Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02
Ran by trener (administrator) on LENOVO-BRUNTALS (LENOVO 20384) (25-09-2021 22:17:22)
Running from C:\Users\trener\Downloads
Loaded Profiles: trener
Platform: Windows 10 Home Version 20H2 19042.1202 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe
() [File not signed] C:\Program Files\Lenovo PhoneCompanion\adb.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Fortemedia Inc. -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(Google LLC -> Google) C:\Users\trener\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\software_reporter_tool.exe <2>
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\trener\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.Amd64.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.exe <3>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe <6>
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\password_manager.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_desktop.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_metro.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files\Lenovo\Password Manager\password_manager.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <3>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\trener\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\trener\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\trener\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotification.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WaaSMedicAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1161_none_7e3076a27c733477\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(pdfforge GmbH -> Â© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe <7>
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe <2>
(Pokki, Inc. -> Pokki) C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Users\trener\AppData\Local\Temp\HouseCall\housecall.bin
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Users\trener\AppData\Local\Temp\HouseCall\HouseCallX_x64\HouseCallX.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [9308416 2015-06-02] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-31] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [PasswordManager] => C:\Program Files\Lenovo\Password Manager\password_manager.exe [1622072 2014-01-10] (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited)
HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [836592 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10973168 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [124184 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35093120 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\Run: [MicrosoftEdgeAutoLaunch_D28F5C86FEB24DE37E5170E9A6C15A58] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\RunOnce: [Application Restart #7] => C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [9581800 2020-12-04] (Pokki, Inc. -> Pokki)
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\RunOnce: [Application Restart #5] => C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [9581800 2020-12-04] (Pokki, Inc. -> Pokki)
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\RunOnce: [Application Restart #4] => C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [9581800 2020-12-04] (Pokki, Inc. -> Pokki)
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\RunOnce: [Application Restart #3] => C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [9581800 2020-12-04] (Pokki, Inc. -> Pokki)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [120200 2015-12-13] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\92.2.11577.162\Installer\chrmstp.exe [2021-09-15] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-16] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ThinkPad OneLink Dock Management.lnk [2014-11-15]
ShortcutTarget: ThinkPad OneLink Dock Management.lnk -> C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C6A38C-D790-4C73-9E16-07A64E5663F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {19F29307-6793-4314-9C74-CF18AB7EF5FB} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {252B9CC2-B43D-4C74-9084-7627221EDECA} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe
Task: {26E8C8D6-50BF-47A9-A653-C416D0F70068} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {27489411-B6B2-4DE7-8201-FF00091D3C09} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {3086DED2-801A-4FAE-A066-26E6FA66A141} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-09-14] (Avast Software s.r.o. -> Avast Software)
Task: {345FCE3B-F8AE-4054-BDA2-075E116F1C5D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62448 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
Task: {34744C18-25C9-4FC9-B0B7-8EF5CD567F4A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {36C159E4-3B9D-424E-B2B4-62ACECA7BBBE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {38B98F2D-1A94-43E0-ADE0-FADA4A5CB5A0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3ABE4B19-15E7-479F-B416-0DE3B12CB7C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {3F3F8784-ED97-4CEA-B245-11D8E03B260B} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2299872 2021-08-20] (Piriform Software Ltd -> Piriform Software)
