Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-11-2020
Ran by Iveta (administrator) on IVETA-RUMLEROVA (LENOVO 3259MCG) (09-11-2020 16:45:54)
Running from C:\Users\Iveta\Desktop
Loaded Profiles: Iveta
Platform: Windows 10 Home Version 1903 18362.1139 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14>
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2009.4.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\nsWscSvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Realtek Semiconductor Corp -> Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Ricoh co.,Ltd.) [File not signed] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\NortonSecurity.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files\TechSmith\Snagit 2018\Snagit32.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files\TechSmith\Snagit 2018\SnagitEditor.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files\TechSmith\Snagit 2018\SnagPriv.exe
(Western Digital Techologies -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1860120 2016-01-12] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [TechSmithSnagit] => C:\Program Files\TechSmith\Snagit 2018\Snagit32.exe [9182176 2020-01-10] (TechSmith Corporation -> TechSmith Corporation)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [64000 2012-08-10] (Ricoh co.,Ltd.) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [132920 2013-05-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2042424 2020-03-16] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81376496 2019-11-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2309008 2018-06-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21888 2019-01-02] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [82183912 2019-07-11] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1319208 2019-05-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5866032 2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5491248 2020-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [Screenshot Captor] => C:\Program Files (x86)\ScreenshotCaptor\ScreenshotCaptor.exe [6852376 2012-07-06] (DONATIONCODER.COM LLC -> DonationCoder) [File not signed]
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Iveta\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Iveta\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Iveta\AppData\Local\Microsoft\Teams\Update.exe [1789768 2019-08-26] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-04-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [GoogleChromeAutoLaunch_DD52DC0D6186026AFE712DB9D3450405] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTRAY.EXE [604128 2018-11-01] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIR6E.EXE [418000 2016-07-14] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\RunOnce: [Application Restart #4] => C:\Program Files (x86)\Microsoft\Edge\Temp\scoped_dir14400_1215716017\old_msedge.exe  --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- microsoft-edge: (the data entry has 138 more characters). <==== ATTENTION
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\MountPoints2: {22986a71-0f7b-11e9-bf30-b888e3de6c61} - "E:\WD Drive Unlock.exe" autoplay=true
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65496 2020-10-22] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON L7160 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBR6E.DLL [182784 2016-08-02] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\PDF Print Monitor BZ101: C:\Program Files\Common Files\STORMWARE\PDF Printer\Ports\STORMWARE\bzpdf.dll [210944 2013-10-04] (Bullzip) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.183\Installer\chrmstp.exe [2020-11-03] (Google LLC -> Google LLC)
Startup: C:\Users\Iveta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2020-11-03]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Iveta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TickTick.lnk [2018-07-17]
ShortcutTarget: TickTick.lnk -> C:\Program Files (x86)\TickTick\TickTick.exe (Appest.com) [File not signed]
GroupPolicy: Restriction - Windows Defender <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03D3A8E8-B8E4-426D-AF0C-7247011CEADE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {083A6183-4AEF-40C6-8424-1484BF42890F} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {08525A1C-9DA5-4DDB-A449-08F8A713D8E4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {119E7BA2-556A-489D-8CFF-C5C3CCC18174} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {14A94EC1-FC51-4C29-8BCB-A639C35C869C} - \Optimize Start Menu Cache Files-S-1-5-21-920122311-1960361517-2308721413-1001 -> No File <==== ATTENTION
Task: {161E9434-7FA6-46E6-BB6D-49D73732FB68} - System32\Tasks\WD Device Agent Task iveta => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [720624 2019-11-29] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {16227D00-6CAF-48F0-89BC-AC89CBF34B22} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.)
