Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-01-2021
Ran by sense (administrator) on DESKTOP-OIFKNOO (LENOVO 20378) (21-01-2021 19:52:49)
Running from C:\Users\sense\Desktop
Loaded Profiles: sense & MSSQL$SQLSERVER & SQLTELEMETRY$SQLSERVER
Platform: Windows 10 Pro Version 2004 19041.746 (X64) Language: Slovak (Slovakia)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Clipdiary\clipdiary.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Docker Inc -> Docker Inc.) C:\Program Files\Docker\Docker\com.docker.service
(F.lux Software LLC -> f.lux Software LLC) C:\Users\sense\AppData\Local\FluxSoftware\Flux\flux.exe
(Fortemedia Inc. -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(JetBrains s.r.o. -> JetBrains s.r.o) C:\Program Files (x86)\JetBrains\ETW Host\JetBrains.Etw.Collector.Host.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\devenv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\TestPlatform\vstest.console.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PerfWatson2.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\ScriptedSandbox64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SQLSERVER\MSSQL\Binn\sqlceip.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.SQLSERVER\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\controller\Microsoft.ServiceHub.Controller.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.AnyCPU\ServiceHub.RoslynCodeAnalysisService.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.AnyCPU\ServiceHub.TestWindowStoreHost.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x64\ServiceHub.DataWarehouseHost.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.Host.CLR.x86.exe <2>
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.IdentityHost.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.SettingsHost.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.ThreadedWaitDialog.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.VSDetouredHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20368.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\sense\AppData\Local\slack\app-4.12.2\slack.exe <6>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Toggl Ou -> Toggl) C:\Users\sense\AppData\Local\TogglDesktop\TogglDesktop.exe
(Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5060864 2015-06-16] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3947704 2015-08-29] (Synaptics Incorporated -> Synaptics Incorporated)
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [uTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [393728 2020-07-11] (BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\sense\AppData\Local\Microsoft\Teams\Update.exe [2453688 2020-11-23] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [5A3624FE223D41BDA791B4F4E7BFA848398B50D8._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [f.lux] => C:\Users\sense\AppData\Local\FluxSoftware\Flux\flux.exe [1469968 2020-06-17] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [Spotify] => C:\Users\sense\AppData\Roaming\Spotify\Spotify.exe [23592304 2020-12-10] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [Clipdiary] => C:\Program Files (x86)\Clipdiary\clipdiary.exe [7768064 2020-09-17] () [File not signed]
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1938296 2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker Desktop.exe [2566064 2021-01-11] (Docker Inc -> Docker Inc.)
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\sense\AppData\Local\slack\slack.exe [306856 2021-01-21] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-11] (Google LLC -> Google LLC)
Startup: C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2020-12-04]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (No File)
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2537124B-DF0D-4DAD-92D8-745E39FBA1C4} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {29A64FAA-84E3-45F3-BF0B-52B372833BDF} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910136 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B40A197-5327-448A-905A-6D2479649B22} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910136 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {6AB8491B-B891-4BB1-8E29-DD1DD36015C6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC)
Task: {6B18AB86-59F4-44CD-ACCD-A040492DCB45} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {73012A98-B1C0-4CE9-989D-FD3531DA2BAC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7A0B2996-643A-477A-94A3-A80F4BC4A699} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {80E0071D-F4F1-4185-A149-CDBA5A4647BB} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32624 2020-09-28] (Microsoft Corporation -> Microsoft)
Task: {834DF893-12EE-4471-802E-B99E2826B9FD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-11] (Google LLC -> Google LLC)
