Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2022
Ran by Y (administrator) on Y-THINK (LENOVO 20BG001CMC) (09-05-2022 08:04:57)
Running from C:\Users\Y\Desktop
Loaded Profiles: Y & _ashbackup_
Platform: Microsoft Windows 10 Pro Version 21H2 19044.1645 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\acrobat_sl.exe
(Blue Jeans Network, Inc. -> BlueJeans) C:\Users\Y\AppData\Local\BlueJeans\current\BlueJeans.Detector.exe <2>
(C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\TC UP\TCUP.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\TC UP\TOTALCMD.EXE
(C:\Program Files (x86)\TC UP\TCUP64.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\TC UP\TOTALCMD64.EXE
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\ESET\ESET Smart Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> ) C:\Program Files\PowerToys\modules\AlwaysOnTop\PowerToys.AlwaysOnTop.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\Awake\PowerToys.Awake.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <3>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(explorer.exe ->) (File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.10.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(explorer.exe ->) (Finkit d.o.o. -> Finkit d.o.o.) C:\Program Files (x86)\ManicTime\ManicTime.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\57.0.5.0\crashpad_handler.exe
(explorer.exe ->) (Intel Corporation - Client Connectivity Division -> Intel Corporation) C:\Program Files\Intel\Thunderbolt Software\Thunderbolt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(explorer.exe ->) (Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(explorer.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
(explorer.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe
(explorer.exe ->) (TC UP Team) [File not signed] C:\Program Files (x86)\TC UP\TCUP64.exe
(explorer.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Users\Y\AppData\Local\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Users\Y\AppData\Local\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupService-ab.exe
(services.exe ->) (AVerMedia) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Smart Connect software -> ) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(services.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(services.exe ->) (Synology Inc. -> ) [File not signed] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
(services.exe ->) (X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2203.4603.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1613_none_7df538047ca074bb\TiWorker.exe
(svchost.exe ->) (X-Rite Incorporated -> ) C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe
(TC UP Team) [File not signed] C:\Program Files (x86)\TC UP\TCUP.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [Thunderbolt] => C:\Program Files\Intel\Thunderbolt Software\Thunderbolt.exe [768456 2013-08-11] (Intel Corporation - Client Connectivity Division -> Intel Corporation)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184632 2013-11-13] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-01-28] (Open Source Developer, Robin Krom -> Greenshot)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [168064 2022-04-01] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Ashampoo Backup] => C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupClient-ab.exe [321944 2019-05-29] (Ashampoo GmbH & Co. KG -> )
HKLM\...\Run: [TC UP] => C:\Program Files (x86)\TC UP\TCUP64.exe [2120704 2021-12-29] (TC UP Team) [File not signed]
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1668000 2021-06-09] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339512 2021-08-04] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [3DxWare Service] => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore\3DxService.exe [2515096 2022-01-28] (3DCONNEXION SAM -> 3Dconnexion, INC)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11245392 2022-04-23] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Acrotray.exe [2190616 2022-04-10] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ICAMaintenance_ICAPKIService_RegKeysRefresh] => C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
HKLM-x32\...\Run: [TC UP] => C:\Program Files (x86)\TC UP\TCUP.exe [1356288 2021-12-29] (TC UP Team) [File not signed]
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2022-03-28] (Intel Corporation -> Intel)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera developer\assistant\browser_assistant.exe [4110592 2022-04-20] (Opera Software AS -> Opera Software)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [ManicTimeC34F57B2DA6E6758] => C:\Program Files (x86)\ManicTime\ManicTime.exe [63152 2018-03-15] (Finkit d.o.o. -> Finkit d.o.o.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Google Update] => C:\Users\Y\AppData\Local\Google\Update\1.3.36.132\GoogleUpdateCore.exe [227512 2022-04-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35888256 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Bonus.SSR.FR14] => C:\Program Files (x86)\ABBYY FineReader 14\ScreenshotReader.exe [1082016 2019-02-13] (ABBYY Production LLC -> ABBYY Production LLC.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> )
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2635160 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [BlueJeans.Detector] => C:\Users\Y\AppData\Local\BlueJeans\BlueJeans.Detector.exe [16376 2021-07-27] (Blue Jeans Network, Inc. -> BlueJeans)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Viber] => C:\Users\Y\AppData\Local\Viber\Viber.exe [52361032 2022-04-13] (Viber Media S.à r.l. -> Viber Media S.Г  r.l.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [DeepL] => C:\Users\Y\AppData\Local\DeepL\app-3.2.3939\DeepL.exe [141872 2022-01-28] (DeepL GmbH -> DeepL GmbH)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10929320 2021-12-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Zoner Photo Studio Autoupdate] => C:\Users\Y\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTRAY.EXE [814240 2022-01-13] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-732140370-2414468103-320680840-1010\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-732140370-2414468103-320680840-1010\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2635160 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HPCP1020PP: C:\Windows\System32\spool\prtprocs\x64\HPCP1020PP.DLL [73712 2016-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\SST2CPC: C:\Windows\System32\spool\prtprocs\x64\sst2cpc.dll [36864 2015-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65192 2021-12-23] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\bizhub C200 PCL Language Monitor: C:\WINDOWS\system32\KOAZHJ_L.dll [14848 2007-02-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\C287SeriesPCL Language Monitor: C:\WINDOWS\system32\KOAXYJ_L.DLL [25600 2017-02-16] (Microsoft Windows Hardware Compatibility Publisher -> KONICA MINOLTA, INC.)
HKLM\...\Print\Monitors\HP 7212 Status Monitor: C:\WINDOWS\system32\hpinksts7212LM.dll [336904 2015-09-27] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\HP CP1020 LM: C:\WINDOWS\system32\HPCP1020LM.DLL [137712 2016-01-06] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\novaPDF Port Monitor: C:\WINDOWS\system32\novamn8.dll [18944 2016-03-03] (Softland) [File not signed]
HKLM\...\Print\Monitors\PDF-XChange5-ABBYY-FR: C:\WINDOWS\system32\pxc50pmaf.dll [57536 2016-10-03] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [120072 2016-03-01] (pdfforge GmbH -> pdfforge GmbH)
HKLM\...\Print\Monitors\SST2C Langmon: C:\WINDOWS\system32\sst2cl6.dll [34304 2015-09-05] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8237E44A-0054-442C-B6B6-EA0509993955}] -> C:\Program Files\Google\Chrome Beta\Application\102.0.5005.40\Installer\chrmstp.exe [2022-05-04] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\101.0.4951.54\Installer\chrmstp.exe [2022-05-04] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
HKLM\Software\...\Winlogon\GPExtensions: [{6cfb9c5c-138e-4bb3-8a3d-d5383e910e57}] -> %SystemRoot%\System32\RdpGroupPolicyExtension.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk [2015-08-22]
ShortcutTarget: AVer HID Receiver.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk [2015-08-22]
ShortcutTarget: AVerQuick.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2022-01-10]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Color Calibrator Tray.lnk [2017-07-21]
ShortcutTarget: Color Calibrator Tray.lnk -> C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe (X-Rite Incorporated -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FTP Utility.lnk [2014-07-16]
ShortcutTarget: FTP Utility.lnk -> C:\Program Files (x86)\KONICA MINOLTA\FTP Utility\KMFtp.exe (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Imaging Edge Desktop.lnk [2020-05-13]
ShortcutTarget: Imaging Edge Desktop.lnk -> C:\Program Files\Sony\Imaging Edge Desktop\ied.exe (Sony Imaging Products & Solutions Inc. -> Sony)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2017-08-30]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\Users\Y\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2021-04-16]
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {015D39E7-A132-4E57-9CE9-F96E676C6DCA} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [543536 2016-10-13] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {0B73327F-FB9A-4D94-A9D6-82B93D5C6E01} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-732140370-2414468103-320680840-1003 => C:\Users\Y\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2022-04-29] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {0C2CFFB2-DE37-4344-9097-2235ACE110D1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-732140370-2414468103-320680840-1003UA => C:\Users\Y\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2017-09-11] (Google Inc -> Google Inc.)
