Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02
Ran by trener (administrator) on LENOVO-BRUNTALS (LENOVO 20384) (26-09-2021 20:28:39)
Running from C:\Users\trener\Downloads
Loaded Profiles: trener
Platform: Windows 10 Home Version 20H2 19042.1237 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Fortemedia Inc. -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <13>
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.Amd64.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.exe <4>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\password_manager.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_desktop.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_metro.exe
(Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files\Lenovo\Password Manager\password_manager.exe
(Microsoft Corporation -> ) C:\Program Files (x86)\Microsoft\Edge\Application\94.0.992.31\identity_helper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\trener\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CloudExperienceHostBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(pdfforge GmbH -> Â© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [9308416 2015-06-02] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-31] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [PasswordManager] => C:\Program Files\Lenovo\Password Manager\password_manager.exe [1622072 2014-01-10] (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [124184 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35093120 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\Run: [MicrosoftEdgeAutoLaunch_D28F5C86FEB24DE37E5170E9A6C15A58] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\RunOnce: [Application Restart #7] => C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe  --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resou (the data entry has 585 more characters).
HKU\S-1-5-21-259254674-3041541296-1202822968-1001\...\RunOnce: [Application Restart #5] => C:\Users\trener\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe  --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resou (the data entry has 585 more characters).
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [120200 2015-12-13] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\93.0.12115.85\Installer\chrmstp.exe [2021-09-26] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-16] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ThinkPad OneLink Dock Management.lnk [2014-11-15]
ShortcutTarget: ThinkPad OneLink Dock Management.lnk -> C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {19F29307-6793-4314-9C74-CF18AB7EF5FB} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {252B9CC2-B43D-4C74-9084-7627221EDECA} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe
Task: {3086DED2-801A-4FAE-A066-26E6FA66A141} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-09-14] (Avast Software s.r.o. -> Avast Software)
Task: {34744C18-25C9-4FC9-B0B7-8EF5CD567F4A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {36C159E4-3B9D-424E-B2B4-62ACECA7BBBE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {38B98F2D-1A94-43E0-ADE0-FADA4A5CB5A0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3F3F8784-ED97-4CEA-B245-11D8E03B260B} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2318992 2021-09-21] (Piriform Software Ltd -> Piriform Software)
Task: {44C18BCD-468E-4D6C-B0A3-0B9D55511E90} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\ScheduleEventAction.exe [26664 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
Task: {4CB46194-23D1-4571-BE46-FB9D622CB9A3} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4917528 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
Task: {5B6BEC95-CE8D-4CE0-BA36-9ED31BB012D9} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {610C1D41-D194-4883-B28C-955F22F747EA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {658926B0-8586-4D0E-A5DD-C0A849067DF9} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7FA59465-5C38-41C0-936E-E9E5833A0855} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2318992 2021-09-21] (Piriform Software Ltd -> Piriform Software)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8F6CCCBD-32E5-478B-B533-A5745E1C3C8F} - System32\Tasks\CCleanerSkipUAC - trener => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9328F1C2-6EA6-4920-9EC7-89E39E45A283} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16864 2015-12-10] (LENOVO -> Lenovo)
Task: {96AA7780-BE5C-4A01-9585-10223E08DF56} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [3271576 2015-11-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {994591F7-2272-4139-B9B8-5B6138124AED} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {A0BE9160-FA49-48C8-ACAD-BDB68F77ECB7} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {A500BD0E-0239-4225-8E45-7FB35DEAD7BD} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {A8EF2DAB-A9A7-4129-822D-409C5B8B42F6} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {AAE7A4B1-0B9E-4B31-ACDE-5ACB47E2F549} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {B92E9862-6B75-4FCB-B313-51E553AADDA8} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
Task: {BAC45E5F-BEEE-47B3-B560-4FB5EBA91E93} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-259254674-3041541296-1202822968-1001 => C:\Users\trener\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {E9D3830C-D561-4DCF-AEE7-C70C09127E29} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {EB6F28C9-FB4F-4E23-91CC-A8227F907D5D} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe
Task: {EE7E4715-4387-4C20-AB57-8AB0496FCF9C} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {EE8472E3-1673-46E8-B888-962A5325EC48} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
