Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-01-2021
Ran by HP (administrator) on BOTA-HP (HP HP PROBOOK 450 G5 NOTEBOOK PC) (22-01-2021 13:03:37)
Running from e:\Stažené
Loaded Profiles: HP
Platform: Windows 10 Pro Version 1903 18362.1016 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\Nagstamon\Nagstamon.exe
(ACD Systems International -> ) [File not signed] C:\Program Files (x86)\ACD Systems\ACDSee\20.0\ACDSeeCommander20.exe
(ACD Systems International -> ACD Systems) [File not signed] C:\Program Files (x86)\ACD Systems\ACDSee\20.0\acdIDInTouch2.exe
(Conexant Systems LLC -> Conexant) C:\Windows\System32\MicTray64.exe
(Conexant Systems LLC.) [File not signed] C:\Windows\CxSvc\CxAudioSvc.exe
(Conexant Systems LLC.) [File not signed] C:\Windows\CxSvc\CxUtilSvc.exe
(DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe
(DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Eion Robb -> The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Greatis Software LLC -> Greatis Software, LLC) C:\Program Files\UPDATE\SU10Guard.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5fc410b2fddcadb9\HotKeyServiceUWP.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5fc410b2fddcadb9\HPHotkeyNotification.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5fc410b2fddcadb9\LanWlanWwanSwitchingServiceUWP.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_968d2e53c8174e28\GfxDownloadWrapper.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_968d2e53c8174e28\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_968d2e53c8174e28\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_968d2e53c8174e28\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_968d2e53c8174e28\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LiveQoS Incorporated -> LiveQoS Incorporated) C:\Program Files\HP\HP Velocity\systray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIKBE.EXE
(Simon Tatham -> Simon Tatham) E:\Dokumenty\klic\pageant.exe
(Synaptics Incorporated -> Conexant Systems LLC.) C:\Program Files\Conexant\SA3\HP-NB-AIO\SmartAudio3.exe
(Synaptics Incorporated -> Conexant Systems, Inc) C:\Program Files\Conexant\Flow\Flow.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated) [File not signed] C:\Windows\System32\SynaMonApp.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2018-01-22] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [669664 2019-10-02] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [894944 2019-10-02] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [ACSW20EN] => C:\Program Files (x86)\ACD Systems\ACDSee\20.0\acdIDInTouch2.exe [1851848 2018-10-17] (ACD Systems International -> ACD Systems) [File not signed]
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP Inc. -> HP)
HKLM-x32\...\Run: [HPNotifications] => C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe [1582632 2019-11-20] (HP Inc. -> HP)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe, <==== ATTENTION
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIKBE.EXE [298560 2013-09-12] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\Run: [ACDSeeCommanderStd20] => C:\Program Files (x86)\ACD Systems\ACDSee\20.0\ACDSeeCommander20.exe [3232200 2016-09-26] (ACD Systems International -> ) [File not signed]
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\Run: [ACDSeeCommander20] => C:\Program Files (x86)\ACD Systems\ACDSee\20.0\ACDSeeCommander20.exe [3232200 2016-09-26] (ACD Systems International -> ) [File not signed]
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\Run: [EPSDNMON] => ""
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\MountPoints2: {28c393fc-0e8f-11ea-8856-c8d9d28df9f7} - "F:\Startme.exe" 
HKU\S-1-5-18\...\Winlogon: [Shell] C:\WINDOWS\Explorer.exe [4625184 2020-08-13] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\EPSON WF-7610 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBKBE.DLL [179712 2013-10-22] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\HP1006LM: C:\WINDOWS\system32\HP1006LM.DLL [198144 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\...\Authentication\Credential Providers: [{733d146c-3c7f-4afc-8381-83348bf326bb}] -> C:\WINDOWS\system32\HPCredentialProvider.dll [2018-10-02] (HP Inc. -> HP)
HKLM\Software\...\Authentication\Credential Providers: [{77B7ED10-A641-4766-A428-8B9EE42E830A}] -> C:\windows\system32\DPCrProv2.dll [2017-11-08] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{E85E7D14-653B-4E51-9BC5-E5F9EC9BC51D}] -> C:\windows\system32\DPCrProv2.dll [2017-11-08] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F0C31759-99A6-493E-AD7D-7F69126CDFBC}] -> C:\windows\system32\DPCrProv2.dll [2017-11-08] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F731030D-3272-4D8B-A21A-3940EF268453}] -> C:\windows\system32\DPCrProv2.dll [2017-11-08] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DCFB2A33-814B-4236-BFBD-FFEA3F528385}] -> C:\windows\system32\DPCrProv2.dll [2017-11-08] (DigitalPersona, Inc. -> Crossmatch, Inc.)
