Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-11-2021
Ran by Zdenka (administrator) on LAPTOP-M0S9OJP7 (LENOVO 81D6) (25-11-2021 10:32:07)
Running from C:\Users\Zdenka\Downloads
Loaded Profiles: Zdenka
Platform: Microsoft Windows 10 Home Version 20H2 19042.1348 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0326517.inf_amd64_913dfb8e59bdfa8a\B326481\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0326517.inf_amd64_913dfb8e59bdfa8a\B326481\atiesrxx.exe
(Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.15.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe
(Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1076728 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\...\Run: [MicrosoftEdgeAutoLaunch_CFD3FF8AFD175EC4F3F31D5EC3BB06F0] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\...\MountPoints2: {1e394d65-1e5d-11ea-9337-8c164594f53f} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\...\MountPoints2: {55d24426-f3c8-11eb-9392-8c164594f53f} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-2935849915-2414251437-2821027110-1001\...\MountPoints2: {cbcd0552-9c28-11eb-9382-8c164594f53f} - "F:\HiSuiteDownLoader.exe" 
HKLM\...\Print\Monitors\novaPDF 10 Port Monitor: C:\WINDOWS\system32\novamn10.dll [18944 2019-12-12] (Softland) [File not signed]
HKLM\...\Print\Monitors\novaPDF Port Monitor: C:\WINDOWS\system32\novamn8.dll [18944 2018-12-12] (Softland) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-18] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BDD651B-1895-41C3-8080-418F2FCA24B1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {160F9F69-C887-47AF-942C-F2643E74CF8E} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1076728 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {23E7A971-068D-403E-B6FE-9DDE17D2FE59} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {28CF1E07-49E9-4635-8BDF-F2BEAAC873E8} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility://
Task: {2A4505AF-8BFE-4F4F-8791-AA7B0046882C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B486C8F-9D56-4908-9737-FAD12309EA2F} - System32\Tasks\R@1n-KMS\Office15ProPlus => wmic path SoftwareLicensingProduct where (ID="b322da9c-a2e2-4058-9e4e-f59a6970bd69") call Activate
Task: {385C6348-D600-42E1-92CF-B21A24E621E2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (No File)
Task: {399BF643-EFC6-4030-BB30-B697DCEBE606} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {3AEA248C-F742-4B6C-8AE0-72053A89ADF0} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38560 2021-09-29] (HP Inc. -> HP Inc.)
Task: {403A4DE1-D6D0-4176-9316-0F437686DCE0} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {625BF416-5CE7-4769-86D2-8F5FFEACB101} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\75a830d5-70be-4fe8-9488-5585d6a9a4ea => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {629313D4-9987-4F72-A4AB-F88A24851F2A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {630EAE3C-D442-4753-8B39-E78106BC8386} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\12b27909-72cc-49a1-bc85-cc0ef10145fd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {65B462C2-D732-410A-BB61-6CA2EA6E9C6F} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-2935849915-2414251437-2821027110-1001_0 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [421376 2021-11-11] (Microsoft Windows -> Microsoft Corporation)
Task: {669FB4A3-7566-498A-AD6A-C777A1E75253} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [63728 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {686081BB-D05F-4576-815D-19C547775751} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {819C1161-9163-45F5-A449-4140352052F7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-09] (Google Inc -> Google Inc.)
Task: {86BF3218-085D-4831-95F7-EF7D86D683E0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b7d01b04-31b9-4b01-8227-bdae97aa7caa => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {8714D68D-D711-4DD3-A883-1BAC5CEFC209} - System32\Tasks\doPDF 10 Update => C:\Program Files\Softland\novaPDF 10\Driver\UpdateApplication.exe [98608 2019-12-12] (Softland SRL -> )
Task: {A0DC5C82-7A10-4939-B080-67D4FD3853F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-09] (Google Inc -> Google Inc.)
Task: {A831A88E-8716-440C-82B7-9BC545413E17} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.)
Task: {B86751A7-1D0A-44C3-B5AC-0AF27CD243A1} - System32\Tasks\R@1n-KMS\Office14ProPlus => wmic path OfficeSoftwareProtectionProduct where (ID="6f327760-8c5c-417c-9b61-836a98287e0c") call Activate
Task: {C84BADF2-3029-4661-8EF9-1161D185BFC2} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38560 2021-09-29] (HP Inc. -> HP Inc.)