Task: {19CD006D-BE44-4D72-9670-7D686C672872} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [113024 2019-11-12] (Lenovo -> Lenovo)
Task: {1C7267CE-9ECE-4F18-A1E9-D370A3AD8CC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {24C9634F-1033-4204-B624-9EAEDEAE9E70} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {24D6D92E-6D31-4FB9-A22D-CFC0F57F6C97} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-09-08] (Lenovo -> )
Task: {26D35485-0B85-4CEB-841A-717C15C52980} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {2ACB2618-F1F4-4993-9DC0-836F663313E9} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-09-08] (Lenovo -> )
Task: {2DC00A47-E966-42FD-ADE1-B1CCD61F4C2D} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {2EB752B6-070A-4B9C-B38C-59EA2B90293E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {2EFF15EB-8868-4C5D-97AA-3141DABD16CD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [127176 2020-05-29] (Mozilla Corporation -> Mozilla Foundation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {40335F53-DAC0-42E3-8C61-F08C76150D44} - \WPD\SqmUpload_S-1-5-21-920122311-1960361517-2308721413-1001 -> No File <==== ATTENTION
Task: {41EB1A5B-C29A-47AC-B28A-654DD9754588} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {42B9CC78-B5D6-4587-8196-534B49454008} - System32\Tasks\Trigger KMS Activation => C:\KMSnano Final\TriggerKMS.exe [54784 2013-02-10] () [File not signed]
Task: {43156E03-5FCD-4416-84F8-12CA7F6C9759} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {4361DC2E-D5C8-4400-892F-831A101B1A24} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f45e0707-3310-4006-98d0-0f0f2dbb9d36 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {43DC4658-8D72-4A73-B798-8F4558D7884B} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {4669933A-F9EE-4175-B560-75F0897C4408} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939512 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {551019E6-E1B8-4A2A-9686-03AA7D22880A} - System32\Tasks\WD Discovery Service Task iveta => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [75504 2019-11-29] (Western Digital Technologies, Inc. -> )
Task: {5D4D5AA5-8470-43B7-A4AE-21370D58E3FE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-05-04] (Google Inc -> Google Inc.)
Task: {5DE81771-97DA-472A-8DF7-141FEC6403D0} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [667856 2020-10-31] (Mozilla Corporation -> Mozilla Foundation)
Task: {5E0F430B-E8A6-40D0-9A08-CCAAF20079E3} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {6213D423-62A9-4593-9DFE-1499BEE496AA} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2162328 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {6662012F-97B5-41EC-9073-0997FC4ED638} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {66C03512-B15B-4AB4-92DF-691F9F588F51} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {6C6BF952-D309-4CD6-BC20-6C2C37EFAEBF} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [59776 2019-11-12] (Lenovo -> )
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7B1CCD6F-1080-456E-905A-D4D7723BB571} - System32\Tasks\CupblueUpdateTaskMachineUA => C:\Program Files (x86)\Cupblue\Update\CupblueUpdate.exe
Task: {7D347C14-1456-4C7E-AB13-53AC61C880F1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {7F53DAB5-ECBC-4AC6-A46D-30B21FF0D547} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\71a64da2-7887-4731-9650-4b8554bf0dbd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {8204FCCD-D668-468D-AA4C-AC654161D2D2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {844FB30C-9FAB-480E-80F6-D0F47D6EF0DC} - System32\Tasks\Norton Security with Backup\Norton Security Error Analyzer => C:\Program Files\Norton Security with Backup\Engine\22.20.4.57\SymErr.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8800B2C7-D6FA-4467-AB97-A87E0E25BAF6} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
Task: {8B53BF56-A87E-4E69-97EB-45297D6C4977} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {90752D23-4494-4B13-B03C-F7D66BC310BE} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [4222560 2016-10-03] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {92B63E48-2F65-4A9C-AF8D-4F164859C499} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-05-04] (Google Inc -> Google Inc.)