IFEO\dismHost.exe: [Debugger] *
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *
Lsa: [Notification Packages] HPPwdFilter DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Velocity.lnk [2052-09-26]
ShortcutTarget: HP Velocity.lnk -> C:\Program Files\HP\HP Velocity\systray.exe (LiveQoS Incorporated -> LiveQoS Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nagstamon.lnk [2020-01-28]
ShortcutTarget: Nagstamon.lnk -> C:\Program Files\Nagstamon\Nagstamon.exe () [File not signed]
Startup: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pageant.lnk [2018-10-16]
ShortcutTarget: pageant.lnk -> E:\Dokumenty\klic\pageant.exe (Simon Tatham -> Simon Tatham)
Startup: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pidgin.lnk [2018-10-17]
ShortcutTarget: pidgin.lnk -> C:\Program Files (x86)\Pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community)
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C5A907B-FCCA-4E21-8923-AF5EF5D1F245} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0EA5FC84-07B6-40DD-9FCB-61C1F427ADF4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {10E1B2B9-D545-4AE6-B7CE-986A97958826} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
Task: {1169F4D6-0686-408F-AB21-36D77F3B8A44} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {1639BD88-A5F6-415D-B485-FDBC3F34C29E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)
Task: {200818DE-C647-4CBC-B67B-57159C172053} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {2EA3B23E-62BC-4084-87C7-BE7E05AD1BC0} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {3365F7D2-8297-448A-91D6-15EEC9E338C4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {4FADDEBA-6627-40E2-AC1C-854AAEFB62A9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {5266EBDA-64CC-4F7F-9FE1-ACB2049DE9EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {57B73CF1-C631-4556-B624-596E397841CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {59522541-8168-4176-92A0-63851616EDB9} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [2938448 2020-07-02] (Conexant Systems LLC -> Conexant)
Task: {5D628F98-F345-47EE-8E08-91CC8B6DC9A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5DAB8960-7F7E-415F-AFD2-EBEA084D4722} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {6112758C-E03C-442C-8017-95D79329502A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [348504 2020-11-06] (HP Inc. -> HP Inc.)
Task: {8327EC80-5B0E-4B4F-81EF-A78F0FE2A1AA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {9C184904-2CCF-41F7-95BC-7DECA6BE2782} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [461824 2017-10-06] (HP Inc. -> HP Inc.)
Task: {AA3C259F-90E1-4631-AB39-92E53FF7CD51} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {B5FAED5B-77CD-4A46-BBF0-C54F9988729E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {BB8CD16A-92F8-4AEF-9CAF-825E16EA5271} - System32\Tasks\EPSON WF-7610 Series Update {8619E6A0-191B-4AB0-A2E1-B6BA32616E58} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKBE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {CB49AA14-89BC-462F-885B-2E640F8E2F9A} - System32\Tasks\Microsoft\Windows\Conexant\SynaMonApp => C:\Windows\System32\SynaMonApp.exe [170496 2019-10-04] (Synaptics Incorporated) [File not signed]
Task: {D126399F-7662-407F-B190-3E72BC62B51C} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-09-27] (HP Inc. -> HP Inc.)