Task: {40B98C8A-C33E-4958-8FEF-BFCE7AD11154} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e26e78a0-a06b-4fc9-b4dc-fc1beac86103 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81912 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
Task: {44C18BCD-468E-4D6C-B0A3-0B9D55511E90} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\ScheduleEventAction.exe [26664 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
Task: {4A74DD90-0E8A-470D-975A-2D0F5F1EBA99} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {4CB46194-23D1-4571-BE46-FB9D622CB9A3} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4917528 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {5B6BEC95-CE8D-4CE0-BA36-9ED31BB012D9} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {610C1D41-D194-4883-B28C-955F22F747EA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {658926B0-8586-4D0E-A5DD-C0A849067DF9} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6E98FA43-A7A7-49BB-9280-E0F44D169D51} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0323e848-7a19-4918-a52a-ae5ded3ffb82 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81912 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
Task: {71AF1D2C-A3E9-40EC-AE74-FE438C178170} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e645aca1-0626-4a1b-8e38-c6cb5c5ba745 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81912 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
Task: {7FA59465-5C38-41C0-936E-E9E5833A0855} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2299872 2021-08-20] (Piriform Software Ltd -> Piriform Software)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8F6CCCBD-32E5-478B-B533-A5745E1C3C8F} - System32\Tasks\CCleanerSkipUAC - trener => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9328F1C2-6EA6-4920-9EC7-89E39E45A283} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16864 2015-12-10] (LENOVO -> Lenovo)
Task: {96AA7780-BE5C-4A01-9585-10223E08DF56} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [3271576 2015-11-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {9893A1DB-95AF-4A99-B27E-756EE2B2F754} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {994591F7-2272-4139-B9B8-5B6138124AED} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {9E5373EA-AE5C-4A0B-8D34-CEE635B98B0A} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_TVSUUpdateTask_Once => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 2 /f /reg:32
Task: {A0BE9160-FA49-48C8-ACAD-BDB68F77ECB7} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148960 2015-12-10] (LENOVO -> Lenovo)
Task: {A500BD0E-0239-4225-8E45-7FB35DEAD7BD} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {A8EF2DAB-A9A7-4129-822D-409C5B8B42F6} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {AAE7A4B1-0B9E-4B31-ACDE-5ACB47E2F549} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {AC676EE9-BB2A-45DB-90FB-897451C5E7B3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {B92E9862-6B75-4FCB-B313-51E553AADDA8} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
Task: {BAC45E5F-BEEE-47B3-B560-4FB5EBA91E93} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-259254674-3041541296-1202822968-1001 => C:\Users\trener\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {BB608588-23ED-4529-A5C1-AC7C4E081D4D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\474488dc-3a6d-4776-9f29-e5f73e253dcf => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81912 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
Task: {C1A3BBCB-322A-4A78-AE13-1D51D42165F4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\22bb562b-4b1b-4ba9-b90a-0d925faf2d50 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81912 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
Task: {CDACDCB0-B025-4C7D-9758-4FC0F5391ACB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D274C3CC-2F71-4DAE-A218-A63B817624C8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {DEA7B20E-77A1-426E-BE9F-435F68BD9E29} - System32\Tasks\SweetLabs App Platform => C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [10650856 2020-12-04] (Pokki, Inc. -> Pokki)
Task: {E9D3830C-D561-4DCF-AEE7-C70C09127E29} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148960 2015-12-10] (LENOVO -> Lenovo)
Task: {EB6F28C9-FB4F-4E23-91CC-A8227F907D5D} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [269792 2015-12-10] (LENOVO -> Lenovo)
Task: {EE7E4715-4387-4C20-AB57-8AB0496FCF9C} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {EE8472E3-1673-46E8-B888-962A5325EC48} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
Task: {FE4A5D76-9708-4205-9899-BED82944E401} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1360352 2015-12-10] (LENOVO -> Lenovo)
Task: {FF7894D7-1BF1-4A9A-8927-5C51B238C21B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 100.100.100.200 100.100.100.100
Tcpip\..\Interfaces\{78f07451-7657-4c33-a8d7-66a9fa1a8f02}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{f9067724-0fdf-4712-b7fe-965ae38742c6}: [DhcpNameServer] 100.100.100.200 100.100.100.100

Edge: 
=======
