BDF-F2BEAAC873E8} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility://
Task: {2A4505AF-8BFE-4F4F-8791-AA7B0046882C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {385C6348-D600-42E1-92CF-B21A24E621E2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {41FBA0DA-D362-4917-9809-756714587756} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [210240 2019-11-08] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {4B1840D9-B91B-4BFE-8163-C78AAA1DF088} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-11-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {4F431CCE-8DA5-4A67-BACB-B4BCFB5D411C} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [210240 2019-11-08] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {563FA145-41F5-4D70-AAD5-1941235FEFA4} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {8714D68D-D711-4DD3-A883-1BAC5CEFC209} - System32\Tasks\doPDF 10 Update => C:\Program Files\Softland\novaPDF 10\Driver\UpdateApplication.exe [98608 2019-12-12] (Softland SRL -> )
Task: {910BDF53-9DF2-437C-A8A5-E93CD92EC6E7} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [54144 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {A26574FD-5F51-43CF-8E97-7CCB282B1495} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-09] (Google Inc -> Google Inc.)
Task: {A55FADDA-EC2D-4163-B6C8-602F4BEF71D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-09] (Google Inc -> Google Inc.)
Task: {B86751A7-1D0A-44C3-B5AC-0AF27CD243A1} - System32\Tasks\R@1n-KMS\Office14ProPlus => wmic path OfficeSoftwareProtectionProduct where (ID="6f327760-8c5c-417c-9b61-836a98287e0c") call Activate
Task: {C27C060C-11CD-418C-B7C6-382093BB61C5} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2039240 2019-11-05] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {D8C31B37-578F-4638-A2DC-49D7C7996CA1} - System32\Tasks\App Explorer => C:\Users\Zdenka\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7470248 2020-01-07] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {E0989AC9-781A-44FE-8881-A38511E11440} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f12b7d82-67af-4f1e-90fa-6291ec2bb661 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {E9A29ADA-346E-4C27-83E7-8570F6D279E7} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-11-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {EA281BA5-8DB3-4E84-8038-676D4574A215} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2039240 2019-11-05] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {EB1BAFA4-B801-4641-ABC3-04D5AD0A26FE} - System32\Tasks\doPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51504 2019-12-12] (Softland SRL -> )
Task: {F65AB9BC-C894-4A7C-8E13-3BF1D9B17C70} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9EB4633-2052-42A5-85A8-4E5877636262} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {FB093783-F662-47D5-BCBC-BED01997948A} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [692016 2018-12-12] (Softland SRL -> )
Task: {FD7E7F08-FDC9-4A0F-B7F4-C1794A6B187A} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe
Task: {FF2CD7E8-32CA-4E6A-BE00-D0B6CA279D45} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 208.67.222.222
Tcpip\..\Interfaces\{efa87368-c6fb-42d9-909a-5d8b3a46905d}: [DhcpNameServer] 8.8.8.8 208.67.222.222
Tcpip\..\Interfaces\{f25e8c0a-2623-4685-8ce2-b7d016087e8c}: [DhcpNameServer] 192.168.1.1 195.146.128.62

Internet Explorer:
==================
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