Task: {0CAFEB50-F403-4F5D-BBE7-D49E7DAA16D9} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1897824 2022-03-09] (Lenovo -> )
Task: {0E1618B1-9D3C-473C-B053-7C3B4F77C204} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {16E30065-CCF4-466B-AB33-C5B16CD9D665} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e3e4dc5c-514e-4fe8-97fe-5992880611b8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {17FF4DC1-FF6A-4071-A0F3-47C328D24FC6} - System32\Tasks\G2MUpdateTask-S-1-5-21-732140370-2414468103-320680840-1003 => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupdate.exe [31176 2021-11-12] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {182B8422-E777-4793-9085-C3AC0C9185E1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1010 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200864 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {18F32394-5420-4B37-8EA2-887E4B0D4C07} - System32\Tasks\GoogleUpdateTaskMachineUA1d04227ec0368d4 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {1EDB03E1-6C4C-4283-9898-2C4524FB01A7} - System32\Tasks\Opera scheduled assistant Autoupdate 1578865434 => C:\Program Files (x86)\Opera developer\launcher.exe [2127616 2022-04-25] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera developer\assistant" $(Arg0)
Task: {25D8F8C0-4AD8-4BDA-9BAE-2B5E6AC84235} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {27F22586-54B1-4DDF-89F9-B28D0F0B1B18} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {299AB1FC-983F-4593-BC39-F2AA6E4B775E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {2A2C67C1-6409-48F8-9C41-33FE12D79F5A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {2DDC41D1-DEEA-4F51-A90F-C623B51A55BB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-732140370-2414468103-320680840-1003UA1d57da09f9599ed => C:\Users\Y\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2017-09-11] (Google Inc -> Google Inc.)
Task: {2F7FD1C9-2948-4FAF-993C-835849365F0E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-732140370-2414468103-320680840-1003Core => C:\Users\Y\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2017-09-11] (Google Inc -> Google Inc.)
Task: {30C55321-1AAA-4343-8754-F01D37ACDFD3} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.)
Task: {32F266FC-CB17-41E5-82CD-16FBE49C34A6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3487088 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35A67B65-9E0E-4F5F-BA5F-8B24CBA18FE2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {38357F87-897D-4B9E-8815-7811F6E33094} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [114112 2021-12-03] (Lenovo -> Lenovo)
Task: {38D057FE-6742-4011-8BA5-F21EC502222B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {3B285FA4-CF0C-4649-994B-87B3E44B6E5C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-03-10] (Piriform Software Ltd -> Piriform)
Task: {3F49AD80-139C-4FAC-A92F-4353C62885BB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (No File)
Task: {40DFE8C2-02D2-4501-908D-0417402C6F5C} - System32\Tasks\Color Calibrator Tray => C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe [151520 2017-07-07] (X-Rite Incorporated -> )
Task: {46EFA361-06B2-49BE-B6F1-C316E3B214AB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {49CAD5BD-ECBC-4536-A659-E19F56C46820} - System32\Tasks\PowerToys\Autorun for Y => C:\Program Files\PowerToys\PowerToys.exe [1045424 2022-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A8BD44B-ED18-43B1-AD36-3D843E6F929A} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {4C410A10-612B-4E3B-87EC-BC2660BF5EB5} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200864 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {4CE7377A-1ADD-40A5-9D6F-F7834E77AD88} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4D0B45E7-ECB5-4A5D-831A-9670BFD21C2F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22866856 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D193AFD-BC7B-4B69-B8BD-C6ACCAC13D39} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [695664 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4D4DF2F4-9B23-47A1-BAE0-DE7195DBD911} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {4D763FCB-6308-416B-A721-775BD9E58470} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4D8F09D7-36AF-466A-AEAF-88AE1DDEB6B8} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus (No File)
Task: {4EF0B5C3-3132-48F6-B8DA-C05771969D9A} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1897824 2022-03-09] (Lenovo -> )
Task: {50F7081F-4624-4302-A126-70A0343AF62C} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {5457B180-D321-4B9C-96A6-AF59D6A167A7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111520 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {55EE5B33-E3E5-4435-86C6-6C60C4A4F8ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {565F7B7C-BD1E-4E29-A9E8-368E56A45456} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2104736 2017-05-18] (NVIDIA Corporation -> )
Task: {5A8E1AE5-60D6-4344-A41E-2F54A4FFA0E6} - System32\Tasks\3DconnexionCreateProcess_3DxService.exe => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe (No File)
Task: {5AB894CE-6F27-41B6-B3D0-24DF8B2BBC3F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {5ADA4FF6-7705-46C3-900C-21842574B726} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5E832B94-60BC-416F-8FDA-3354F0B12D58} - System32\Tasks\G2MUploadTask-S-1-5-21-732140370-2414468103-320680840-1003 => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupload.exe [31176 2021-11-12] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {6055EDA9-4C02-4084-97DE-A076F0F9311B} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {641C6109-0DCF-4685-811A-72E2820D23E8} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6544A722-F58C-462C-BE30-F2EBFE5D8D63} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe -autostart (No File)
Task: {67E7AC32-5CC6-42B3-B765-F9B3F8BA4E2F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200864 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C53C967-3EAF-4BE3-B9F4-28E522F186DB} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {6D6C9106-33BE-4EC5-9D17-B2DD69D68571} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (No File)
Task: {6E8947E3-A60D-4312-A666-869124B0A337} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {71EADA8C-1B43-470B-AF5D-3610C9D18635} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe -update (No File)
Task: {7cfb681b-ee17-4970-8069-73f3d6b25f6f} - no filepath
Task: {80915441-5809-4451-9462-A5440C60E3C0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-732140370-2414468103-320680840-1003Core1d57da09f926586 => C:\Users\Y\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2017-09-11] (Google Inc -> Google Inc.)
Task: {83ED3753-32B7-420B-AE9D-5BB0CBEA56D8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {88837CB3-6478-435E-BB86-97AB2EB0387D} - System32\Tasks\CLMLSvc => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [110144 2013-03-07] (CyberLink Corp. -> CyberLink)
Task: {8C58CB34-6F61-419A-9A91-42027E395407} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {8D122E9E-9D61-4B4B-B39E-CEF404F3C45C} - System32\Tasks\GoogleUpdateTaskMachineUA1d57dca40770605 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {94BEF7C4-C10C-49D8-98DF-5385708CC01E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {95BB57AF-DFA2-44D0-9A0C-9359A01DE071} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (No File)
Task: {9BCF8AF3-0B09-4871-8267-128A616466B0} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show (No File)
Task: {A0AFB472-F6E6-45D9-BE40-85B87B4AF4DD} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A224093B-7012-4D2D-86A5-5257D8AC6633} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (No File)
Task: {A282D053-01B0-456C-BE41-A8FC6DB7A9F6} - System32\Tasks\Opera scheduled Autoupdate 1451260308 => C:\Program Files (x86)\TC UP\Plugins\Media\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {A29C012A-9F53-47BC-A843-E4522027E60C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e09b669c-784c-448d-9aef-179b2cb5e51a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A59A6B5E-C7E2-4F35-88EA-AA11F9DF463D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A5F8955B-37CC-40A0-BE7A-D0BEF4AE32A5} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {A83B28B4-C2E9-4248-A754-7C6ECA7AD834} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [63936 2021-12-03] (Lenovo -> )
Task: {A9F036A1-D254-402A-B690-DD9B7D1F214C} - System32\Tasks\{F08B3EE1-5720-4780-A594-5EB8769CAD35} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.2.0.103/cs/privacy
Task: {AA87AE87-3523-43E6-ADBB-461AA8FD52C6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22866856 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB993A25-7952-4610-B226-D3CBE8B3D467} - System32\Tasks\GoogleUpdateTaskMachineUA1cfee32ff15bdf1 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {B00EF09A-8851-415C-BE02-904A560F6187} - System32\Tasks\GoogleUpdateTaskMachineCore1d57dca4073ab27 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B3159A99-78FC-4ABE-89A5-0B85EDD7D2A1} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (No File)
Task: {B4E7A3A5-A3FA-40E0-B174-3F35DDD8D17A} - System32\Tasks\Color Calibrator Tray Start up => C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe [151520 2017-07-07] (X-Rite Incorporated -> )
Task: {BA9366B7-4F00-4BCD-A571-50455FE5455E} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {BAC77EF2-8C2F-4D39-9FBE-3F950B68BD80} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {BD43A73A-96DA-4E8D-8242-61B7745435F7} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEED5B3E-D5F0-4C60-9D9D-BACABBC21182} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {BF54B13C-12DF-4F85-B369-4738D335B7E1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c0386f77-2ffd-48b1-9526-485f528f229b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {BF92C462-3A14-4B26-9018-0BEDB4100F6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {C1E28F95-091B-44EA-BF51-843B99342CAB} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C31B7E5A-1779-46B1-8D93-D1D47A5B8DC3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (No File)
Task: {C3720799-C372-4629-888F-E91C6A204E02} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (No File)
Task: {C6131993-13A7-4250-BFCD-F346EA780CAB} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {C866053D-D902-4EAB-BD8E-371372BC4DA6} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe (No File)
Task: {C9875F3A-ED26-47C6-998D-98639A845410} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {CB14EFA1-7CB6-4E31-8FCF-A3658882BFE8} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {D08BC0FB-64C8-4D53-85AC-2419BCF2BA5B} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D22036A4-61B2-4AAB-8E1D-8DBBE7EC042C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {D3723FAA-4D15-4332-BA17-8CEF77F8A376} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3F5124E-400D-4AAD-AB89-BA57A494D602} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {D4CBC001-2080-4538-8F36-6FD59635CFA3} - System32\Tasks\CCleanerSkipUAC - Y => C:\Program Files\CCleaner\CCleaner.exe [30053504 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D579D640-1B91-4268-8EC6-220FFAD2910D} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {D63924A2-7B33-4E9C-8DFE-A2F80538BF4A} - System32\Tasks\Microsoft\Windows\Onedrive\Onedrive Synchronization => C:\ProgramData\Microsoft Onedrive\OneDriveSync.exe (No File)
Task: {D9C8DB16-28CA-4435-93D2-D96CE49DFA5F} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.)