Task: {FE4A5D76-9708-4205-9899-BED82944E401} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 100.100.100.200 100.100.100.100
Tcpip\..\Interfaces\{78f07451-7657-4c33-a8d7-66a9fa1a8f02}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{f9067724-0fdf-4712-b7fe-965ae38742c6}: [DhcpNameServer] 100.100.100.200 100.100.100.100

Edge: 
=======
DownloadDir: C:\Users\trener\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\trener\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-26]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2015-12-13] [Legacy] [not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-06-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-06-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default [2021-09-26]
CHR Notifications: Default -> hxxps://captcharesolving-universe.com
CHR Extension: (Prezentace) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-23]
CHR Extension: (Vyhledávání Google) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-23]
CHR Extension: (Tabulky) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Lenovo Password Manager) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\geempcnjhccnoepfmahaeemnnfnignab [2015-12-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\trener\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR HKLM-x32\...\Chrome\Extension: [geempcnjhccnoepfmahaeemnnfnignab] - C:\Program Files (x86)\Lenovo\Password Manager\chrome_npapi_extension.crx [2014-01-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8303184 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [630040 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [377624 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\93.0.12115.85\elevation_service.exe [1436280 2021-09-21] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-06-06] (Piriform Software Ltd -> Piriform Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (LENOVO -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe [31248 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-11-15] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2417376 2015-10-19] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2015-10-19] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2015-10-19] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [959248 2015-10-05] (pdfforge GmbH -> Â© pdfforge GmbH.)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
S2 LenovoSetSvr; "C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe" [X]
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [X]
S2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [X]
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35712 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [221584 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [367632 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250384 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99344 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17344 2021-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41344 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [184120 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [538464 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107840 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82904 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851704 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [553496 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [328568 2021-09-14] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 LubFsFlt; C:\windows\System32\Drivers\LubFsFlt.sys [27384 2014-02-22] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
R0 LubSec; C:\WINDOWS\System32\Drivers\LubSec.sys [45304 2014-02-22] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [337920 2017-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-09-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [433384 2021-09-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-11] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-26 20:28 - 2021-09-26 20:33 - 000027794 _____ C:\Users\trener\Downloads\FRST.txt
2021-09-26 20:18 - 2021-09-26 20:24 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-09-26 20:10 - 2021-09-26 20:12 - 000016240 _____ C:\Users\trener\Downloads\Fixlog.txt
2021-09-26 12:22 - 2021-09-26 12:22 - 000000000 ____D C:\Program Files (x86)\HIGHTAIL
2021-09-26 12:08 - 2021-09-26 12:15 - 000000000 ____D C:\AdwCleaner
2021-09-26 12:07 - 2021-09-26 12:07 - 008553680 _____ (Malwarebytes) C:\Users\trener\Downloads\adwcleaner_8.3.0.exe
2021-09-26 09:39 - 2021-09-26 20:26 - 000000000 ____D C:\Users\trener\Desktop\frst
2021-09-26 01:39 - 2021-09-26 01:39 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-26 01:37 - 2021-09-26 01:37 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-26 01:37 - 2021-09-26 01:37 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-26 01:37 - 2021-09-26 01:37 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-26 01:37 - 2021-09-26 01:37 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-26 01:36 - 2021-09-26 01:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-26 01:11 - 2021-09-26 11:55 - 000975395 _____ C:\Users\trener\AppData\Local\census.cache
2021-09-26 01:01 - 2021-09-26 11:54 - 000388233 _____ C:\Users\trener\AppData\Local\ars.cache
2021-09-25 23:08 - 2021-09-25 23:08 - 000000000 ___HD C:\$WinREAgent
2021-09-25 22:11 - 2021-09-26 20:31 - 000000000 ____D C:\FRST
2021-09-25 21:57 - 2021-09-25 21:58 - 002304512 _____ (Farbar) C:\Users\trener\Downloads\FRST64.exe
2021-09-25 21:46 - 2021-09-25 21:46 - 000000036 _____ C:\Users\trener\AppData\Local\housecall.guid.cache
2021-09-25 21:41 - 2021-09-25 21:42 - 003333936 _____ (Trend Micro Inc.) C:\Users\trener\Downloads\HousecallLauncher64.exe