Task: {930C7797-F20A-4C8C-B420-DBC56AAA21B9} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2311528 2020-09-28] (Microsoft Corporation -> Microsoft)
Task: {93433F8C-87D5-4DEA-978B-FD41CF0E81C2} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer.025ab8c8c3e44b0a99243916acbcb8fb\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe
Task: {D0D72EC7-FDE4-4879-87EB-A9B040E6051F} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2776440 2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {F10C4318-B639-434F-B32A-603E82C40A82} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FFD1704F-50D4-4479-8B3C-DFF42CFA0932} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4DA444D7-857E-4526-94B3-12FC9874E42C}: [DhcpNameServer] 192.168.0.150 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{c5df4c54-64d2-4bda-89b4-9e5e4b9b79fa}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge DefaultProfile: Profile 2
Edge Profile: C:\Users\sense\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-21]
Edge Profile: C:\Users\sense\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-01-20]
Edge Profile: C:\Users\sense\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2021-01-21]
Edge Notifications: Profile 2 -> hxxps://meet.google.com

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]

Chrome: 
=======
CHR Profile: C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default [2021-01-21]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://www.facebook.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWuELOv6gcKLJwcuuncActgKl_m14aSb8bFdV1g4TKoUXJZipjl7Lg7YKkjmsBMrucakwcaB1n4AxXfjx2fR2e8inhEKm-BzhONp9eiKP7NyOPS5WTgF_F9wD_3KhFAsjmb4E05Gv3zmZMW8uBw9NyQ4D9l7C1bptJhqc84DJh
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prekladač Google) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-07-11]
CHR Extension: (Prezentácie) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-11]
CHR Extension: (Dokumenty) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-11]
CHR Extension: (Disk Google) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-11]
CHR Extension: (Fake Filler) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnjjngeaknajbdcgpfkgnonkmififhfo [2020-10-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-15]
CHR Extension: (Adblock pre Youtube™) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-10-10]
CHR Extension: (Dark Mode) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmghijelimhndkbmpgbldicpogfkceaj [2020-12-25]
CHR Extension: (Focus 45) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\efjdfkfpnffgkdgehkenoikpbadfgple [2020-07-11]
CHR Extension: (Selenium Page Object Generator) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\epgmnmcjdhapiojbohkkemlfkegmbebb [2020-07-11]
CHR Extension: (Facebook Pixel Helper) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2020-10-01]
CHR Extension: (Tabuľky) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-11]
CHR Extension: (Postman) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2020-07-11]
CHR Extension: (Úpravy súborov Office v Dokumentoch Google) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbkeegbaiigmenfmjfclcdgdpimamgkj [2020-11-12]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-14]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-15]
CHR Extension: (Facebook Screen Sharing) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2020-07-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-11]
CHR Extension: (Gmail) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\sense\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-21]
CHR HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 com.docker.service; C:\Program Files\Docker\Docker\com.docker.service [16336 2021-01-11] (Docker Inc -> Docker Inc.)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\FileSyncHelper.exe [2191224 2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
R2 JetBrainsEtwHost; C:\Program Files (x86)\JetBrains\ETW Host\JetBrains.Etw.Collector.Host.exe [1576496 2020-09-25] (JetBrains s.r.o. -> JetBrains s.r.o)
R2 MSSQL$SQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL15.SQLSERVER\MSSQL\Binn\sqlservr.exe [623504 2020-11-06] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\OneDriveUpdaterService.exe [2556280 2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SQLAgent$SQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL15.SQLSERVER\MSSQL\Binn\SQLAGENT.EXE [689040 2020-11-06] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$SQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL15.SQLSERVER\MSSQL\Binn\sqlceip.exe [283536 2020-11-06] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13103632 2020-09-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dlcdcncm; C:\WINDOWS\System32\drivers\dlcdcncm62_x64.sys [90536 2019-07-14] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.)