Task: {9D35156C-3DBC-42F0-A311-483A4E00CD7D} - System32\Tasks\Norton Security with Backup\Norton Security Error Processor => C:\Program Files\Norton Security with Backup\Engine\22.20.4.57\SymErr.exe
Task: {9da5907f-f37b-4640-8ddb-881a43c9fe96} - no filepath
Task: {9F55A2EA-005F-4B7A-AA4D-F07A58B9D858} - System32\Tasks\Norton Security with Backup\Norton Security Autofix => C:\Program Files\Norton Security with Backup\Engine\22.20.4.57\SymErr.exe
Task: {A59828F6-B3A5-4F62-9BE9-0DB9C109A85F} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {ABEC7406-4233-49E9-A85A-076F0A7CD37F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {AFB67115-937F-4473-BDD1-90F4081C1023} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {B09A0183-8627-4209-8F91-D59A81543214} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B16D4493-D4BC-42AC-B681-251F389E1010} - System32\Tasks\Open URL by RoboForm => C:\WINDOWS\system32\rundll32.exe url.dll,FileProtocolHandler "http://www.roboform.com/uninstall.html?aaa=KICMMJMMNJKJJJKJKJMJCNLMMJLJJJCNLMMMPMJMCNGMGMLMHMCNMMKMIMNMOJOMLMLMJJOMOMMMJNJICMIMCNGMCNOMGMFMOMOMCNOMGMNMCNOMJMNMGMGMFMPMCNPMCNOMJMNMGMGMCNNMJNPICMOMFMFMJMHMKMJNHICMEKMICNJJCKJNBJCMGLJIKJLIOJPNNKKICJDJKJNIAJJIOJJNKJCMGJNIKICJDJKJNIAJJIOJPLMIKJFIBJOJCJBNMJFIJNNICMJNDJCMMJFIJNMJCMPMFMPMFMPMJNFICMNIJJIIGJPIKJAJKILIBNKJHIKJ"
Task: {B47C4E46-1133-4552-BAAE-E63DFE3AF896} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1146776 2020-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {BA69755F-8E4F-4A2B-A993-18DED861A758} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {BDC865D7-1F68-408D-8BE0-01380142CFF7} - \AdobeAAMUpdater-1.0-Iveta-Rumlerova-Iveta -> No File <==== ATTENTION
Task: {C1E03E35-9879-4363-8CC1-65FDA98A9157} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d4b4a5af-bf93-4406-8548-afc50aa009e2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {C6019B92-B7E9-49C4-9223-64A2471604FC} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.)
Task: {C7AFF3F3-A573-4F9A-9F92-48268AE6A8CE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D2B41DE8-4B69-402D-A8E5-B51C9945F6D9} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {D5F5EB11-CAA8-404C-8885-9320688D9345} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {D8583876-74B2-48D9-B59F-4B6E2807AEFA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {D9335A1C-9788-4545-9A3A-118112B149C5} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {DE21874B-7B4A-4B6F-B6A4-0DAA6F70C257} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {E30B9646-1B3F-4582-AAA4-328F4D815466} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {E396BF4A-BF40-49B0-8663-6E5A5677A19A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {E5BB7FDE-ACA9-4FDB-81F3-0E48B8364F43} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {E862A9B2-D32D-4119-83EB-0F83CF3B1557} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [676176 2016-05-18] (LENOVO -> Lenovo)
Task: {ECF42CF1-5CA0-4836-BBF3-151FFB249565} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [676176 2016-05-18] (LENOVO -> Lenovo)
Task: {EE7BCEAE-FEB7-4F10-9407-C25419ED6820} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\WSCStub.exe [644608 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {F31C70BB-659C-4D49-A534-1E3750CD9A82} - System32\Tasks\CupblueUpdateTaskMachineCore => C:\Program Files (x86)\Cupblue\Update\CupblueUpdate.exe
Task: {F320E204-F550-4A83-A789-04EF25859F5E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {FAA70618-3AB5-4C6A-BB05-263D1AC2261D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117616 2020-10-30] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\ Update {700DF5E8-67F4-4B85-AC32-AC27A47931C4}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR6E.EXE:/EXE:{700DF5E8-67F4-4B85-AC32-AC27A47931C4} /F:UpdateWORKGROUP\IVETA-RUMLEROVA$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 188.75.188.188 8.8.4.4
Tcpip\..\Interfaces\{1cdf01bc-e833-4f90-ba21-62c47bfafa1d}: [DhcpNameServer] 188.75.188.188 8.8.4.4
Tcpip\..\Interfaces\{6085ce70-8b05-4516-ba0b-8a96c4ff09e3}: [DhcpNameServer] 188.75.188.188 8.8.4.4

Edge: 
======
DownloadDir: C:\Users\Iveta\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-920122311-1960361517-2308721413-1001 -> hxxp://www.attirerpage.com/?type=hp&ts=1466062741&z=0b98b5dc5e36067d558224cg8z3qfqee2qao4maz7o&from=wpm0616&uid=ST1000LM014-1EJ164-SSHD_W7716KR9
Edge Profile: C:\Users\Iveta\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-08]
Edge HomePage: Default -> hxxp://www.attirerpage.com/?type=hp&ts=1466062741&z=0b98b5dc5e36067d558224cg8z3qfqee2qao4maz7o&from=wpm0616&uid=ST1000LM014-1EJ164-SSHD_W7716KR9
Edge StartupUrls: Default -> "hxxp://google.com/"

FireFox:
========
FF DefaultProfile: 5cqym3x0.default
FF ProfilePath: C:\Users\Iveta\AppData\Roaming\Mozilla\Firefox\Profiles\014vkure.default-release [2020-08-04]
FF ProfilePath: C:\Users\Iveta\AppData\Roaming\Mozilla\Firefox\Profiles\5cqym3x0.default [2020-11-05]
FF Notifications: Mozilla\Firefox\Profiles\5cqym3x0.default -> hxxps://www.facebook.com