DownloadDir: C:\Users\trener\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\trener\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-25]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2015-12-13] [Legacy] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-06-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-06-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default [2021-09-25]
CHR Notifications: Default -> hxxps://captcharesolving-universe.com
CHR Extension: (Prezentace) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-23]
CHR Extension: (Vyhledávání Google) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-23]
CHR Extension: (Tabulky) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Lenovo Password Manager) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\geempcnjhccnoepfmahaeemnnfnignab [2015-12-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR HKLM-x32\...\Chrome\Extension: [geempcnjhccnoepfmahaeemnnfnignab] - C:\Program Files (x86)\Lenovo\Password Manager\chrome_npapi_extension.crx [2014-01-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8303184 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [630040 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [377624 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\92.2.11577.162\elevation_service.exe [1419240 2021-08-20] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81912 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (LENOVO -> Lenovo)
R2 LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe [389680 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe [31248 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272864 2015-12-10] (LENOVO -> Lenovo)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2417376 2015-10-19] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2015-10-19] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2015-10-19] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [959248 2015-10-05] (pdfforge GmbH -> Â© pdfforge GmbH.)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [288240 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [305136 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35712 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [221584 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [367632 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250384 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99344 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17344 2021-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41344 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [184120 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [538464 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107840 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82904 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851704 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [553496 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [328568 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 LubFsFlt; C:\windows\System32\Drivers\LubFsFlt.sys [27384 2014-02-22] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R0 LubSec; C:\WINDOWS\System32\Drivers\LubSec.sys [45304 2014-02-22] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [337920 2017-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-09-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [433384 2021-09-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-11] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-25 22:17 - 2021-09-25 22:36 - 000036689 _____ C:\Users\trener\Downloads\FRST.txt
2021-09-25 22:11 - 2021-09-25 22:31 - 000000000 ____D C:\FRST
2021-09-25 21:57 - 2021-09-25 21:58 - 002304512 _____ (Farbar) C:\Users\trener\Downloads\FRST64.exe
2021-09-25 21:46 - 2021-09-25 21:46 - 000000036 _____ C:\Users\trener\AppData\Local\housecall.guid.cache
2021-09-25 21:41 - 2021-09-25 21:42 - 003333936 _____ (Trend Micro Inc.) C:\Users\trener\Downloads\HousecallLauncher64.exe
2021-09-25 21:30 - 2021-09-25 21:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-09-25 21:02 - 2021-09-25 22:23 - 000000000 ___HD C:\$WinREAgent
2021-09-15 22:29 - 2021-09-15 22:29 - 000000000 ____D C:\Users\trener\AppData\Local\MCS Studios
2021-09-15 22:28 - 2021-09-15 22:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCS Studios
2021-09-15 22:28 - 2021-09-15 22:28 - 000000000 ____D C:\Program Files (x86)\MCS Studios
2021-09-15 22:28 - 2006-02-07 13:02 - 000152848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2021-09-15 22:28 - 2005-12-14 22:17 - 000237568 _____ C:\WINDOWS\SysWOW64\mcstabs.ocx
2021-09-15 22:28 - 2005-04-15 20:58 - 001071088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCOMCTL.OCX
2021-09-15 22:28 - 2000-07-15 00:00 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6STKIT.DLL
2021-09-15 22:28 - 2000-05-22 19:58 - 000608448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.ocx
2021-09-15 22:28 - 2000-05-22 17:58 - 000115920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinet.ocx
2021-09-15 22:28 - 1998-06-18 00:00 - 000089360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB5DB.DLL