Task: {DAB11F84-1C42-4FD0-87D2-5FDDA3910F8C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
Task: {DF6EDAF7-B32F-4DC1-A0C8-015D07759857} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {E0E2ECE6-473C-46A7-AF8D-A9F06B2BAA48} - System32\Tasks\Opera scheduled Autoupdate 1457969422 => C:\Program Files (x86)\Opera developer\launcher.exe [2127616 2022-04-25] (Opera Software AS -> Opera Software) <==== ATTENTION
Task: {E16D8C49-D82B-4258-87D4-EB7965003790} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {E1706985-ACBE-4CB6-B5E8-4CD024AB58DD} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe -sr (Access Denied) <==== ATTENTION
Task: {E3C5005F-5A00-4042-B604-C1183F4CCD62} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E8A4508C-ED5C-4257-8095-7D370FEC4FA9} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E9124753-0D65-491F-80C7-8E0C5A3EFD9E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {E99D8EEF-BBE7-4FA3-9DA9-81B0B6F72906} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (No File)
Task: {E9C73738-7AFA-4013-BA20-4452C78674A3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {EBA1B478-F4F8-40F8-8206-2B02771BCD1D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111520 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC75034F-5E67-4A45-9F4B-6C1CC0B06394} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {ED4574CC-30A1-4417-A14A-40175B4C95F2} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe /nobrowser (No File)
Task: {F5D69631-E276-4918-A774-64E4348481E5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [994672 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F7A0B9C3-7BF3-4D73-946D-34732FA590CB} - System32\Tasks\Zoner.Updater.S-1-5-21-732140370-2414468103-320680840-1003 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [1603488 2021-12-20] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {F83995A2-4C05-42EA-B0CF-600DABD9AE01} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [100712 2013-06-29] (CyberLink Corp. -> CyberLink Corp.)
Task: {F85BAF33-17D8-4AE8-B1AA-899163933AC0} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {F9DD73D3-AC84-42D4-ABF4-C1FEDC6B3B26} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {FA285672-0EF7-4D9E-8699-29DCD8D27CFE} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {FA4E57F1-7583-403E-9356-FB8D4BB4049E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {FC1AEECD-C825-4756-A8FD-87D211CB611A} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe /launch (No File)
Task: {FD387140-6E48-497A-8A5D-055C15BBBA68} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [6656 2009-02-10] () [File not signed]
Task: {FDF3CCCD-1FA0-4478-9AD0-580E0E3FADDB} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-732140370-2414468103-320680840-1003.job => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-732140370-2414468103-320680840-1003.job => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupload.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 169.254.0.1
Tcpip\..\Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}: [DhcpNameServer] 192.168.3.254
Tcpip\..\Interfaces\{a944ecab-ae64-4f32-a0a1-e47c63897ed1}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b362e47c-f029-4fbb-ba88-335e8a1d3900}: [DhcpNameServer] 169.254.0.1
Tcpip\..\Interfaces\{c1e3313b-8f3e-46e6-b64c-02ce473efc07}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{f2c73d21-a9fe-471c-b5fd-49ae0640ab9a}: [DhcpNameServer] 169.254.0.1

Edge: 
=======
DownloadDir: C:\Users\Y\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-732140370-2414468103-320680840-1003 -> 
Edge Session Restore: HKU\S-1-5-21-732140370-2414468103-320680840-1003 -> is enabled.
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Y\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-05]
Edge DownloadDir: Default -> C:\Users\Y\Downloads
Edge HomePage: Default -> edge://newtab/
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Session Restore: Default -> is enabled.
Edge Extension: (Komponenta I.CA PKI Service) - C:\Users\Y\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kchhpancoebhkdgdafnifpkcacaopncp [2021-08-24]

FireFox:
========
FF ProfilePath: C:\Users\Y\AppData\Roaming\TomTom\HOME\Profiles\5cpsiv61.default [2020-10-29]
FF Extension: (Emulator) - C:\Users\Y\AppData\Roaming\TomTom\HOME\Profiles\5cpsiv61.default\Extensions\Navcore.9.510.1234792@tomtom.com [2015-11-09] [Legacy] [not signed]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-03-01] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @graphisoft.com/GDL Web Plug-in -> C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll [2012-08-29] (Graphisoft SE) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] (Nokia -> )
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-07-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-07-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @parallelgraphics.com/Cortona -> C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npcortona.dll [2015-03-05] (Parallel Graphics LTD -> ParallelGraphics)
FF Plugin-x32: @parallelgraphics.com/RapidView -> C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona2D\npCortona2d.dll [2011-11-15] (Paragraphics) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Air\nppdf32.dll [2022-04-10] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH -> pdfforge GmbH)

Chrome: 
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2022-05-06] <==== ATTENTION
CHR DownloadDir: C:\Users\Y\Downloads
CHR Notifications: ChromeDefaultData -> hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com; hxxps://www.facebook.com; hxxps://www.levneletenky.org; hxxps://www.netflix.com; hxxps://www.tipli.cz
CHR StartupUrls: ChromeDefaultData -> "chrome://history/","hxxp://www.2-remove-virus.com/cz/qtipr-com-odstranit/","hxxp://www.pc-threat.com/cz/jak-odstranit-qtipr-com/","hxxp://www.4-cybersecurity.com/cz/jak-odstranit-qtipr-com/","hxxp://pc-help.cnews.cz/viewtopic.php?t=176359","hxxp://www.mobilmania.cz/"
CHR Session Restore: ChromeDefaultData -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-10]
CHR Extension: (Just Black) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-09-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12]
CHR Extension: (Send to Kindle for Google Chrome™) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cgdjpilhipecahhcilnafpblkieebhea [2021-10-25]
CHR Extension: (Search by Image (by Google)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2019-09-23]
CHR Extension: (Tipli do prohlížeče) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2021-05-03]
CHR Extension: (Tampermonkey) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-04-13]
CHR Extension: (Dropbox for Gmail) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2021-08-31]
CHR Extension: (Elektronický podpis ČSOB) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eahecpanklnlonjjlojnjjcigcbflego [2020-09-11]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-26]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\elioihkkcdgakfbahdoddophfngopipi [2019-09-23]
CHR Extension: (Komponenta I.CA PKI Service) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdolcjnejgbpoadihncaggiicpkhjchl [2021-03-01]
CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdpohaocaechififmbbbbbknoalclacl [2021-07-19]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-09-23]
CHR Extension: (Select and Speak - text na řeč) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gfjopfpjmkcfgjpogepmdjmcnihfpokn [2020-08-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-22]
CHR Extension: (VLC Capture) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\goppbgmjnldonmjemebdmcjfefbgoloh [2019-09-23]
CHR Extension: (IE Tab) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2022-01-26]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2022-05-05]
CHR Extension: (Rizikové weby) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\iddkbojnnljflgkjchlpjlhpfhhbeefk [2022-01-11]
CHR Extension: (Text Blaze) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\idgadaccgipmpannjkmfddolnnhmeklj [2022-04-26]
CHR Extension: (FormApps Extension) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2021-06-30]
CHR Extension: (Speed Dial 2 New tab) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2022-03-23]
CHR Extension: (Grammarly for Chrome) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-04-27]
CHR Extension: (eBay for Chrome) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\khhckppjhonfmcpegdjdibmngahahhck [2019-12-31]
CHR Extension: (Převod měn) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\kjehaadplpgckpgeoddpnijogjaldela [2019-09-23]
CHR Extension: (Data Selfie) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\kjmnobfdkgaclpkgeniccafoennghjnm [2019-09-23]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2022-05-05]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2021-09-28]
CHR Extension: (Rozšíření Odběry RSS (od Googlu)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2020-07-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (TabCloud) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\npecfdijgoblfcgagoijgmgejmcpnhof [2019-09-23]
CHR Extension: (SpeakIt! - Text to speech for Chrome) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2019-10-15]
CHR Extension: (Crypto Web Extension) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjohlogcennenjhkfclfgaganagadkkm [2022-03-25]
CHR Extension: (EpubPress - Read the web offline) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pnhdnpnnffpijjbnhnipkehhibchdeok [2021-02-12]
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default [2020-12-07]
CHR Extension: (Slides) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-23]
CHR Extension: (Docs) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-23]
CHR Extension: (Google Drive) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-31]