Task: {E94AE39C-E39E-426E-B02C-15EC8ED69439} - System32\Tasks\CRMTaskReminder_Welcome-S-1-5-21-1674953364-849228176-63381930-1002 => c:\Program Files (x86)\HP\HP JumpStart Bridge\RegistrationDataHandler.exe [432544 2017-10-06] (HP Inc. -> )
Task: {F7E92840-3176-435A-87E9-EB79F59E8548} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F99080A4-CA6E-4456-9520-7087D9B6100F} - System32\Tasks\EPSON WF-7610 Series Invitation {8619E6A0-191B-4AB0-A2E1-B6BA32616E58} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKBE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\EPSON WF-7610 Series Invitation {8619E6A0-191B-4AB0-A2E1-B6BA32616E58}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKBE.EXE
Task: C:\WINDOWS\Tasks\EPSON WF-7610 Series Update {8619E6A0-191B-4AB0-A2E1-B6BA32616E58}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKBE.EXE:/EXE:{8619E6A0-191B-4AB0-A2E1-B6BA32616E58} /F:UpdateWORKGROUP\DESKTOP-OB4RK3O$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{616bd202-7a15-421f-bdae-0058769c39f7}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{cb87ac66-d417-4206-ac5c-9835aa1761d8}: [DhcpNameServer] 192.168.1.99

Edge: 
=======
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-22]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-01-22]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: sb97owf7.default
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\sb97owf7.default [2021-01-22]
FF Homepage: Mozilla\Firefox\Profiles\sb97owf7.default -> www.google.cz
FF Extension: (MyJDownloader Browser Extension) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\sb97owf7.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2020-11-19] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Omnibug) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\sb97owf7.default\Extensions\Omnibug@rosssimpson.com.xpi [2020-12-14]
FF Extension: (Google Translator for Firefox) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\sb97owf7.default\Extensions\translator@zoli.bod.xpi [2019-02-11]
FF Extension: (Open with VLC) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\sb97owf7.default\Extensions\{1c7effb9-3126-48bb-824c-8b7520fa66dc}.xpi [2021-01-20]
FF Extension: (FormApps Extension) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\sb97owf7.default\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2019-06-13]
FF Extension: (Open in VLC™ media player) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\sb97owf7.default\Extensions\{6b954d17-d17c-4a19-8fe6-ee8052a562d6}.xpi [2021-01-20]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - c:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome => not found
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2018-10-17] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2019-08-03] (Microsoft Windows -> )
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [68608 2019-10-04] (Conexant Systems LLC.) [File not signed]
R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [166400 2019-10-04] (Conexant Systems LLC.) [File not signed]
R2 DpHost; c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe [529088 2017-11-08] (DigitalPersona, Inc. -> Crossmatch, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [2357936 2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 fpCsEvtSvc; C:\WINDOWS\System32\fpCSEvtSvc.exe [23912 2018-07-25] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5fc410b2fddcadb9\HotKeyServiceUWP.exe [1420224 2020-04-06] (HP Inc. -> HP Inc.)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2019-12-19] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [477184 2017-10-06] (HP Inc. -> HP Inc.)
R2 HPMAMSrv; C:\Program Files (x86)\HP\HP MAC Address Manager\hpMAMSrv.exe [542248 2019-04-22] (HP Inc. -> HP)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2019-04-12] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
S3 HPWorkWise; C:\Program Files (x86)\HP\HP WorkWise\HPWorkWiseService.exe [922456 2018-10-02] (HP Inc. -> HP)
S3 iaStorAfsService; C:\windows\IAStorAfsService\iaStorAfsService.exe [2403880 2018-01-24] (Intel(R) pGFX -> Intel Corporation)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5fc410b2fddcadb9\LanWlanWwanSwitchingServiceUWP.exe [798144 2020-04-06] (HP Inc. -> HP Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6149984 2020-08-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SU10Guard; C:\Program Files\UPDATE\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 valWBFPolicyService; C:\WINDOWS\System32\valWBFPolicyService.exe [92520 2018-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-14] (Microsoft Corporation) [File not signed]