S4 RsFx0600; C:\WINDOWS\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-21 19:52 - 2021-01-21 19:53 - 000024703 _____ C:\Users\sense\Desktop\FRST.txt
2021-01-21 19:52 - 2021-01-21 19:52 - 000000000 ____D C:\Users\sense\Desktop\FRST-OlderVersion
2021-01-21 14:54 - 2021-01-21 19:55 - 3548637248 _____ C:\Users\sense\Downloads\Unconfirmed 778406.crdownload
2021-01-21 08:46 - 2021-01-21 19:54 - 000000000 ____D C:\Users\sense\AppData\Roaming\Slack
2021-01-21 08:46 - 2021-01-21 08:46 - 000000000 ____D C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2021-01-21 08:46 - 2021-01-21 08:46 - 000000000 ____D C:\Users\sense\AppData\Local\slack
2021-01-21 08:38 - 2021-01-21 08:44 - 084936360 _____ (Slack Technologies Inc.) C:\Users\sense\Downloads\SlackSetup.exe
2021-01-14 18:04 - 2021-01-16 22:53 - 000000000 ____D C:\Users\sense\AppData\Roaming\azuredatastudio
2021-01-14 18:04 - 2021-01-14 18:04 - 000000000 ____D C:\Users\sense\.azuredatastudio
2021-01-14 17:57 - 2021-01-19 10:21 - 1896911728 _____ C:\Users\sense\Downloads\Hra.kocky.s.mysi.2018.1080i.HDTV.H264.DD2.0-GarGG.ts
2021-01-14 17:55 - 2021-01-19 20:13 - 2488900792 _____ C:\Users\sense\Downloads\Borneo.prastary.ostrov.2019.1080i.HDTV.H264.DD2.0-GarGG.ts
2021-01-14 17:55 - 2021-01-14 17:55 - 000072755 _____ C:\Users\sense\Downloads\[TreZzoR]A Cat and Mouse Game _ Hra.kocky.s.mysi.2018.1080i.HDTV.H264.DD2.0-GarGG.torrent
2021-01-14 17:53 - 2021-01-14 17:53 - 000095355 _____ C:\Users\sense\Downloads\[TreZzoR]Borneo_ Earth__s Ancient Eden _ Borneo.prastary.ostrov.2019.1080i.HDTV.H264.DD2.0-GarGG.torrent
2021-01-14 17:48 - 2021-01-18 20:55 - 2126748308 _____ C:\Users\sense\Downloads\Spanelska.chripka.2018.1080i.HDTV.H264.DD2.0-GarGG.ts
2021-01-14 17:48 - 2021-01-14 17:48 - 000081527 _____ C:\Users\sense\Downloads\[TreZzoR]The Flu That Killed 50 Million _ Spanelska.chripka.2018.1080i.HDTV.H264.DD2.0-GarGG.torrent
2021-01-14 17:47 - 2021-01-18 10:51 - 2527588560 _____ C:\Users\sense\Downloads\Me.jmeno.je.prostata.2020.1080i.HDTV.H264.DD2.0-GarGG.ts
2021-01-14 17:46 - 2021-01-14 17:46 - 000096780 _____ C:\Users\sense\Downloads\[TreZzoR]Me.jmeno.je.prostata.2020.1080i.HDTV.H264.DD2.0-GarGG.torrent
2021-01-14 10:20 - 2021-01-14 10:20 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-14 10:19 - 2021-01-14 10:19 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-14 10:19 - 2021-01-14 10:19 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-14 10:19 - 2021-01-14 10:19 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-14 10:19 - 2021-01-14 10:19 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-14 10:19 - 2021-01-14 10:19 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-14 10:19 - 2021-01-14 10:19 - 000374072 _____ C:\WINDOWS\system32\vp9fs.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-14 10:19 - 2021-01-14 10:19 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-14 10:19 - 2021-01-14 10:19 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-14 10:19 - 2021-01-14 10:19 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-14 10:19 - 2021-01-14 10:19 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-14 10:19 - 2021-01-14 10:19 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-14 10:19 - 2021-01-14 10:19 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-14 10:19 - 2021-01-14 10:19 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-14 10:19 - 2021-01-14 10:19 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-14 10:18 - 2021-01-14 10:18 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-14 10:18 - 2021-01-14 10:18 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-14 10:18 - 2021-01-14 10:18 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-14 10:18 - 2021-01-14 10:18 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-14 10:18 - 2021-01-14 10:18 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-14 