CHR Extension: (YouTube) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-23]
CHR Extension: (Google Sheets) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-06]
CHR Extension: (Google Docs Offline) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-05-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-23]
CHR Extension: (Gmail) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-23]
CHR Extension: (Chrome Media Router) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-23]
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-03-17]
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-03-17]
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Google Drive) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-08]
CHR Extension: (Adobe Acrobat) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-08]
CHR Extension: (Google Docs Offline) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-08]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-02-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-08]
CHR Extension: (Chrome Media Router) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-07]
CHR HKU\S-1-5-21-732140370-2414468103-320680840-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Y\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-06-09]
CHR HKU\S-1-5-21-732140370-2414468103-320680840-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aoclejgjkallknknpdaadeeecnajhmhl]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
StartMenuInternet: Google Chrome Beta - C:\Program Files\Google\Chrome Beta\Application\chrome.exe

Opera: 
=======
StartMenuInternet: (HKLM) Operadeveloper - C:\Program Files (x86)\Opera developer\Launcher.exe
StartMenuInternet: (HKLM) OperaStable - C:\Program Files (x86)\TC UP\PLUGINS\Media\Opera\launcher.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 ABBYY.Licensing.FineReader.14.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\14.00\Licensing\NetworkLicenseServer.exe [1021984 2018-09-13] (ABBYY Production LLC -> ABBYY Production LLC)
S2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1231376 2016-03-23] (Autodesk, Inc -> Autodesk Inc.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R2 ashbackup; c:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupService-ab.exe [34712 2019-05-29] (Ashampoo GmbH & Co. KG -> )
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [368640 2013-06-26] (AVerMedia) [File not signed]
S2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] () [File not signed]
S2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
S2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [29912 2015-09-15] (ChengDu AoMei Tech Co., Ltd -> AOMEI Tech Co., Ltd.) [File not signed]
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-08-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-04-06] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [11982784 2021-06-11] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [45408 2022-04-23] (Dropbox, Inc -> Dropbox, Inc.)
S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [39352 2022-03-28] (Intel Corporation -> Intel)
S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [184248 2022-03-28] (Intel Corporation -> Intel)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40128 2017-06-19] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [3210720 2022-04-01] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-11-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncHelper.exe [3399584 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [614624 2014-12-10] (FUTUREMARK INC -> Futuremark)
S3 GoogleChromeBetaElevationService; C:\Program Files\Google\Chrome Beta\Application\102.0.5005.40\elevation_service.exe [1637776 2022-05-04] (Google LLC -> Google LLC)
S3 I.CA Maintenance Service; C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
S3 I.CA Maintenance Service2; C:\Program Files (x86)\I.CA\I.CA Maintenance2\ICAMaintenance.exe [299336 2021-02-08] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-16] (Intel(R) Smart Connect software -> )
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
S3 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantageService.exe [29968 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8347832 2022-04-29] (Malwarebytes Inc -> Malwarebytes)
S2 Mgl3DCtlrRPCService; C:\Program Files\3Dconnexion\3DxWare\3DxWinCore\Mgl3DCtlrRPCService.exe [172184 2022-01-28] (3DCONNEXION SAM -> 3Dconnexion)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [50600 2016-03-03] (Softland SRL -> Microsoft)
S2 NVWMI; C:\WINDOWS\system32\nvwmi64.exe [4738952 2019-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
S2 O2FLASH; C:\WINDOWS\SysWOW64\drivers\o2flash.exe [82096 2015-05-21] (O2Micro -> BayHubTech/O2Micro International)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.077.0410.0007\OneDriveUpdaterService.exe [3847072 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2157456 2017-06-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3127192 2017-06-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2417376 2016-01-15] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-01-15] (pdfforge GmbH -> pdfforge GmbH)
S2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-01-15] (pdfforge GmbH -> pdfforge GmbH)
S2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [959248 2015-10-05] (pdfforge GmbH -> Â© pdfforge GmbH.)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH -> pdfforge GmbH)
S2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S2 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [48752 2017-06-21] (ProtonVPN AG -> )
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [61232 2014-12-05] (LENOVO -> Lenovo Group Limited)
S3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [317224 2014-12-05] (LENOVO -> Lenovo Group Limited)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254352 2022-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [365080 2019-07-03] (Synology Inc. -> ) [File not signed]
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Miroslav Topolar -> Mister Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13274600 2022-04-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\TPHKLOAD.exe [473760 2021-10-22] (Lenovo -> Lenovo Group Limited)
S2 TTHOMEService; C:\Program Files\TomTom HOME\TTHOMEService.exe [97792 2019-04-17] (TomTom) [File not signed]
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248856 2018-05-11] (Synology Inc. -> ) [File not signed]
S2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2020-11-04] (Chaos Software Ltd. -> ) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [203088 2011-10-11] (X-Rite Incorporated -> X-Rite Inc.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 3dxhid; C:\WINDOWS\system32\DRIVERS\3dxhid.sys [49624 2021-11-23] (3Dconnexion SAM -> 3Dconnexion SAM)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [30648 2015-02-26] (Aomei Technology Co., Limited -> ) [File not signed]
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [151480 2015-02-26] (Aomei Technology Co., Limited -> ) [File not signed]
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [17848 2015-02-26] (Aomei Technology Co., Limited -> ) [File not signed]
S3 athur; C:\WINDOWS\System32\drivers\athurx.sys [1847296 2015-08-25] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 BcmNfcIc; C:\WINDOWS\System32\drivers\BcmNfcIc.sys [140112 2016-03-18] (Broadcom Corporation -> Broadcom Corporation.)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 cpuz152; C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [35840 2022-04-19] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S3 cpuz153; C:\WINDOWS\temp\cpuz153\cpuz153_x64.sys [36864 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dlusbaudio; C:\WINDOWS\system32\DRIVERS\dlusbaudio_x64.sys [229648 2015-10-16] (DISPLAYLINK -> DisplayLink Corp.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183888 2022-04-01] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107944 2022-04-01] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [226264 2022-04-01] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [44968 2022-04-01] (ESET, spol. s r.o. -> ESET)
S3 ElcMouLFlt; C:\WINDOWS\System32\drivers\ElcMouLFlt.sys [28648 2015-09-11] (Microsoft Windows Hardware Compatibility Publisher -> ELECOM)
S3 ElcMouUFlt; C:\WINDOWS\System32\drivers\ElcMouUFlt.sys [27624 2015-09-11] (Microsoft Windows Hardware Compatibility Publisher -> ELECOM)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70776 2022-04-01] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [111624 2022-04-01] (ESET, spol. s r.o. -> ESET)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [33448 2016-12-07] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [65192 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [52392 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22696 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [196776 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 GemCCID; C:\WINDOWS\System32\drivers\GemCCID.sys [130944 2014-11-10] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [60704 2020-05-14] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO_150; C:\WINDOWS\system32\drivers\HWiNFO64A_150.SYS [62240 2020-05-14] (Martin Malik - REALiX -> REALiX(tm))
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [66824 2017-06-15] (IObit Information Technology -> IObit)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R3 KMJHidMini; C:\WINDOWS\System32\drivers\3dxkmj.sys [18944 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> 3Dconnextion Inc.)
R3 KMJShim; C:\WINDOWS\System32\drivers\3dxshim.sys [7168 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> 3Dconnextion Inc.)
R3 LenovoBoost; C:\WINDOWS\system32\DRIVERS\vanboost.sys [45824 2022-01-18] (Lenovo -> Lenovo Group Ltd.)