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 IPeakLWF; C:\WINDOWS\system32\DRIVERS\ipeaklwf.sys [525144 2017-06-14] (LiveQoS Incorporated -> LiveQoS Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2052-09-26 11:48 - 2052-09-26 01:50 - 000000000 ____D C:\WINDOWS\IAStorAfsService
2052-09-26 11:48 - 2020-10-28 11:18 - 000000000 ____D C:\Program Files (x86)\HP
2052-09-26 11:48 - 2019-12-09 14:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2052-09-26 11:48 - 2019-08-04 08:27 - 000000000 ____D C:\WINDOWS\system32\Intel
2052-09-26 11:48 - 2019-08-03 15:10 - 000000000 ____D C:\Program Files\Synaptics
2052-09-26 11:45 - 2018-02-07 15:39 - 000342048 _____ (SunplusIT) C:\WINDOWS\system32\VCamPPage_x64.dll
2052-09-26 11:45 - 2018-02-07 15:39 - 000286752 _____ (SunplusIT) C:\WINDOWS\SysWOW64\VCamPPage.dll
2052-09-26 11:45 - 2018-01-20 01:28 - 000906720 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2052-09-26 11:45 - 2018-01-20 01:28 - 000069600 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAfs.sys
2052-09-26 11:36 - 2052-09-26 11:29 - 000000010 _____ C:\WINDOWS\csup.txt
2052-09-26 11:29 - 2052-09-26 11:29 - 000000000 __RSH C:\OS
2052-09-26 02:41 - 2052-09-26 02:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\Intel Corporation
2052-09-26 02:40 - 2052-09-26 02:40 - 000000000 ____D C:\Users\HP\AppData\Roaming\HP
2052-09-26 02:40 - 2052-09-26 02:40 - 000000000 ____D C:\Users\HP\AppData\Local\RegistrationDataHandler
2052-09-26 02:40 - 2052-09-26 02:40 - 000000000 ____D C:\Users\HP\AppData\Local\DBG
2052-09-26 02:40 - 2020-12-17 14:12 - 000000000 ___RD C:\Users\HP\OneDrive
2052-09-26 02:40 - 2018-10-16 15:57 - 000000000 ____D C:\Users\HP\AppData\Local\Intel
2052-09-26 02:39 - 2052-09-26 02:39 - 000000000 ____D C:\Users\HP\AppData\Roaming\Intel
2052-09-26 02:39 - 2052-09-26 02:39 - 000000000 ____D C:\Users\HP\AppData\Roaming\DigitalPersona
2052-09-26 02:39 - 2052-09-26 02:39 - 000000000 ____D C:\Users\HP\AppData\Roaming\Adobe
2052-09-26 02:39 - 2052-09-26 02:39 - 000000000 ____D C:\Users\HP\AppData\Local\Publishers
2052-09-26 02:39 - 2052-09-26 02:39 - 000000000 ____D C:\Users\HP\AppData\Local\DigitalPersona
2052-09-26 02:39 - 2021-01-22 13:01 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2052-09-26 02:39 - 2021-01-21 23:48 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2052-09-26 02:39 - 2021-01-03 18:00 - 000000000 ____D C:\Users\HP\AppData\Local\VirtualStore
2052-09-26 02:39 - 2020-12-22 07:49 - 000000000 ____D C:\Users\HP\AppData\Roaming\hpqLog
2052-09-26 02:39 - 2020-08-14 06:16 - 000000000 ___RD C:\Users\HP\3D Objects
2052-09-26 02:39 - 2019-08-03 14:23 - 000000000 ____D C:\Users\HP\AppData\Local\ConnectedDevicesPlatform
2052-09-26 02:39 - 2019-06-16 08:56 - 000000000 ____D C:\Users\HP\AppData\Local\Conexant
2052-09-26 02:39 - 2018-10-16 21:02 - 000000000 ____D C:\Users\HP\AppData\Local\Hewlett-Packard
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Šablony
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Poslední
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Okolní síť
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Dokumenty
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\Data aplikací
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Šablony
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Soubory cookie
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Poslední
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Okolní tiskárny
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Okolní síť
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Nabídka Start
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Dokumenty
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\Data aplikací
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\ProgramData\Šablony
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\ProgramData\Plocha
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\ProgramData\Dokumenty
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\ProgramData\Data aplikací
2052-09-26 02:32 - 2052-09-26 02:32 - 000000000 _SHDL C:\Documents and Settings
2052-09-26 02:13 - 2052-09-26 02:13 - 001279790 _____ C:\ProgramData\hpdam_install_log.txt
2052-09-26 02:13 - 2052-09-26 02:13 - 000000010 _____ C:\WINDOWS\system32\customization_online.bat
2052-09-26 02:12 - 2052-09-26 02:12 - 000000000 ____D C:\WINDOWS\sysnative
2052-09-26 02:12 - 2020-09-03 09:51 - 000000000 ____D C:\WINDOWS\HP