FF NewTabOverride: Mozilla\Firefox\Profiles\5cqym3x0.default -> Enabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\Iveta\AppData\Roaming\Mozilla\Firefox\Profiles\5cqym3x0.default\Extensions\sko-extension@firma.seznam.cz.xpi [2017-12-07]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Iveta\AppData\Roaming\Mozilla\Firefox\Profiles\5cqym3x0.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-10-31]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-05-14] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-05-14] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-03-16] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-920122311-1960361517-2308721413-1001: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2016-10-24] (Sony Network Entertainment International LLC) [File not signed]

Chrome: 
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-11-09] <==== ATTENTION
CHR Notifications: ChromeDefaultData -> hxxps://modrokamennabouda.cz; hxxps://www.arttec.cz; hxxps://www.facebook.com
CHR HomePage: ChromeDefaultData -> hxxp://lenovo13-comm.msn.com/
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.nuesearch.com/?type=hp&ts=1466763359&z=c11e8c21e31607efd345f22g1z3qdq5m3qfc6c8q0t&from=ihpm0624&uid=ST1000LM014-1EJ164-SSHD_W7716KR9"
CHR Extension: (Překladač Google) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-19]
CHR Extension: (Insert Text) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\abmgjcmmphkhndoahbfanhbgeekconmm [2018-09-10]
CHR Extension: (Norton Password Manager) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\admmjipmmciaobhojoghlmleefbicajg [2020-11-09]
CHR Extension: (Dokumenty) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-31]
CHR Extension: (Flash Player) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\bmimdmkleccdoghpgdhaahkelfhjfhgm [2020-10-08]
CHR Extension: (MozBar) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2020-11-09]
CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdpohaocaechififmbbbbbknoalclacl [2020-09-18]
CHR Extension: (Page Analytics (by Google)) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fnbdnhhicmebfgdgglcdacdapkcihcoh [2016-10-10]
CHR Extension: (Norton Safe Web) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2020-11-02]
CHR Extension: (Google Analytics URL Builder) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gaidpiakchgkapdgbnoglpnbccdepnpk [2020-06-08]
CHR Extension: (CircleCount.com) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gfehmiknpngmjkhiieampgfppicbncid [2016-09-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-23]
CHR Extension: (Full Page Screenshot) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\glgomjpomoahpeekneidkinhcfjnnhmb [2018-03-15]
CHR Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2020-10-05]
CHR Extension: (LinkedIn Sales Navigator) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\hihakjfhbmlmjdnnhegiciffjplmdhin [2019-03-21]
CHR Extension: (Projektový management Gantter) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\himomacamcpodhkahelbnmaddladgjgo [2019-09-12]
CHR Extension: (Rank Checker) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\hnhleeodcddckbbnpedmkkcpbhffpolb [2016-05-31]
CHR Extension: (Norton Identity Safe) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\iikflkcanblccfahdhdonehdalibjnif [2018-02-04]
CHR Extension: (FormApps Extension) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-06-15]
CHR Extension: (Google Analytics Debugger) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\jnkmfdileelhofjcijamephohjechhna [2019-08-02]
CHR Extension: (Snap It Button) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\kclagiidcihmjfnlfdboggonemfhcklk [2020-10-19]
CHR Extension: (Tag Assistant (by Google)) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2020-11-02]
CHR Extension: (Loom for Chrome) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2020-10-23]
CHR Extension: (Norton Safe) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2020-11-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Colour Extractor) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nndpibfappjacgbninhabcokfkdpnmpe [2016-06-20]
CHR Extension: (Image Color Picker - Pick your color online) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ocamglfcdanjnilooepglpjfmjabcgii [2016-06-20]
CHR Extension: (Collabim) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\oinjknlpcckmnnjpodcifmifeghabelo [2016-06-20]
CHR Extension: (Palette Creator) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\oolpphfmdmjbojolagcbgdemojhcnlod [2019-07-03]
CHR Extension: (Social Analytics) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pgckigmaefoaemjpijdepakcghjkggmg [2016-12-27]
CHR Extension: (Gmail) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-19]
CHR Profile: C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default [2020-06-18]
CHR HomePage: Default -> hxxp://www.ir-webdesign.com/
CHR Extension: (Překladač Google) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-06-18]
CHR Extension: (Prezentace) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-18]
CHR Extension: (Kancelář) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahfpbkogcgkoecgolaojpcijkabngljl [2015-05-04]
CHR Extension: (Dokumenty) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-18]
CHR Extension: (Lucidchart Diagrams) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2020-06-18]