2021-09-25 21:30 - 2021-09-25 21:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-09-15 22:29 - 2021-09-15 22:29 - 000000000 ____D C:\Users\trener\AppData\Local\MCS Studios
2021-09-15 22:28 - 2006-02-07 13:02 - 000152848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2021-09-15 22:28 - 2005-12-14 22:17 - 000237568 _____ C:\WINDOWS\SysWOW64\mcstabs.ocx
2021-09-15 22:28 - 2005-04-15 20:58 - 001071088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCOMCTL.OCX
2021-09-15 22:28 - 2000-07-15 00:00 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6STKIT.DLL
2021-09-15 22:28 - 2000-05-22 19:58 - 000608448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.ocx
2021-09-15 22:28 - 2000-05-22 17:58 - 000115920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinet.ocx
2021-09-15 22:28 - 1998-06-18 00:00 - 000089360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB5DB.DLL
2021-09-15 22:27 - 2021-09-15 22:27 - 002737741 _____ (MCS Studios ) C:\Users\trener\Downloads\mcs_cpubmark2008_setup.exe
2021-09-15 22:00 - 2021-09-15 22:00 - 000427001 _____ (Major Share (MajorShare.com) ) C:\Users\trener\Downloads\cpu-m-benchmark.exe
2021-09-15 20:12 - 2021-09-15 21:25 - 000001891 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-09-15 19:56 - 2021-09-26 05:07 - 000000000 ____D C:\Users\trener\AppData\Local\CrashDumps
2021-09-14 22:07 - 2021-09-14 22:07 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-14 22:06 - 2021-09-14 22:06 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-14 22:06 - 2021-09-14 22:06 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-14 22:06 - 2021-09-14 22:06 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-14 22:04 - 2021-09-14 22:04 - 000000000 ____D C:\Users\trener\AppData\Local\Avast Software
2021-09-14 22:01 - 2021-09-14 22:01 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-14 22:01 - 2021-09-14 22:01 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-14 22:00 - 2021-09-14 22:00 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-14 21:59 - 2021-09-14 21:59 - 000000000 ____D C:\Users\trener\AppData\Roaming\Avast Software
2021-09-14 21:59 - 2021-09-14 21:59 - 000000000 ____D C:\Users\trener\AppData\Local\CEF
2021-09-14 21:58 - 2021-09-14 21:58 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2021-09-14 21:58 - 2021-09-14 21:58 - 000002159 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-09-14 21:57 - 2021-09-14 21:57 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-14 21:57 - 2021-09-14 21:57 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-14 21:56 - 2021-09-14 21:56 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-14 21:56 - 2021-09-14 21:56 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-14 21:55 - 2021-09-14 21:56 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-14 21:55 - 2021-09-14 21:55 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-14 21:54 - 2021-09-14 21:54 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-14 21:48 - 2021-09-14 21:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-09-14 21:46 - 2021-09-26 04:14 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-09-14 21:45 - 2021-09-14 21:47 - 000328568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000553496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000538464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000250384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000184120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000107840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000099344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000082904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000041344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-09-14 21:45 - 2021-09-14 21:44 - 000017344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-09-14 21:45 - 2021-09-14 21:43 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-09-14 21:45 - 2021-09-14 21:42 - 000851704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-09-14 21:45 - 2021-09-14 21:42 - 000367632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-09-14 21:45 - 2021-09-14 21:42 - 000221584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-09-14 21:45 - 2021-09-14 21:42 - 000035712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-09-14 21:44 - 2021-09-14 21:44 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-09-14 21:40 - 2021-09-14 21:40 - 000000000 ____D C:\Program Files\Avast Software
2021-09-14 21:39 - 2021-09-26 20:15 - 000000000 ____D C:\ProgramData\Avast Software
2021-09-14 21:38 - 2021-09-14 21:39 - 000224544 _____ (AVAST Software) C:\Users\trener\Downloads\avast_free_antivirus_setup_online.exe
2021-09-10 18:44 - 2021-09-10 18:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-09-10 18:43 - 2021-09-10 18:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-09-10 18:39 - 2021-09-10 18:39 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-26 20:35 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-26 20:28 - 2015-12-23 00:29 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-26 20:26 - 2015-12-12 23:48 - 000000000 ___RD C:\Users\trener\OneDrive
2021-09-26 20:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-26 20:24 - 2015-12-12 23:44 - 000000000 __SHD C:\Users\trener\IntelGraphicsProfiles
2021-09-26 20:21 - 2021-06-06 10:52 - 000000000 ____D C:\Program Files\CCleaner
2021-09-26 20:14 - 2020-10-23 22:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-26 20:14 - 2020-10-23 21:35 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-26 20:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-09-26 20:14 - 2017-08-18 07:17 - 000000000 ____D C:\ProgramData\Synaptics