10:18 - 2021-01-14 10:18 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-14 10:18 - 2021-01-14 10:18 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-14 10:18 - 2021-01-14 10:18 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-14 10:18 - 2021-01-14 10:18 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-14 10:18 - 2021-01-14 10:18 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-14 10:18 - 2021-01-14 10:18 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-14 10:18 - 2021-01-14 10:18 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-13 11:33 - 2021-01-13 11:34 - 000000000 ____D C:\AdwCleaner
2021-01-13 11:29 - 2021-01-13 11:30 - 008458096 _____ (Malwarebytes) C:\Users\sense\Desktop\adwcleaner_8.0.9.exe
2021-01-13 11:23 - 2021-01-13 11:23 - 000000000 ____D C:\Users\sense\AppData\Roaming\Google.Apis.Auth
2021-01-13 11:22 - 2021-01-13 11:22 - 000000000 ____D C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toggl
2021-01-13 11:22 - 2021-01-13 11:22 - 000000000 ____D C:\Users\sense\AppData\Local\TogglDesktop
2021-01-11 21:29 - 2021-01-21 19:53 - 000000000 ____D C:\FRST
2021-01-11 21:27 - 2021-01-21 19:52 - 002295808 _____ (Farbar) C:\Users\sense\Desktop\FRST64.exe
2021-01-11 21:18 - 2021-01-11 21:18 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Docker Desktop.lnk
2021-01-11 21:13 - 2021-01-15 00:08 - 000000000 ____D C:\Program Files\Hyper-V
2021-01-11 21:13 - 2021-01-11 21:13 - 000000000 ____D C:\Users\Public\Documents\Hyper-V
2021-01-11 21:13 - 2021-01-11 21:13 - 000000000 ____D C:\ProgramData\Documents\Hyper-V
2021-01-11 20:56 - 2021-01-11 21:16 - 000000000 ____D C:\Users\sense\AppData\Local\Docker Desktop Installer
2021-01-07 17:45 - 2021-01-18 11:41 - 000000000 ____D C:\Users\sense\Downloads\Qu.un.Sang.Impur.2019.720p.BluRay.DD5.1.x264-iFT.CZ-FTU
2021-01-07 17:32 - 2021-01-14 13:48 - 3897056512 _____ C:\Users\sense\Downloads\Jako.letni.snih.Zivot.J.A.Komenskeho.2020.1080i.HDTV.H264.DD2.0-GarGG.ts
2021-01-07 17:23 - 2021-01-08 12:36 - 000000000 ____D C:\Users\sense\Downloads\The.Wretched.2019.mHD.BluRay.AAC2.0.x264.CZ-TreZzoR
2021-01-02 17:28 - 2021-01-02 17:28 - 000000020 ___SH C:\Users\adminLocal\ntuser.ini
2021-01-02 17:28 - 2021-01-02 17:28 - 000000000 ____D C:\Users\adminLocal
2021-01-02 17:28 - 2020-12-13 17:42 - 000000000 ___RD C:\Users\adminLocal\OneDrive
2021-01-02 17:28 - 2020-12-10 12:35 - 000000000 ____D C:\Users\adminLocal\.dotnet
2021-01-01 18:09 - 2021-01-11 21:18 - 000000000 ____D C:\ProgramData\Docker
2020-12-27 22:06 - 2020-12-27 22:06 - 000000000 ____D C:\Users\sense\Downloads\Krajina.ve.stinu.2020.1080p.WEB-DL.AAC2.0.x264-DeDo
2020-12-27 16:11 - 2020-12-27 16:11 - 000000020 ___SH C:\Users\Admin\ntuser.ini
2020-12-27 16:11 - 2020-12-27 16:11 - 000000000 ____D C:\Users\Admin
2020-12-27 16:11 - 2020-12-13 17:42 - 000000000 ___RD C:\Users\Admin\OneDrive
2020-12-27 16:11 - 2020-12-10 12:35 - 000000000 ____D C:\Users\Admin\.dotnet

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-21 19:49 - 2020-11-11 09:35 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-21 19:34 - 2020-07-11 09:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-21 18:28 - 2020-11-18 20:20 - 000000000 ____D C:\Users\sense\AppData\Roaming\Clipdiary
2021-01-21 17:55 - 2020-09-12 21:05 - 000000000 ____D C:\Users\sense\AppData\Local\.IdentityService
2021-01-21 14:01 - 2020-10-30 17:55 - 000000000 ____D C:\Users\sense\AppData\Roaming\npm-cache
2021-01-21 13:28 - 2020-11-18 14:07 - 000000000 ____D C:\Users\sense\AppData\Local\Spotify
2021-01-21 13:20 - 2019-05-10 22:02 - 000000000 ____D C:\p
2021-01-21 13:17 - 2020-11-18 14:06 - 000000000 ____D C:\Users\sense\AppData\Roaming\Spotify