Task: {D7B22D8B-97D3-4134-B9A5-1890757DF9A2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E645AE20-DEE6-4B0B-A51C-AC9556B301CF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8b7ac464-3617-4264-ba5a-90da06aed1b2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {EB1BAFA4-B801-4641-ABC3-04D5AD0A26FE} - System32\Tasks\doPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51504 2019-12-12] (Softland SRL -> )
Task: {ECD6C756-959F-45BD-927F-E7950936D2CA} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6a8afae6-60f0-4561-aa58-d95d194afe25 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {F65AB9BC-C894-4A7C-8E13-3BF1D9B17C70} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {F859C873-C903-46FD-93E8-85F4253E6DBE} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {FB093783-F662-47D5-BCBC-BED01997948A} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [692016 2018-12-12] (Softland SRL -> )
Task: {FD7E7F08-FDC9-4A0F-B7F4-C1794A6B187A} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe /waitUpgrade (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.20.248.1
Tcpip\..\Interfaces\{efa87368-c6fb-42d9-909a-5d8b3a46905d}: [DhcpNameServer] 10.20.248.1

Edge: 
=======
Edge Notifications: HKU\S-1-5-21-2935849915-2414251437-2821027110-1001 -> hxxps://www.facebook.com; hxxps://mail.yahoo.com
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Zdenka\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-25]
Edge Notifications: Default -> hxxps://mail.yahoo.com; hxxps://www.facebook.com

FireFox:
========
FF DefaultProfile: l4x1bb37.default
FF ProfilePath: C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\l4x1bb37.default [2021-11-25]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-01-30] (VideoLAN) [File not signed]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default [2021-11-25]
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentácie) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-02-09]
CHR Extension: (Dokumenty) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-02-09]
CHR Extension: (Disk Google) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20]
CHR Extension: (YouTube) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-02-09]
CHR Extension: (Tabuľky) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-02-09]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-20]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-12]
CHR Extension: (AVG SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2021-10-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
S4 FMAPOService; C:\WINDOWS\System32\FMService64.exe [359808 2019-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-09-29] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
R2 NovaPdf10Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [52528 2019-12-12] (Softland SRL -> Microsoft)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [53552 2018-12-12] (Softland SRL -> Microsoft)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13341480 2021-11-06] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-25 10:28 - 2021-11-25 10:28 - 000122316 _____ C:\Users\Zdenka\Documents\cc_20211125_102800.reg
2021-11-25 10:21 - 2021-11-25 10:21 - 002311680 _____ (Farbar) C:\Users\Zdenka\Downloads\FRST64 (2).exe
2021-11-23 17:24 - 2021-11-23 17:24 - 000024226 _____ C:\Users\Zdenka\Downloads\ZUBNE 23.11.21 UHRADA.pdf
2021-11-23 17:24 - 2021-11-23 17:24 - 000024226 _____ C:\Users\Zdenka\Downloads\ZUBNE 23.11.21 UHRADA (1).pdf
2021-11-23 17:24 - 2021-11-23 17:24 - 000024226 _____ C:\Users\Zdenka\Downloads\ZUBNE 23.11.2021 DOKLAD O PLATENI.pdf
2021-11-19 15:11 - 2021-11-19 15:11 - 000405066 _____ C:\Users\Zdenka\Downloads\Dotaznik_Anamnesticke_otazky (2).pdf
2021-11-19 15:11 - 2021-11-19 15:11 - 000405066 _____ C:\Users\Zdenka\Downloads\Dotaznik_Anamnesticke_otazky (1).pdf
2021-11-19 15:06 - 2021-11-19 15:06 - 000537768 _____ C:\Users\Zdenka\Downloads\anamnesticky-dotaznik-tretia-davka (1).pdf
2021-11-19 15:02 - 2021-11-19 15:02 - 000537768 _____ C:\Users\Zdenka\Downloads\anamnesticky-dotaznik-tretia-davka.pdf
2021-11-18 17:39 - 2021-11-18 17:39 - 000169194 _____ C:\Users\Zdenka\Downloads\zmluva 2021.pdf
2021-11-12 13:27 - 2021-11-12 13:27 - 000004040 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-2935849915-2414251437-2821027110-1001_0