2021-09-15 22:27 - 2021-09-15 22:27 - 002737741 _____ (MCS Studios ) C:\Users\trener\Downloads\mcs_cpubmark2008_setup.exe
2021-09-15 22:02 - 2021-09-15 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPU-M Benchmark
2021-09-15 22:02 - 2021-09-15 22:02 - 000000000 ____D C:\Program Files (x86)\CPU-M Benchmark
2021-09-15 22:00 - 2021-09-15 22:00 - 000427001 _____ (Major Share (MajorShare.com) ) C:\Users\trener\Downloads\cpu-m-benchmark.exe
2021-09-15 20:12 - 2021-09-15 21:25 - 000001891 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-09-15 19:56 - 2021-09-25 21:05 - 000000000 ____D C:\Users\trener\AppData\Local\CrashDumps
2021-09-14 22:07 - 2021-09-14 22:07 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-14 22:06 - 2021-09-14 22:06 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-14 22:06 - 2021-09-14 22:06 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-14 22:06 - 2021-09-14 22:06 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-14 22:06 - 2021-09-14 22:06 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2021-09-14 22:06 - 2021-09-14 22:06 - 000011345 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-14 22:04 - 2021-09-14 22:04 - 000000000 ____D C:\Users\trener\AppData\Local\Avast Software
2021-09-14 22:01 - 2021-09-14 22:01 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-14 22:01 - 2021-09-14 22:01 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-14 22:00 - 2021-09-14 22:00 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-14 22:00 - 2021-09-14 22:00 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-14 21:59 - 2021-09-14 21:59 - 000000000 ____D C:\Users\trener\AppData\Roaming\Avast Software
2021-09-14 21:59 - 2021-09-14 21:59 - 000000000 ____D C:\Users\trener\AppData\Local\CEF
2021-09-14 21:58 - 2021-09-14 21:58 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2021-09-14 21:58 - 2021-09-14 21:58 - 000002159 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-09-14 21:57 - 2021-09-14 21:57 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-14 21:57 - 2021-09-14 21:57 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-14 21:56 - 2021-09-14 21:56 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-14 21:56 - 2021-09-14 21:56 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-14 21:55 - 2021-09-14 21:56 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-14 21:55 - 2021-09-14 21:55 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-14 21:54 - 2021-09-14 21:54 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-14 21:48 - 2021-09-14 21:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-09-14 21:46 - 2021-09-16 18:19 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-09-14 21:45 - 2021-09-14 21:47 - 000328568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000553496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000538464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000250384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000184120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000107840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000099344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000082904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000041344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000017344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-09-14 21:45 - 2021-09-14 21:43 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-09-14 21:45 - 2021-09-14 21:42 - 000851704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-09-14 21:45 - 2021-09-14 21:42 - 000367632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-09-14 21:45 - 2021-09-14 21:42 - 000221584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-09-14 21:45 - 2021-09-14 21:42 - 000035712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-09-14 21:44 - 2021-09-14 21:44 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-09-14 21:40 - 2021-09-14 21:40 - 000000000 ____D C:\Program Files\Avast Software
2021-09-14 21:39 - 2021-09-15 22:37 - 000000000 ____D C:\ProgramData\Avast Software
2021-09-14 21:38 - 2021-09-14 21:39 - 000224544 _____ (AVAST Software) C:\Users\trener\Downloads\avast_free_antivirus_setup_online.exe
2021-09-10 18:44 - 2021-09-10 18:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-09-10 18:44 - 2021-09-10 18:44 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2021-09-10 18:44 - 2021-09-10 18:44 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2021-09-10 18:43 - 2021-09-10 18:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-09-10 18:39 - 2021-09-10 18:39 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-25 22:44 - 2015-12-12 23:48 - 000000000 ___RD C:\Users\trener\OneDrive
2021-09-25 22:41 - 2020-10-23 22:15 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-259254674-3041541296-1202822968-1001
2021-09-25 22:41 - 2020-10-23 21:44 - 000002437 _____ C:\Users\trener\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-25 22:34 - 2020-10-23 21:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-25 22:23 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-25 21:33 - 2021-06-06 10:52 - 000000000 ____D C:\Program Files\CCleaner