S3 LnvHIDHW; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [42544 2017-07-23] (Lenovo -> Lenovo)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239560 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 memudrv; C:\Program Files\Microvirt\MEmuHyperv\MEmuDrv.sys [260368 2015-11-02] (上海迈微软件科技有限公司 -> Microvirt Corporation)
S3 nmwcd; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 pccsmcfd; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
S3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2014-06-06] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 Rockey_USB; C:\WINDOWS\system32\DRIVERS\Rockey4USB.sys [23592 2014-06-06] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [974888 2021-11-24] (Realtek Semiconductor Corp. -> Realtek Corporation)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [757824 2016-12-20] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tvtvcamd; C:\WINDOWS\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (Lenovo (Japan) Ltd. -> ThinkVantage Communications Utility)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [206744 2013-06-21] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
S3 UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
R1 VD_FileDisk; C:\Windows\SysWow64\Drivers\VD_FileDisk.sys [24680 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
S3 vl810filter; C:\WINDOWS\system32\DRIVERS\vl810filter.sys [17008 2011-11-17] (VIA Technologies Inc. -> VIA Labs, Inc.)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [9728 2016-12-19] (SunnysideSoft -> )
R1 vsock; C:\WINDOWS\system32\DRIVERS\vsock.sys [91712 2016-09-30] (VMware, Inc. -> VMware, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [118200 2016-12-20] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R3 WPRO_41_2001; C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [34752 2022-05-05] (Intel(R) Smart Connect software -> )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three months (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-05-09 08:04 - 2022-05-09 08:04 - 000000000 ____D C:\Users\Y\Desktop\FRST-OlderVersion
2022-05-06 17:25 - 2022-05-06 17:25 - 000001936 _____ C:\Users\Y\Desktop\AdwCleaner[C04].txt
2022-05-06 17:21 - 2022-05-06 17:18 - 008551608 _____ (Malwarebytes) C:\Users\Y\Desktop\adwcleaner.exe
2022-05-06 17:18 - 2022-05-06 17:18 - 008551608 _____ (Malwarebytes) C:\Users\Y\Downloads\adwcleaner.exe
2022-05-06 09:08 - 2022-05-06 09:08 - 000079018 _____ C:\Users\Y\Desktop\logy.zip
2022-05-06 09:01 - 2022-05-06 09:01 - 000281811 _____ C:\Users\Y\Desktop\Shortcut.txt
2022-05-06 08:57 - 2022-05-06 09:01 - 000192780 _____ C:\Users\Y\Desktop\Addition.txt
2022-05-06 08:53 - 2022-05-09 08:06 - 000086032 _____ C:\Users\Y\Desktop\FRST.txt
2022-05-06 08:51 - 2022-05-09 08:04 - 002366976 _____ (Farbar) C:\Users\Y\Desktop\FRST64.exe
2022-05-06 08:49 - 2022-05-06 08:50 - 002366976 _____ (Farbar) C:\Users\Y\Downloads\FRST64.exe
2022-05-05 16:52 - 2022-05-05 16:52 - 000867401 _____ C:\Users\Y\Downloads\Vankyo-Performance-V630W.pdf
2022-05-05 16:22 - 2022-05-05 16:22 - 000094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2022-05-05 00:39 - 2022-05-05 00:39 - 001389422 _____ C:\Users\Y\Downloads\Haibike xDuro Cross RC 2016 Bosch – E-BikeShop UK.pdf
2022-05-05 00:31 - 2022-05-05 01:50 - 000000000 ____D C:\Users\Y\Desktop\haibike XDURO Cross RC 2016
2022-05-04 08:23 - 2022-05-09 08:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2022-05-04 08:23 - 2022-05-04 08:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2022-05-04 08:23 - 2022-05-04 08:23 - 000000000 ____D C:\Program Files\PowerToys
2022-05-03 18:48 - 2022-05-06 09:07 - 000000000 ____D C:\Users\Y\Desktop\_oprava tablet
2022-05-03 16:35 - 2022-05-03 16:35 - 000126174 _____ C:\Users\Y\Desktop\ARCHICAD padá na laptopech s duální grafickou kartou... - Komunita Graphisoftu.pdf
2022-05-03 16:34 - 2022-05-03 16:34 - 000182742 _____ C:\Users\Y\Desktop\Nelze použít 3D zobrazení na Archicad – komunita Graphisoft.pdf
2022-05-03 16:32 - 2022-05-03 16:34 - 000180599 _____ C:\Users\Y\Desktop\Can't use 3D view on Archicad - Graphisoft Community.pdf
2022-05-03 16:31 - 2022-05-03 16:32 - 000379527 _____ C:\Users\Y\Desktop\Jak přizpůsobím profily a nastavení Optimus_ _ NVIDIA.pdf
2022-05-03 14:59 - 2022-05-03 15:27 - 000000000 ____D C:\Users\Y\Desktop\_____textura
2022-05-03 14:21 - 2022-05-05 16:29 - 000007102 _____ C:\WINDOWS\system32\PerfStringBackup.TMP
2022-05-03 14:14 - 2022-05-03 14:14 - 000848024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-05-02 16:09 - 2022-05-02 16:09 - 000695200 _____ C:\Users\Y\Desktop\(1612) Pinterest.html
2022-05-02 16:09 - 2022-05-02 16:09 - 000000000 ____D C:\Users\Y\Desktop\(1612) Pinterest_files
2022-05-02 16:01 - 2022-05-02 16:01 - 003409905 _____ C:\Users\Y\Downloads\Booklet-Covid-EN-2021-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 001395949 _____ C:\Users\Y\Downloads\multiclear-warranty-en-2021.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000895422 _____ C:\Users\Y\Downloads\Booklet-Soundwall-EN-2015-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000396127 _____ C:\Users\Y\Downloads\Datasheet-Multiclear-Box7W-2014-EN-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000077542 _____ C:\Users\Y\Downloads\ProductHandlingInfo-Multiclear-EN-2015-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000045290 _____ C:\Users\Y\Downloads\Datasheet-Multiclear-Hammer-Finish-2014-EN-v1.pdf
2022-05-02 14:28 - 2022-05-04 13:42 - 000373658 _____ C:\Users\Y\Downloads\2919371354.pdf
2022-05-02 09:25 - 2022-05-02 09:25 - 000224200 _____ C:\Users\Y\Desktop\OptimusRenderingPolicies.pdf
2022-05-02 08:59 - 2022-05-02 09:01 - 577895425 _____ C:\Users\Y\Downloads\Totalni raus.zip
2022-05-02 08:59 - 2022-05-02 08:59 - 000501797 _____ C:\Users\Y\Desktop\Audiokniha Totální rauš - Audioknihy ke stažení.pdf
2022-05-02 08:58 - 2022-05-02 08:58 - 000116951 _____ C:\Users\Y\Desktop\epic, Just Die Already.pdf
2022-05-02 08:57 - 2022-05-02 08:57 - 000116530 _____ C:\Users\Y\Desktop\epic, Paradigm.pdf
2022-04-29 21:14 - 2022-04-29 21:14 - 000508362 _____ C:\Users\Y\Downloads\2919696246.pdf
2022-04-29 21:09 - 2022-04-29 21:09 - 007444880 _____ (TechPowerUp (www.techpowerup.com)) C:\Users\Y\Downloads\GPU-Z.2.45.0.exe
2022-04-29 21:09 - 2022-04-29 21:09 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z.lnk
2022-04-29 21:09 - 2022-04-29 21:09 - 000001043 _____ C:\Users\Public\Desktop\TechPowerUp GPU-Z.lnk
2022-04-29 21:09 - 2022-04-29 21:09 - 000000000 ____D C:\Program Files (x86)\GPU-Z
2022-04-29 21:03 - 2022-04-29 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D
2022-04-29 21:03 - 2022-04-29 21:03 - 000000000 ____D C:\Program Files (x86)\Geeks3D
2022-04-29 20:25 - 2022-04-29 20:25 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-04-28 23:03 - 2022-04-28 23:03 - 000000000 ____D C:\Users\Y\AppData\Local\Tvsukernel
2022-04-28 15:12 - 2022-04-28 15:15 - 000016365 _____ C:\Users\Y\Desktop\archicad ceny do 2022-04-28.xlsx