2021-01-21 10:26 - 2020-11-28 14:22 - 000000444 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2021-01-21 09:18 - 2019-12-07 09:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-21 09:18 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-21 08:46 - 2020-09-07 08:22 - 000000000 ____D C:\Users\sense\AppData\Local\SquirrelTemp
2021-01-21 07:59 - 2020-07-11 20:49 - 000000000 ____D C:\ProgramData\Unified Remote
2021-01-21 07:31 - 2020-07-16 21:25 - 000000000 ____D C:\Users\sense\AppData\Local\CrashDumps
2021-01-21 07:31 - 2020-07-11 12:29 - 000000000 ____D C:\Users\sense\AppData\Roaming\uTorrent
2021-01-19 20:01 - 2020-11-04 14:51 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-19 20:01 - 2020-11-04 14:51 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-19 10:00 - 2020-12-13 20:45 - 000000000 ___RD C:\GoogleDrive
2021-01-19 09:59 - 2020-07-11 10:15 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-18 10:30 - 2020-07-11 13:09 - 000000000 ____D C:\Users\sense\AppData\Roaming\AIMP
2021-01-16 22:53 - 2020-10-31 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Azure Data Studio
2021-01-16 22:53 - 2020-10-31 20:53 - 000000000 ____D C:\Program Files\Azure Data Studio
2021-01-16 11:25 - 2019-12-07 09:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-15 18:45 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-15 08:59 - 2020-09-12 21:23 - 000194440 _____ C:\WINDOWS\system32\perfh01B.dat
2021-01-15 08:59 - 2020-09-12 21:23 - 000073900 _____ C:\WINDOWS\system32\perfc01B.dat
2021-01-15 08:59 - 2020-07-11 10:05 - 001349274 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-15 08:55 - 2020-11-28 11:56 - 000000000 ____D C:\ProgramData\DockerDesktop
2021-01-15 08:55 - 2020-09-04 19:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-15 08:55 - 2020-07-11 10:14 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-15 08:55 - 2020-07-11 09:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-15 08:55 - 2020-07-11 09:54 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-15 01:48 - 2019-12-07 09:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-01-15 01:47 - 2020-07-11 09:54 - 000473416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-15 00:08 - 2020-11-28 11:57 - 000000000 ___SD C:\WINDOWS\system32\lxss
2021-01-15 00:08 - 2019-12-07 14:41 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-15 00:08 - 2019-12-07 14:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-15 00:08 - 2019-12-07 14:41 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-15 00:08 - 2019-12-07 09:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-14 19:36 - 2020-11-28 11:48 - 000000000 ____D C:\Users\sense\AppData\Local\Docker
2021-01-14 18:04 - 2020-07-11 10:11 - 000000000 ____D C:\Users\sense
2021-01-14 10:22 - 2019-12-07 09:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-14 10:21 - 2020-12-08 13:43 - 000000000 ____D C:\Users\sense\AppData\Local\ElevatedDiagnostics
2021-01-14 10:18 - 2020-07-11 10:01 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-14 10:11 - 2020-07-13 10:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-14 10:09 - 2020-07-13 10:11 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-14 10:06 - 2020-09-12 20:59 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2021-01-14 10:06 - 2020-09-12 20:59 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2021-01-13 22:45 - 2020-11-28 12:02 - 000000000 ____D C:\Users\sense\AppData\Roaming\Docker Desktop
2021-01-11 21:18 - 2020-11-28 11:48 - 000000000 ____D C:\Users\sense\AppData\Roaming\Docker
2021-01-11 21:15 - 2020-07-11 10:17 - 000000000 ___RD C:\Users\sense\OneDrive
2021-01-11 21:14 - 2020-12-08 14:51 - 000000000 ____D C:\Program Files\Common Files\AV
2021-01-11 21:13 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\schemas
2021-01-11 21:02 - 2020-05-11 05:41 - 000671744 _____ C:\WINDOWS\system32\hgattest.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 001579818 _____ C:\WINDOWS\system32\WindowsVirtualization.V2.mof