2021-09-25 21:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-25 21:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-25 20:57 - 2017-08-18 07:20 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-09-25 20:57 - 2015-12-12 23:44 - 000000000 __SHD C:\Users\trener\IntelGraphicsProfiles
2021-09-16 23:10 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-16 22:57 - 2015-12-23 00:29 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-16 22:54 - 2020-10-23 22:15 - 000002290 _____ C:\WINDOWS\system32\Tasks\McAfee Remediation (Prepare)
2021-09-16 22:30 - 2020-10-23 22:15 - 000002120 _____ C:\WINDOWS\system32\Tasks\PDVDServ Task
2021-09-16 20:12 - 2020-10-23 22:15 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{545C7E2F-5564-4065-929B-1F17B7F3A28B}
2021-09-16 18:34 - 2015-12-23 00:30 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-09-16 18:28 - 2015-12-12 12:17 - 000000000 ____D C:\Users\trener\AppData\Local\SweetLabs App Platform
2021-09-15 22:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-09-15 22:34 - 2020-10-23 22:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-15 22:34 - 2020-10-23 21:35 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-15 22:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-09-15 22:34 - 2017-08-18 07:17 - 000000000 ____D C:\ProgramData\Synaptics
2021-09-15 22:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-15 22:29 - 2015-12-12 12:21 - 000000000 ____D C:\Users\trener\AppData\Local\VirtualStore
2021-09-15 21:55 - 2018-10-11 01:05 - 000000000 ____D C:\Users\trener\AppData\Local\PlaceholderTileLogoFolder
2021-09-15 21:35 - 2020-10-23 21:57 - 001693350 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-15 21:35 - 2019-12-07 16:41 - 000718024 _____ C:\WINDOWS\system32\perfh005.dat
2021-09-15 21:35 - 2019-12-07 16:41 - 000145166 _____ C:\WINDOWS\system32\perfc005.dat
2021-09-15 21:35 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-15 21:20 - 2020-10-25 18:24 - 000000000 ____D C:\WINDOWS\Minidump
2021-09-15 21:18 - 2014-11-15 12:04 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-09-15 21:16 - 2017-12-15 08:58 - 000000000 ____D C:\Users\trener\AppData\Local\Packages
2021-09-15 21:13 - 2014-11-15 12:50 - 000000000 ____D C:\ProgramData\CyberLink
2021-09-15 21:13 - 2014-11-15 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-09-15 21:13 - 2014-11-15 12:14 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-09-15 21:08 - 2017-03-21 23:50 - 000000000 ___RD C:\Program Files (x86)\Skype
2021-09-15 21:08 - 2015-12-26 15:29 - 000000000 ____D C:\ProgramData\Skype
2021-09-15 20:48 - 2021-06-06 10:53 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2021-09-15 20:47 - 2021-06-06 10:55 - 000002398 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2021-09-15 20:15 - 2020-10-23 22:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-09-15 20:14 - 2015-12-12 12:28 - 000000000 ____D C:\Users\trener\AppData\Local\Lenovo
2021-09-15 20:14 - 2014-11-15 12:42 - 000000000 ____D C:\ProgramData\Lenovo
2021-09-15 19:47 - 2020-10-23 21:36 - 000275696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-15 19:36 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-15 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-15 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-15 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-15 19:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-15 19:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-15 19:27 - 2016-12-12 21:37 - 000000000 ____D C:\Users\trener\AppData\Local\ElevatedDiagnostics
2021-09-15 18:50 - 2015-12-13 13:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-15 18:16 - 2015-12-13 13:39 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 18:09 - 2020-06-10 17:49 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-15 18:09 - 2020-06-10 17:49 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-09-14 21:45 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-14 21:02 - 2021-06-02 22:18 - 000001436 _____ C:\Users\trener\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-09-14 21:01 - 2021-06-02 22:19 - 000001330 _____ C:\Users\trener\Desktop\ESET Online Scanner.lnk
2021-09-14 05:57 - 2020-10-23 21:44 - 000000000 ____D C:\Users\trener
2021-09-11 09:11 - 2018-02-15 21:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-11 08:54 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-09-11 07:52 - 2020-10-01 20:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-10 16:05 - 2015-12-13 13:40 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories ========

2015-12-12 12:25 - 2015-12-23 00:39 - 000006220 _____ () C:\Users\trener\AppData\Roaming\AbsoluteReminder.xml
2015-12-12 12:21 - 2015-12-12 22:13 - 000005343 _____ () C:\Users\trener\AppData\Local\BTServer.log
2021-09-25 21:46 - 2021-09-25 21:46 - 000000036 _____ () C:\Users\trener\AppData\Local\housecall.guid.cache
2016-03-18 22:01 - 2016-03-18 22:01 - 000000000 _____ () C:\Users\trener\AppData\Local\{E7CE58B8-3E60-42B2-AACC-B13D2AC2F8C1}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================