2022-04-28 14:25 - 2022-05-01 21:42 - 000000000 ____D C:\Users\Y\Desktop\thinkpad
2022-04-28 09:14 - 2022-04-28 09:14 - 011087873 _____ C:\Users\Y\Desktop\Znovu jsem vložil W540. Je tišší a chladnější! _ thinkpad.pdf
2022-04-27 21:08 - 2022-04-27 23:06 - 000000000 ____D C:\Users\Y\AppData\Roaming\DropboxElectron
2022-04-27 21:08 - 2022-04-27 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-04-27 11:50 - 2022-04-27 11:50 - 000429710 _____ C:\Users\Y\Desktop\Jaroslava Ježka 770_16, Jeseník _ Reas.cz.pdf
2022-04-27 11:49 - 2022-04-27 11:50 - 000459785 _____ C:\Users\Y\Desktop\Krameriova 562_29, Jeseník _ Reas.cz.pdf
2022-04-27 11:49 - 2022-04-27 11:49 - 000445384 _____ C:\Users\Y\Desktop\Velké Kunětice 173, Velké Kunětice _ Reas.cz.pdf
2022-04-27 11:48 - 2022-04-27 11:48 - 000246420 _____ C:\Users\Y\Desktop\odhad nemovitostí.pdf
2022-04-26 12:16 - 2022-04-26 12:16 - 000072410 _____ C:\Users\Y\Downloads\Zaplacene_NP (MAX ROZSAH KE DNI 2022-04-26).pdf
2022-04-26 12:16 - 2022-04-26 12:16 - 000071696 _____ C:\Users\Y\Downloads\Zaplacene_NP_2021.pdf
2022-04-26 12:15 - 2022-04-26 12:15 - 000068660 _____ C:\Users\Y\Downloads\Zaplacene_NP (1).pdf
2022-04-26 12:14 - 2022-04-26 12:14 - 000067946 _____ C:\Users\Y\Downloads\Zaplacene_NP.pdf
2022-04-26 07:52 - 2022-04-26 07:52 - 002074326 _____ C:\Users\Y\Desktop\bim-urs-pruzkum-2022.pdf
2022-04-25 15:12 - 2022-04-25 14:33 - 015656281 _____ C:\Users\Y\Desktop\komplet.pdf
2022-04-23 21:08 - 2022-04-23 21:08 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-04-23 21:08 - 2022-04-23 21:08 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-04-23 21:08 - 2022-04-23 21:08 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-04-23 21:08 - 2022-04-23 21:08 - 000045408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-04-22 16:07 - 2022-04-22 16:07 - 000039193 _____ C:\Users\Y\Downloads\SUDYZP-E01_EN.pdf
2022-04-20 15:11 - 2022-04-20 15:15 - 000000000 ____D C:\Users\Y\Desktop\soutěž
2022-04-20 14:51 - 2022-04-20 14:51 - 000000708 _____ C:\Users\Y\Desktop\sketchup.txt
2022-04-20 14:38 - 2022-04-20 14:48 - 000002287 _____ C:\Users\Y\Desktop\archicad a grafika.txt
2022-04-20 11:27 - 2022-04-20 11:27 - 000000000 ____D C:\Users\Y\AppData\Local\Viber
2022-04-19 23:47 - 2022-04-07 10:29 - 000125169 _____ C:\Users\Y\Desktop\2022-04-06_KUSOVNIK.pdf
2022-04-19 16:56 - 2022-04-19 17:12 - 000001862 _____ C:\Users\Y\Desktop\SEZNAM PŘÍLOH.txt
2022-04-19 16:51 - 2022-04-19 16:51 - 000019201 _____ C:\Users\Y\Desktop\Kno_print_DCAD25, ABCDE_2021_vi.pdf
2022-04-19 01:22 - 2022-04-19 01:24 - 000000051 _____ C:\Users\Y\Desktop\OVLADAČ GRAFIKA.txt
2022-04-19 01:16 - 2022-04-19 01:16 - 000838352 _____ C:\Users\Y\Desktop\Doporučené grafické karty pro Archicad 25 – komunita Graphisoft.pdf
2022-04-19 01:13 - 2022-04-19 01:13 - 000453453 _____ C:\Users\Y\Desktop\Doporučený hardware – komunita Graphisoft.pdf
2022-04-14 16:19 - 2022-04-14 16:19 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-04-13 12:31 - 2022-04-13 12:31 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-04-13 12:31 - 2022-04-13 12:31 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-04-13 12:31 - 2022-04-13 12:31 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-04-13 12:30 - 2022-04-13 12:30 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-04-13 12:22 - 2022-04-13 12:22 - 000000000 ___HD C:\$WinREAgent
2022-04-13 09:42 - 2022-04-13 09:45 - 000172514 _____ C:\Users\Y\Desktop\Název místního zařízení se již používá Oprava - GeekingUp.pdf
2022-04-12 09:45 - 2022-04-12 09:45 - 000000000 ____D C:\Users\Y\Documents\UnrealTournament
2022-04-12 09:39 - 2022-04-12 09:39 - 000010516 _____ C:\Users\Y\Desktop\disk místo.xlsx
2022-04-12 09:21 - 2022-04-12 09:21 - 000000000 ____D C:\WINDOWS\Panther
2022-04-08 16:08 - 2022-04-08 16:08 - 006148301 _____ C:\Users\Y\Downloads\44215_BR - Technicka_prirucka_04-2017.pdf
2022-04-08 15:15 - 2022-04-08 15:15 - 000506799 _____ C:\Users\Y\Downloads\2918995046.pdf
2022-04-08 08:57 - 2022-04-08 10:51 - 000001741 _____ C:\Users\Y\Desktop\zaplatit a SMAZAT.txt
2022-04-08 07:43 - 2022-04-08 07:43 - 000096190 _____ C:\Users\Y\Desktop\Gmail - Informace o vaší platbě z dobijeni.o2.cz.pdf
2022-04-07 12:51 - 2022-04-07 12:51 - 000201486 _____ C:\Users\Y\Desktop\Gmail - doména a webové stránky - prodloužení.pdf
2022-04-06 14:33 - 2022-04-06 14:33 - 000000000 ____D C:\Users\Y\Desktop\!   web
2022-04-06 14:00 - 2022-04-06 14:00 - 000725629 _____ C:\Users\Y\Downloads\STAVBA ROKU.pdf
2022-04-06 10:30 - 2022-04-06 10:30 - 000132191 _____ C:\Users\Y\Desktop\Mail Tiscali PLATBY DOPLATIT.pdf
2022-04-05 15:52 - 2022-04-05 15:52 - 000000887 _____ C:\Users\Y\Desktop\Component Quantities Report.grt
2022-04-05 14:14 - 2022-04-05 14:15 - 000000000 ____D C:\Users\Y\Desktop\!  daně 2021
2022-04-05 08:47 - 2022-04-05 08:47 - 000001521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2022-04-04 12:01 - 2022-04-04 12:01 - 000130668 _____ C:\Users\Y\Desktop\email.tiscali.cz - jaromir.knotek@tiscali.cz.pdf
2022-04-01 13:32 - 2022-04-01 13:32 - 000116524 _____ C:\Users\Y\Downloads\epic, Total War - WARHAMMER.pdf
2022-04-01 13:31 - 2022-04-01 13:31 - 000115625 _____ C:\Users\Y\Downloads\epic, City of Brass.pdf
2022-04-01 13:09 - 2022-04-01 13:09 - 000790112 _____ C:\Users\Y\Downloads\nova-zelena-usporam_tondach POZOR MANUÁL Z 2017.pdf
2022-04-01 08:29 - 2022-04-01 08:26 - 001119829 _____ C:\Users\Y\Downloads\beton polsko, ceník, SKM_C224e22040107140.pdf
2022-03-31 09:59 - 2022-03-31 10:10 - 000003191 _____ C:\Users\Y\Desktop\videa ke shlédnutí plus texty.txt
2022-03-31 09:01 - 2022-04-01 09:46 - 000014234 _____ C:\Users\Y\Desktop\nový počítač.xlsx
2022-03-29 13:44 - 2022-03-29 13:44 - 000153702 _____ C:\Users\Y\Downloads\pan Sládek - RD Jeseník - Stavitelství Knotek.xlsx
2022-03-28 10:33 - 2022-03-28 10:33 - 002105942 _____ C:\Users\Y\Downloads\K20101 Odkanalizování obce Velké Kunětice - oznámení zhotovitele.pdf
2022-03-24 09:38 - 2022-03-24 09:38 - 000068861 _____ C:\Users\Y\Downloads\301.01  OKAP STŘECHY.pdf
2022-03-24 09:38 - 2022-03-24 09:38 - 000046113 _____ C:\Users\Y\Downloads\302.01  OKRAJ STŘECHY VE ŠTÍTĚ.pdf
2022-03-23 15:44 - 2022-04-15 03:54 - 000000000 ____D C:\Users\Y\Desktop\!   harazín odložiště
2022-03-22 21:20 - 2022-03-14 13:02 - 000384584 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3758.sys
2022-03-21 14:35 - 2022-03-21 14:35 - 000115579 _____ C:\Users\Y\Downloads\epic, In Sound Mind.pdf
2022-03-18 08:12 - 2022-03-18 08:12 - 000000000 ___HD C:\OneDriveTemp
2022-03-16 16:56 - 2022-03-16 16:56 - 000058832 _____ C:\Users\Y\Downloads\2F53186D-C970-4317-A037-71E22EB89665.jpeg
2022-03-16 16:56 - 2022-03-16 16:56 - 000050338 _____ C:\Users\Y\Downloads\68ECE369-C46E-487D-8E1C-053BC967D854.jpeg
2022-03-16 00:05 - 2022-03-16 00:05 - 001319027 _____ C:\Users\Y\Downloads\SOD KOMPLET.pdf
2022-03-15 16:17 - 2022-03-15 16:17 - 011329552 _____ C:\Users\Y\Desktop\ŠABLONA_2022.pln
2022-03-15 14:59 - 2022-03-28 08:55 - 000001277 _____ C:\Users\Y\Desktop\kam letět.txt