2052-09-26 02:12 - 2020-03-09 08:50 - 000000000 ____D C:\Program Files\HPCommRecovery
2052-09-26 02:12 - 2019-08-03 15:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2052-09-26 02:12 - 2018-11-07 15:14 - 000001943 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2052-09-26 02:11 - 2052-09-26 02:11 - 000000000 ____D C:\WINDOWS\DPDrv
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\zh-hant
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\zh-hans
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinBioPlugins
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\tr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\th
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\sv
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\sr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\sl
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\sk
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ru
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ro
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\pl
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\no
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\nl
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ko
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ja
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\it
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\hu
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\hr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\he
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\fi
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\el
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\de
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\da
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\bg
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ar
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\zh-hant
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\zh-hans
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\tr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\th
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\sv
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\sr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\sl
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\ru
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\ro
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\pl
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\no
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\nl
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\lv
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\lt
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\ko
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\ja
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\it
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\hu
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\hr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\he
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\fr
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\fi
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\et
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\es
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\el
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\de
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\da
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\bg
2052-09-26 02:11 - 2019-08-03 15:10 - 000000000 ____D C:\WINDOWS\system32\ar
2052-09-26 02:11 - 2018-10-16 22:01 - 000000000 ____D C:\ProgramData\HPQLOG
2052-09-26 02:02 - 2052-09-26 02:29 - 000000000 ___RD C:\Program Files\Online Services
2052-09-26 02:02 - 2052-09-26 02:29 - 000000000 ___RD C:\Program Files (x86)\Online Services
2052-09-26 02:02 - 2020-09-03 10:04 - 000004096 _____ (Hewlett-Packard Company) C:\WINDOWS\SysWOW64\SigFile.exe
2052-09-26 02:02 - 2019-08-03 15:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2052-09-26 02:02 - 2019-08-03 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2052-09-26 02:02 - 2018-05-04 18:04 - 000004096 _____ (HP Inc.) C:\WINDOWS\System32)
2052-09-26 02:01 - 2019-06-16 08:52 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2052-09-26 02:01 - 2017-04-20 09:05 - 000338400 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2052-09-26 02:01 - 2017-04-14 09:13 - 000329184 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsP2Stor.sys
2052-09-26 02:00 - 2021-01-22 13:01 - 000000000 ____D C:\Intel
2052-09-26 01:59 - 2052-09-26 01:59 - 000000000 ____D C:\WINDOWS\UCI