2021-11-11 12:55 - 2021-11-11 12:55 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-11 12:55 - 2021-11-11 12:55 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-11 12:54 - 2021-11-11 12:54 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-11 12:53 - 2021-11-11 12:53 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-11 12:02 - 2021-11-11 12:02 - 000000000 ___HD C:\$WinREAgent
2021-11-03 11:00 - 2021-11-03 11:00 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-11-03 11:00 - 2021-11-03 11:00 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-31 10:34 - 2021-10-31 10:35 - 013543063 _____ C:\Users\Zdenka\Downloads\GREENFIELDS The Brothers Four.mp4

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-25 10:36 - 2020-01-14 14:39 - 000018873 _____ C:\Users\Zdenka\Downloads\FRST.txt
2021-11-25 10:35 - 2019-02-09 12:02 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-25 10:34 - 2020-01-14 14:37 - 000000000 ____D C:\FRST
2021-11-25 10:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-25 10:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-25 10:22 - 2020-12-31 10:20 - 000004214 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7ED6AC4C-52B2-4857-BC61-48CCF349ED3D}
2021-11-25 10:16 - 2019-03-10 12:08 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-11-25 10:14 - 2020-12-30 20:32 - 000000000 ___DC C:\WINDOWS\Panther
2021-11-25 10:14 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-25 10:14 - 2019-05-15 16:09 - 000000000 ____D C:\Users\Zdenka\AppData\Local\CrashDumps
2021-11-24 09:46 - 2020-12-31 09:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-23 14:09 - 2021-10-21 18:15 - 000000000 ____D C:\Users\Zdenka\AppData\Local\ElevatedDiagnostics
2021-11-21 18:52 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-21 18:31 - 2020-06-06 09:04 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-21 18:31 - 2020-06-06 09:04 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-11-19 16:24 - 2019-02-17 11:35 - 000000000 ____D C:\Users\Zdenka\AppData\Local\PlaceholderTileLogoFolder
2021-11-19 16:00 - 2019-02-14 12:53 - 000000000 ____D C:\ProgramData\Packages
2021-11-19 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-11-19 14:40 - 2019-02-09 07:02 - 000000000 ____D C:\Users\Zdenka\AppData\Local\Comms
2021-11-18 20:31 - 2019-02-09 12:03 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-18 20:31 - 2019-02-09 12:03 - 000002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-18 08:24 - 2021-01-20 08:10 - 000003482 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6df536dc0fc8d
2021-11-18 08:24 - 2020-12-31 10:20 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-15 16:17 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-12 09:41 - 2020-12-31 10:05 - 000904218 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-11-12 09:41 - 2019-12-26 22:09 - 000065100 _____ C:\WINDOWS\system32\perfh01B.dat
2021-11-12 09:41 - 2019-12-26 22:09 - 000016828 _____ C:\WINDOWS\system32\perfc01B.dat
2021-11-12 08:17 - 2020-12-31 10:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-12 08:17 - 2020-12-31 09:45 - 000008192 ___SH C:\DumpStack.log.tmp
2021-11-12 08:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-11-11 22:29 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-11-11 22:29 - 2018-06-17 17:38 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2021-11-11 22:19 - 2020-12-31 09:46 - 000439576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-11 22:18 - 2018-06-17 17:40 - 000000000 ____D C:\ProgramData\Realtek
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-11 22:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-11 22:07 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-11 11:43 - 2019-02-11 12:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-11 11:38 - 2019-02-11 12:54 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-07 22:36 - 2020-09-24 23:19 - 000109296 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\WudfUpdate_02000.dll
2021-11-07 22:36 - 2020-09-24 23:19 - 000063728 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.InfInstaller.exe
2021-11-07 22:36 - 2019-10-30 20:22 - 000429952 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll
2021-11-07 22:36 - 2018-06-17 17:45 - 000109296 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.CoInstaller.dll
2021-11-03 11:03 - 2019-03-02 22:05 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-29 10:42 - 2019-02-09 06:43 - 000000000 ____D C:\Users\Zdenka\AppData\Local\Packages

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================