2022-03-14 12:33 - 2022-03-14 12:33 - 000406215 _____ C:\Users\Y\Downloads\UR_KANAL_VK.pdf
2022-03-14 09:48 - 2022-03-14 09:48 - 000099935 _____ C:\Users\Y\Downloads\Manual_Series-Re_Tension-Instructions-1.pdf
2022-03-11 10:41 - 2022-03-11 10:41 - 000607451 _____ C:\Users\Y\Downloads\2918048401 (1).pdf
2022-03-10 13:21 - 2022-03-10 13:21 - 000311505 _____ C:\Users\Y\Downloads\2918048401.pdf
2022-03-10 13:20 - 2022-03-10 13:20 - 000435284 _____ C:\Users\Y\Downloads\3220120119.pdf
2022-03-10 13:19 - 2022-03-10 13:19 - 000511971 _____ C:\Users\Y\Downloads\2916202195.pdf
2022-03-09 16:16 - 2022-03-09 16:59 - 000000000 ____D C:\Users\Y\Desktop\!  R2
2022-03-09 15:24 - 2022-03-09 15:24 - 000195584 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2022-03-09 15:23 - 2022-03-09 15:23 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-09 15:23 - 2022-03-09 15:23 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-09 15:23 - 2022-03-09 15:23 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-09 15:23 - 2022-03-09 15:23 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-09 11:47 - 2022-03-09 11:47 - 000651918 _____ C:\Users\Y\Downloads\artemis I, boarding pass.jfif
2022-03-08 10:29 - 2022-03-08 10:29 - 000624339 _____ C:\Users\Y\Downloads\Ako-sa-jednoducho-dorozumiete-s-ukrajincami-aj-bez-znalosti-rustiny-ci-ukrajinciny-ebook-jazykovy-mentoring.pdf
2022-03-07 09:31 - 2022-03-07 09:31 - 000107295 _____ C:\Users\Y\Downloads\ptam se na j jestli jsme si souzeni ze uz me ten nejasny stav stve.pdf
2022-03-07 09:29 - 2022-03-07 09:29 - 036495070 _____ C:\Users\Y\Downloads\publication Profi Speciál.pdf
2022-03-07 08:55 - 2022-03-07 08:55 - 000221261 _____ C:\Users\Y\Downloads\Transakce_2000008611991206 TOLIK PLATIL IVAN.pdf
2022-03-04 13:06 - 2020-11-04 00:29 - 129609848 _____ C:\Users\Y\designcad_3d_max_2020_x64.exe
2022-03-04 12:58 - 2022-03-04 12:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignCAD 3D MAX 2020 64-bit
2022-03-04 12:48 - 2022-03-04 12:51 - 000000000 ____D C:\Users\Y\Documents\DesignCAD 3D MAX 2020 32-bit
2022-03-03 15:47 - 2022-03-03 15:47 - 000296326 _____ C:\Users\Y\Downloads\dl-7501811450148316941.pdf
2022-03-01 15:22 - 2022-03-01 15:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dconnexion Notifications
2022-03-01 12:22 - 2022-03-01 12:22 - 001124631 _____ C:\Users\Y\Downloads\fwrdbeneovibukoviceujesenka212367v.zip
2022-02-28 09:54 - 2022-02-28 09:54 - 000513035 _____ C:\Users\Y\Downloads\alza, 2917667973.pdf
2022-02-25 10:51 - 2022-02-25 10:51 - 000000202 _____ C:\Users\Y\Downloads\DI.FM - 00s Club Hits.pls
2022-02-21 17:35 - 2022-02-21 17:35 - 000022709 _____ C:\Users\Y\Downloads\pohyby-na uctu 152332717_0300-20220221-1635.csv
2022-02-21 17:34 - 2022-02-21 17:34 - 000123106 _____ C:\Users\Y\Downloads\csob_export_pohyby_20220221_16_33.pdf
2022-02-21 17:34 - 2022-02-21 17:34 - 000001555 _____ C:\Users\Y\Downloads\pohyby-na uctu 152332717_0300-20220221-1634.csv
2022-02-21 17:33 - 2022-02-21 17:33 - 000023991 _____ C:\Users\Y\Downloads\pohyby-na uctu 152332717_0300-20220221-1633.csv
2022-02-21 12:31 - 2022-02-21 12:31 - 000229283 _____ C:\Users\Y\Downloads\dream-psychology_auto_preview.epub
2022-02-18 01:40 - 2022-04-29 20:09 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-02-16 18:47 - 2022-02-16 18:47 - 000082020 _____ C:\Users\Y\Downloads\faktura-1018358144 STARŠÍ F TOLIK MĚ STÁLY SLUCHÁTKA.pdf
2022-02-16 08:53 - 2022-02-16 09:19 - 000000000 ____D C:\Program Files\RUXIM
2022-02-10 17:32 - 2022-02-10 17:32 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-09 06:36 - 2022-02-09 06:36 - 000003668 _____ C:\Users\Y\Downloads\e1636927273312672.ics

==================== Three months (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-01-01 01:00 - 2021-07-19 11:51 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-01 01:00 - 2021-04-16 16:46 - 000004140 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{33901C63-A052-46B6-A9B2-94458F7D3AA8}
2023-01-01 00:59 - 2021-09-21 15:44 - 000000000 ____D C:\ProgramData\Zoner
2022-05-09 08:07 - 2020-03-03 08:45 - 000000000 ____D C:\WINDOWS\TempInst
2022-05-09 08:05 - 2017-12-02 13:27 - 000000000 ____D C:\FRST
2022-05-09 08:05 - 2017-04-12 08:55 - 000000000 ____D C:\ProgramData\NVIDIA
2022-05-09 08:04 - 2015-12-25 13:51 - 000000000 ____D C:\Program Files\CCleaner
2022-05-09 08:04 - 2014-06-07 18:13 - 000000000 ____D C:\Program Files (x86)\Google
2022-05-09 08:03 - 2020-06-08 21:27 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-05-09 08:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-05-09 08:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-05-09 08:02 - 2014-06-06 10:18 - 000000000 ____D C:\Users\Y\AppData\Local\CrashDumps
2022-05-06 17:23 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-05-06 17:08 - 2021-10-20 08:38 - 000025288 _____ C:\WINDOWS\storelibdebug.txt
2022-05-06 16:42 - 2014-06-05 13:25 - 000000000 ____D C:\Users\Y\AppData\Local\GHISLER
2022-05-06 16:38 - 2019-10-03 13:51 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-05-06 16:37 - 2021-04-16 16:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-05-06 15:41 - 2018-04-17 16:40 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-05-06 15:41 - 2015-03-11 01:00 - 000000000 __SHD C:\Users\Y\IntelGraphicsProfiles
2022-05-06 13:05 - 2019-12-07 11:51 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-05-06 13:05 - 2014-06-05 14:09 - 000000000 ____D C:\Users\Y\Graphisoft
2022-05-06 13:05 - 2014-06-05 14:09 - 000000000 ____D C:\Users\Y\AppData\Local\Graphisoft
2022-05-06 08:46 - 2017-09-11 23:20 - 000002577 _____ C:\Users\Y\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary.lnk
2022-05-05 17:26 - 2020-09-04 08:12 - 000000000 ____D C:\Users\Y\Documents\ViberDownloads
2022-05-05 17:26 - 2020-09-04 08:12 - 000000000 ____D C:\Users\Y\AppData\Roaming\ViberPC
2022-05-05 16:49 - 2021-04-02 16:43 - 000000000 ____D C:\Users\Y\AppData\LocalLow\IGDump
2022-05-05 16:29 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-05-05 16:29 - 2014-11-25 03:45 - 000007670 _____ C:\Users\Y\AppData\Local\resmon.resmoncfg
2022-05-05 16:22 - 2021-11-26 13:03 - 000034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2022-05-05 16:22 - 2021-04-16 16:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-05-05 16:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-05-05 16:22 - 2017-04-12 08:54 - 000000000 ____D C:\ProgramData\Synaptics
2022-05-05 16:22 - 2014-06-28 18:42 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-05-05 16:21 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-05-05 16:14 - 2014-06-05 13:31 - 000000000 ____D C:\Users\Y\AppData\Roaming\XnView
2022-05-05 13:26 - 2020-12-22 08:48 - 000057650 _____ C:\LidTrace.txt
2022-05-05 13:22 - 2021-04-16 16:33 - 000000000 ____D C:\Users\_ashbackup_
2022-05-04 23:05 - 2021-03-13 11:52 - 000002273 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome Beta.lnk