2021-09-26 20:13 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-26 20:04 - 2020-10-23 21:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-26 18:23 - 2018-10-19 21:00 - 000000000 ____D C:\Users\trener\AppData\Local\D3DSCache
2021-09-26 13:11 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-26 12:22 - 2021-06-06 10:55 - 000002398 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2021-09-26 12:22 - 2021-06-06 10:53 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2021-09-26 12:22 - 2014-11-15 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hightail
2021-09-26 12:22 - 2014-11-15 12:39 - 000000000 ____D C:\Program Files\Hightail
2021-09-26 12:19 - 2014-11-15 12:14 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-09-26 12:18 - 2014-11-15 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-09-26 12:17 - 2020-11-10 18:55 - 000000000 ____D C:\WINDOWS\Lenovo
2021-09-26 12:17 - 2020-10-23 22:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-09-26 12:17 - 2015-12-12 12:28 - 000000000 ____D C:\Users\trener\AppData\Local\Lenovo
2021-09-26 12:17 - 2014-11-15 12:42 - 000000000 ____D C:\ProgramData\Lenovo
2021-09-26 12:16 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-09-26 12:16 - 2016-03-18 19:15 - 000000000 ____D C:\Lenovo
2021-09-26 12:16 - 2015-12-12 12:24 - 000000000 ____D C:\Users\trener\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-09-26 12:16 - 2014-11-15 12:41 - 000000000 ____D C:\Program Files\Lenovo
2021-09-26 10:11 - 2020-10-23 22:15 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{545C7E2F-5564-4065-929B-1F17B7F3A28B}
2021-09-26 07:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-09-26 04:54 - 2020-10-23 21:36 - 000275696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-26 04:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-26 04:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-26 04:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-26 04:50 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-26 04:43 - 2020-06-10 17:49 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-26 04:43 - 2020-06-10 17:49 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-09-26 04:04 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-25 22:41 - 2020-10-23 22:15 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-259254674-3041541296-1202822968-1001
2021-09-25 22:41 - 2020-10-23 21:44 - 000002437 _____ C:\Users\trener\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-16 22:54 - 2020-10-23 22:15 - 000002290 _____ C:\WINDOWS\system32\Tasks\McAfee Remediation (Prepare)
2021-09-16 22:30 - 2020-10-23 22:15 - 000002120 _____ C:\WINDOWS\system32\Tasks\PDVDServ Task
2021-09-16 18:34 - 2015-12-23 00:30 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-09-15 22:29 - 2015-12-12 12:21 - 000000000 ____D C:\Users\trener\AppData\Local\VirtualStore
2021-09-15 21:55 - 2018-10-11 01:05 - 000000000 ____D C:\Users\trener\AppData\Local\PlaceholderTileLogoFolder
2021-09-15 21:35 - 2020-10-23 21:57 - 001693350 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-15 21:35 - 2019-12-07 16:41 - 000718024 _____ C:\WINDOWS\system32\perfh005.dat
2021-09-15 21:35 - 2019-12-07 16:41 - 000145166 _____ C:\WINDOWS\system32\perfc005.dat
2021-09-15 21:20 - 2020-10-25 18:24 - 000000000 ____D C:\WINDOWS\Minidump
2021-09-15 21:18 - 2014-11-15 12:04 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-09-15 21:16 - 2017-12-15 08:58 - 000000000 ____D C:\Users\trener\AppData\Local\Packages
2021-09-15 21:13 - 2014-11-15 12:50 - 000000000 ____D C:\ProgramData\CyberLink
2021-09-15 21:08 - 2017-03-21 23:50 - 000000000 ___RD C:\Program Files (x86)\Skype
2021-09-15 21:08 - 2015-12-26 15:29 - 000000000 ____D C:\ProgramData\Skype
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-15 19:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-15 19:36 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-15 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-15 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-15 19:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-15 19:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-15 19:27 - 2016-12-12 21:37 - 000000000 ____D C:\Users\trener\AppData\Local\ElevatedDiagnostics
2021-09-15 18:50 - 2015-12-13 13:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-15 18:16 - 2015-12-13 13:39 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-14 21:45 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-14 21:02 - 2021-06-02 22:18 - 000001436 _____ C:\Users\trener\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-09-14 21:01 - 2021-06-02 22:19 - 000001330 _____ C:\Users\trener\Desktop\ESET Online Scanner.lnk
2021-09-14 05:57 - 2020-10-23 21:44 - 000000000 ____D C:\Users\trener
2021-09-11 09:11 - 2018-02-15 21:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-11 08:54 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-09-11 07:52 - 2020-10-01 20:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-10 16:05 - 2015-12-13 13:40 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories ========

2015-12-12 12:25 - 2015-12-23 00:39 - 000006220 _____ () C:\Users\trener\AppData\Roaming\AbsoluteReminder.xml
2021-09-26 01:01 - 2021-09-26 11:54 - 000388233 _____ () C:\Users\trener\AppData\Local\ars.cache
2015-12-12 12:21 - 2015-12-12 22:13 - 000005343 _____ () C:\Users\trener\AppData\Local\BTServer.log
2021-09-26 01:11 - 2021-09-26 11:55 - 000975395 _____ () C:\Users\trener\AppData\Local\census.cache
2021-09-25 21:46 - 2021-09-25 21:46 - 000000036 _____ () C:\Users\trener\AppData\Local\housecall.guid.cache
2016-03-18 22:01 - 2016-03-18 22:01 - 000000000 _____ () C:\Users\trener\AppData\Local\{E7CE58B8-3E60-42B2-AACC-B13D2AC2F8C1}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================