2052-09-26 01:59 - 2020-10-18 10:29 - 000000000 ____D C:\WINDOWS\CxSvc
2052-09-26 01:59 - 2019-08-03 15:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2052-09-26 01:58 - 2020-10-18 10:29 - 001705080 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2052-09-26 01:58 - 2019-08-03 14:11 - 000000000 ____D C:\WINDOWS\system32\cAVS
2052-09-26 01:57 - 2020-10-18 10:29 - 000000000 ____D C:\Program Files\Conexant
2052-09-26 01:56 - 2019-08-03 15:10 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2052-09-26 01:56 - 2018-10-17 06:47 - 000000000 ____D C:\ProgramData\UIU
2052-09-26 01:56 - 2015-03-12 03:07 - 000208600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RUAudExD.DLL
2052-09-26 01:55 - 2021-01-20 16:14 - 000000000 ____D C:\WINDOWS\SoftwareDistribution.bak
2052-09-26 01:55 - 2020-11-30 07:54 - 000000000 ____D C:\Program Files (x86)\Intel
2052-09-26 01:54 - 2052-09-26 01:54 - 000002682 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP ePrint SW.lnk
2052-09-26 01:54 - 2052-09-26 01:54 - 000000000 ____D C:\ProgramData\Apple
2052-09-26 01:54 - 2020-11-30 07:54 - 000000000 ____D C:\ProgramData\Intel
2052-09-26 01:54 - 2020-11-30 07:54 - 000000000 ____D C:\Program Files\Intel
2052-09-26 01:54 - 2020-10-18 09:46 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2052-09-26 01:54 - 2018-10-17 17:28 - 000000000 ____D C:\Program Files (x86)\Realtek
2052-09-26 01:53 - 2052-09-26 02:37 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2052-09-26 01:53 - 2020-10-22 08:46 - 000000000 ____D C:\Program Files\HP
2052-09-26 01:53 - 2020-10-18 09:46 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2052-09-26 01:53 - 2020-04-25 17:23 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2052-09-26 01:53 - 2017-10-29 08:27 - 000144680 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPMUIDir.exe
2052-09-26 01:52 - 2052-09-26 02:29 - 000000000 _____ C:\WINDOWS\SysWOW64\Drivers\103C_HP_bNB_PROBOOK 450 G5 NOTEBOOK PC_Y5336AN_0U_Q5CD8316XF4_E17WWR4BT601#SBCM#DBCM_4A_I837D_SHP_V02.2A.00_BQ85 01.02.05_T180312_W148-0_L405_M8088_J256_7Intel_86EA_91.80_#520926_N808624FD;10EC8168_(3DN49ES#BCM).MRK
2052-09-26 01:52 - 2052-09-26 02:29 - 000000000 _____ C:\WINDOWS\system32\Drivers\103C_HP_bNB_PROBOOK 450 G5 NOTEBOOK PC_Y5336AN_0U_Q5CD8316XF4_E17WWR4BT601#SBCM#DBCM_4A_I837D_SHP_V02.2A.00_BQ85 01.02.05_T180312_W148-0_L405_M8088_J256_7Intel_86EA_91.80_#520926_N808624FD;10EC8168_(3DN49ES#BCM).MRK
2052-09-26 01:50 - 2052-09-26 01:50 - 000000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_wbf_vfs_003f_adv_01_09_00.Wdf
2052-09-26 01:50 - 2052-09-26 01:50 - 000000000 _____ C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2052-09-26 01:50 - 2021-01-22 13:01 - 000000000 ____D C:\ProgramData\Synaptics
2052-09-26 01:50 - 2018-11-05 02:57 - 000067208 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID.sys
2021-01-22 12:47 - 2021-01-22 13:03 - 000000000 ____D C:\FRST
2021-01-22 12:30 - 2021-01-22 12:30 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-22 12:12 - 2021-01-22 12:12 - 000000000 ____D C:\Program Files (x86)\Outbyte
2021-01-21 23:42 - 2021-01-22 13:03 - 000000000 ____D C:\Program Files\CCleaner
2021-01-21 23:42 - 2021-01-21 23:42 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-21 23:42 - 2021-01-21 23:42 - 000002866 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-01-21 23:42 - 2021-01-21 23:42 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-01-21 23:42 - 2021-01-21 23:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-01-21 23:33 - 2021-01-21 23:33 - 000021024 _____ (Advanced System Repair Inc.) C:\WINDOWS\system32\Drivers\asrscan.sys
2021-01-20 16:02 - 2021-01-20 16:02 - 000000000 ____D C:\Users\HP\AppData\Local\mbam
2021-01-20 16:02 - 2021-01-20 16:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-20 13:03 - 2021-01-21 23:48 - 000000000 ____D C:\Program Files (x86)\Synology
2021-01-20 12:14 - 2021-01-20 12:14 - 000000000 ____D C:\Users\HP\AppData\Local\emano.waldeck
2021-01-20 12:01 - 2021-01-20 12:02 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2021-01-20 11:58 - 2021-01-20 11:58 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-01-20 11:58 - 2021-01-20 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2021-01-20 11:58 - 2021-01-20 11:58 - 000000000 ____D C:\Program Files\VideoLAN
2021-01-13 09:09 - 2021-01-14 08:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2021-01-07 08:07 - 2021-01-07 08:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-06 20:25 - 2021-01-12 21:26 - 000000000 ____D C:\Program Files\Mozilla Firefox