2021-01-11 21:02 - 2019-12-07 09:10 - 001152064 _____ C:\WINDOWS\system32\WindowsHyperVCluster.V2.mof
2021-01-11 21:02 - 2019-12-07 09:10 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmconnect.exe
2021-01-11 21:02 - 2019-12-07 09:10 - 000343712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmEngUM.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000294056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmEngUM138.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000212488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmsvcext.sys
2021-01-11 21:02 - 2019-12-07 09:10 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmtpm.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000182560 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmsp.exe
2021-01-11 21:02 - 2019-12-07 09:10 - 000175928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvc.exe
2021-01-11 21:02 - 2019-12-07 09:10 - 000154936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmdebug.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000144967 _____ C:\WINDOWS\system32\virtmgmt.msc
2021-01-11 21:02 - 2019-12-07 09:10 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\HgsClientWmi.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000087352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmhgs.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000077624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtpm.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000073744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmmsprox.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000057856 _____ C:\WINDOWS\system32\hgsclientplugin.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000056320 _____ C:\WINDOWS\system32\vmstaging.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000044040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ramparser.sys
2021-01-11 21:02 - 2019-12-07 09:10 - 000043640 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmplatformca.exe
2021-01-11 21:02 - 2019-12-07 09:10 - 000040960 _____ C:\WINDOWS\SysWOW64\vmstaging.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AttestationWmiProvider.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdvGpuInfo.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lunparser.sys
2021-01-11 21:02 - 2019-12-07 09:10 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdvgmProxy.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdvgmProxy.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\synth3dvideoproxy.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000016384 _____ C:\WINDOWS\system32\hgclientserviceps.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\HostGuardianServiceClientResources.dll
2021-01-11 21:02 - 2019-12-07 09:10 - 000012088 _____ (Microsoft Corporation) C:\WINDOWS\system32\f1db7d81-95be-4911-935a-8ab71629112a_vmsvcext_sys.dll
2021-01-11 21:02 - 2019-12-07 09:07 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsp.sys
2021-01-11 19:47 - 2020-07-11 10:31 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-09 19:37 - 2020-09-12 20:57 - 000000000 ____D C:\Users\sense\.dotnet
2021-01-09 11:32 - 2019-12-07 09:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-09 11:32 - 2019-12-07 09:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-01-09 11:28 - 2020-11-04 14:51 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-08 23:31 - 2020-09-27 15:29 - 000000000 ____D C:\temp
2021-01-07 11:49 - 2020-07-11 10:17 - 000000000 ____D C:\Users\sense\AppData\Local\PlaceholderTileLogoFolder
2021-01-01 18:25 - 2020-11-28 11:59 - 000000000 ____D C:\Users\sense\.docker
2021-01-01 18:07 - 2020-11-28 11:54 - 000000000 ____D C:\Program Files\Docker
2020-12-27 16:10 - 2020-06-26 10:07 - 000000000 ____D C:\inetpub

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================