CHR Extension: (Disk Google) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-06-18]
CHR Extension: (No Name) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-04-08]
CHR Extension: (YouTube) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (chrometheme) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmcjefhelakcgphlgkfebcahbpdbhdpo [2015-05-04]
CHR Extension: (Vyhledávání Google) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (MozBar) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2020-06-18]
CHR Extension: (Tabulky Google) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-04]
CHR Extension: (Page Analytics (by Google)) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnbdnhhicmebfgdgglcdacdapkcihcoh [2020-06-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Gantter for Google Drive) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\himomacamcpodhkahelbnmaddladgjgo [2015-05-04]
CHR Extension: (Rank Checker) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnhleeodcddckbbnpedmkkcpbhffpolb [2015-08-24]
CHR Extension: (Snap It Button) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclagiidcihmjfnlfdboggonemfhcklk [2020-06-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-06-18]
CHR Extension: (Notifications for Instagram) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb [2020-06-18]
CHR Extension: (Gmail) - C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-04]
CHR Profile: C:\Users\Iveta\AppData\Local\Google\Chrome\User Data\System Profile [2017-04-08]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKU\S-1-5-21-920122311-1960361517-2308721413-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-920122311-1960361517-2308721413-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-920122311-1960361517-2308721413-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx" <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
HKU\S-1-5-21-920122311-1960361517-2308721413-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Cupblue\Application\chrome.exe <==== ATTENTION

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [820280 2020-03-16] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-10-24] (Microsoft Corporation -> Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2016-12-23] (Lenovo -> Lenovo)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-09-18] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2468496 2012-11-15] (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [115184 2014-07-08] (LENOVO -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
R2 NortonSecurity; C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\NortonSecurity.exe [344760 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security with Backup\Engine\22.20.5.39\nsWscSvc.exe [1056096 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3658832 2019-06-28] (TechSmith Corporation -> TechSmith Corporation)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} [19256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} [19256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [524632 2018-03-26] (Western Digital Techologies -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 BHDrvx64; C:\Program Files\Norton Security with Backup\NortonData\22.11.2.7\Definitions\BASHDefs\20201103.005\BHDrvx64.sys [1991536 2020-11-03] (Symantec Corporation -> Broadcom)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\ccSetx64.sys [192248 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET, spol. s r.o. -> ESET)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516960 2020-07-29] (Symantec Corporation -> Broadcom)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14976 2016-04-14] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET, spol. s r.o. -> ESET)
R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [170792 2016-04-14] (ESET, spol. s r.o. -> ESET)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154464 2020-08-03] (Symantec Corporation -> Broadcom)
R1 IDSVia64; C:\Program Files\Norton Security with Backup\NortonData\22.11.2.7\Definitions\IPSDefs\20201106.061\IDSvia64.sys [1478496 2020-09-17] (Symantec Corporation -> Broadcom)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-06-28] (Malwarebytes Corporation -> Malwarebytes)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
R3 RCUVCAVS; C:\WINDOWS\system32\DRIVERS\RCUVCAVS.sys [149632 2012-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SRTSP64.SYS [889704 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SRTSPX64.SYS [50920 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SYMEFASI64.SYS [1964384 2020-07-24] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\SymELAM.sys [25080 2020-07-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-04-05] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security with Backup\NortonData\22.11.2.7\SymPlatform\SymEvnt.sys [712368 2020-01-13] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\Ironx64.SYS [316488 2020-07-24] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\symnets.sys [575328 2020-07-24] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R1 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.027\wpCtrlDrv.sys [1013792 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