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2052-09-26 02:39 - 2017-11-21 15:24 - 000000000 _RSHD C:\SYSTEM.SAV
2052-09-26 02:12 - 2018-01-05 16:45 - 000000000 _RSHD C:\hp
2021-01-22 13:03 - 2019-02-02 22:17 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-22 13:03 - 2018-10-16 15:39 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2021-01-22 13:02 - 2018-10-16 20:57 - 000000000 ____D C:\Users\HP\AppData\Roaming\.purple
2021-01-22 13:01 - 2020-08-17 07:10 - 000000000 ____D C:\Program Files\UPDATE
2021-01-22 13:01 - 2020-03-05 20:40 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-22 13:01 - 2019-08-03 14:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-22 13:01 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-22 13:01 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-22 12:54 - 2020-09-03 21:16 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oil Tycoon 2
2021-01-22 12:35 - 2019-08-03 14:20 - 001885738 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-22 12:35 - 2019-03-19 12:57 - 000782662 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-22 12:35 - 2019-03-19 12:57 - 000178498 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-22 12:35 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-22 12:27 - 2019-08-03 14:54 - 000000000 ___RD C:\WINDOWS\WebManagement
2021-01-22 12:27 - 2019-08-03 14:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-22 12:27 - 2019-07-31 07:16 - 000000000 ___DC C:\WINDOWS\Panther
2021-01-22 12:27 - 2019-03-19 05:52 - 000000000 __RSD C:\WINDOWS\Media
2021-01-22 12:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Registration
2021-01-22 12:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-22 12:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Help
2021-01-22 09:54 - 2018-10-16 21:34 - 000000128 _____ C:\Users\HP\AppData\Local\PUTTY.RND
2021-01-22 09:54 - 2018-10-16 21:24 - 000000000 ____D C:\Users\HP\AppData\Roaming\mRemoteNG
2021-01-22 08:45 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-22 08:28 - 2019-08-03 14:22 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{EDA97527-E815-4908-9F3F-31291838798B}
2021-01-21 23:51 - 2019-08-03 14:11 - 000554888 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-21 23:49 - 2018-10-16 15:28 - 000000000 ____D C:\Program Files\rempl
2021-01-21 23:46 - 2018-10-29 13:17 - 000000000 ____D C:\Program Files (x86)\DevDesktop
2021-01-21 23:43 - 2018-10-24 11:14 - 000000000 ____D C:\Users\HP\AppData\Roaming\TeamViewer
2021-01-21 23:23 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\catroot2.bak
2021-01-21 23:23 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2021-01-21 19:57 - 2018-10-22 12:28 - 000000600 _____ C:\Users\HP\AppData\Roaming\PUTTY.RND
2021-01-20 15:42 - 2019-08-22 12:07 - 000000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics
2021-01-20 15:32 - 2018-10-17 09:09 - 000000000 ____D C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
2021-01-20 15:20 - 2018-10-16 15:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-20 07:42 - 2020-06-02 18:19 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-20 07:42 - 2020-06-02 18:19 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-19 15:09 - 2019-10-14 15:26 - 000000000 ____D C:\Users\HP\AppData\Local\TeamViewer
2021-01-19 13:26 - 2018-10-19 13:30 - 000000000 ____D C:\Users\HP\AppData\Local\JDownloader 2.0
2021-01-16 09:28 - 2018-10-26 21:11 - 000000600 _____ C:\Users\HP\PUTTY.RND
2021-01-14 08:09 - 2018-10-16 19:38 - 000001281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-01-10 20:27 - 2020-06-02 18:19 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-10 20:27 - 2020-06-02 18:19 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-07 08:07 - 2018-10-16 15:39 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-03 23:36 - 2018-10-18 11:50 - 000001025 _____ C:\Users\Public\Desktop\PotPlayer 64 bit.lnk

==================== Files in the root of some directories ========

2020-05-22 21:26 - 2020-05-22 21:26 - 000042020 _____ () C:\Users\HP\AppData\Roaming\fqh_0P1F2Z1E1I1T2U1P1C1V0F0StJ1V0A2X1T1B2Z1V0N0C0H.txt
2020-05-22 21:26 - 2020-05-22 21:26 - 000286604 _____ () C:\Users\HP\AppData\Roaming\fqh_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2018-10-22 12:28 - 2021-01-21 19:57 - 000000600 _____ () C:\Users\HP\AppData\Roaming\PUTTY.RND
2018-10-16 21:34 - 2021-01-22 09:54 - 000000128 _____ () C:\Users\HP\AppData\Local\PUTTY.RND

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================