2022-05-04 13:19 - 2014-06-07 18:14 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-05-04 08:24 - 2016-07-31 14:26 - 000000000 ____D C:\Users\Y\AppData\Local\LenovoServiceBridge
2022-05-04 08:23 - 2013-12-09 20:50 - 000000000 ____D C:\ProgramData\Package Cache
2022-05-04 08:22 - 2018-06-14 08:55 - 000000000 ____D C:\ProgramData\Packages
2022-05-04 08:22 - 2018-02-08 12:21 - 000000000 ____D C:\Users\Y\AppData\Local\Packages
2022-05-03 20:41 - 2021-04-16 16:33 - 000000000 ____D C:\Users\Y
2022-05-03 20:39 - 2020-11-04 01:01 - 000000000 ____D C:\Users\Y\Documents\DesignCAD 3D MAX 2020 64-bit
2022-05-03 18:49 - 2019-05-14 17:25 - 000000000 ____D C:\Users\Y\Desktop\! L
2022-05-02 15:14 - 2014-08-15 19:23 - 000000000 ____D C:\Users\Y\Documents\Soubory aplikace Outlook
2022-05-02 12:15 - 2021-04-22 08:58 - 000000000 ____D C:\Users\Y\AppData\Local\Deployment
2022-05-02 10:29 - 2018-05-11 11:28 - 000000000 ____D C:\Users\Y\AppData\Local\D3DSCache
2022-05-02 08:17 - 2021-04-16 16:42 - 001868164 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-05-01 21:48 - 2014-07-28 21:07 - 000000000 ____D C:\Users\Y\AppData\Roaming\vlc
2022-04-30 18:47 - 2021-04-16 16:46 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-04-30 17:43 - 2021-09-05 17:28 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-04-29 21:56 - 2017-09-30 00:46 - 000000000 ____D C:\Program Files\Google
2022-04-29 21:25 - 2022-01-11 09:44 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1010
2022-04-29 21:25 - 2021-12-13 08:52 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1003
2022-04-29 21:04 - 2015-01-13 00:22 - 000000000 ___RD C:\Users\Y\Desktop\shortcut
2022-04-29 20:49 - 2016-04-08 10:59 - 000000000 ____D C:\Program Files\HWiNFO64
2022-04-29 20:45 - 2019-09-04 08:08 - 000000000 ____D C:\Users\Y\AppData\Local\Ashampoo Backup
2022-04-29 20:24 - 2020-03-16 17:21 - 000000000 ____D C:\Users\Y\Documents\MAXON
2022-04-29 20:23 - 2014-07-15 07:43 - 000000000 ____D C:\Users\Y\AppData\Roaming\MAXON
2022-04-29 20:09 - 2021-11-08 23:09 - 000239560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-04-29 20:09 - 2021-01-07 13:08 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-04-29 20:09 - 2021-01-07 13:08 - 000002004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-04-29 20:09 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-04-29 20:09 - 2019-07-04 09:08 - 000103888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-04-29 20:08 - 2018-01-30 16:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-04-29 20:08 - 2018-01-30 16:39 - 000000000 ____D C:\Program Files\Malwarebytes
2022-04-28 22:07 - 2016-03-14 17:29 - 000000000 ____D C:\Program Files (x86)\Opera developer
2022-04-28 22:01 - 2021-04-26 07:38 - 000003440 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d732ce48f9d04
2022-04-28 22:01 - 2021-04-16 16:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-28 16:56 - 2021-04-12 13:13 - 000000000 ____D C:\Users\Y\AppData\Roaming\Videoder
2022-04-28 15:21 - 2021-04-16 16:46 - 000003980 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1457969422
2022-04-28 15:21 - 2016-03-14 17:30 - 000001240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera developer.lnk
2022-04-27 21:08 - 2016-09-05 18:09 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-04-27 21:08 - 2016-09-05 18:05 - 000000000 ____D C:\Users\Y\AppData\Local\Dropbox
2022-04-27 07:51 - 2021-10-28 05:12 - 000003548 _____ C:\WINDOWS\system32\Tasks\Color Calibrator Tray
2022-04-25 14:23 - 2016-11-16 15:05 - 000747363 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2022-04-21 13:18 - 2018-05-01 01:06 - 000000000 ____D C:\Users\Y\AppData\Local\Lenovo
2022-04-21 13:17 - 2021-04-16 16:46 - 000004224 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1578865434
2022-04-20 14:53 - 2018-02-08 12:56 - 000000000 ____D C:\Users\Y\AppData\Local\PlaceholderTileLogoFolder
2022-04-20 14:52 - 2021-06-25 10:50 - 000001374 _____ C:\Users\Y\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-04-20 14:52 - 2021-06-25 10:50 - 000000000 ____D C:\Users\Y\AppData\Local\PCHealthCheck
2022-04-20 11:22 - 2021-04-16 16:46 - 000003752 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-732140370-2414468103-320680840-1003UA1d57da09f9599ed
2022-04-20 11:22 - 2021-04-16 16:46 - 000003484 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-732140370-2414468103-320680840-1003Core1d57da09f926586
2022-04-20 02:19 - 2021-04-16 16:46 - 000003450 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d57dca40770605
2022-04-20 02:19 - 2021-04-16 16:46 - 000003326 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d57dca4073ab27
2022-04-19 09:37 - 2021-12-06 08:55 - 000000000 ____D C:\Users\Y\AppData\Roaming\TIDAL
2022-04-19 09:27 - 2019-01-18 13:16 - 000000000 ___RD C:\Users\Y\iCloudDrive
2022-04-19 00:03 - 2017-12-07 20:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-04-18 23:53 - 2013-12-09 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2022-04-18 17:52 - 2021-09-03 18:43 - 000002028 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-04-18 17:52 - 2021-09-03 18:43 - 000001870 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-04-18 17:52 - 2021-09-03 18:43 - 000001870 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-04-18 17:52 - 2021-09-03 18:43 - 000001858 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-04-15 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-04-14 15:34 - 2021-04-16 16:46 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-04-14 15:34 - 2018-01-10 10:46 - 000002135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller 2017.lnk
2022-04-14 15:34 - 2018-01-10 10:46 - 000002124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat 2017.lnk
2022-04-13 15:56 - 2017-07-20 08:51 - 000000000 ____D C:\Users\Y\AppData\Local\Greenshot
2022-04-13 12:34 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-04-13 12:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-04-13 12:31 - 2012-10-01 21:26 - 000414970 __RSH C:\bootmgr
2022-04-13 12:21 - 2014-06-05 23:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-04-13 12:09 - 2020-05-20 09:23 - 000000000 ____D C:\Program Files\dotnet
2022-04-13 12:09 - 2014-06-05 23:29 - 143823848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-04-12 09:47 - 2015-07-03 16:49 - 000000000 ____D C:\Program Files\Epic Games
2022-04-12 09:45 - 2016-02-08 22:11 - 000000000 ____D C:\Users\Y\AppData\Local\UnrealEngine
2022-04-12 09:44 - 2018-06-11 09:11 - 000000000 ____D C:\Users\Y\Documents\Unreal Projects
2022-04-11 18:57 - 2021-03-31 09:48 - 000000000 ____D C:\Program Files\Stawebnice_3_0

==================== Files in the root of some directories ========

2022-03-04 13:06 - 2020-11-04 00:29 - 129609848 _____ () C:\Users\Y\designcad_3d_max_2020_x64.exe
2015-08-04 12:08 - 2006-03-30 16:57 - 000046592 _____ () C:\Program Files\04-10v1r0 - Záznam o provedení vstupní lékařské prohlídky.wpd
2015-08-04 12:08 - 2005-11-06 13:38 - 000023552 _____ () C:\Program Files\04-12v1r0 - Zaškolovací plán.wpd
2009-05-21 14:53 - 2009-05-21 14:53 - 000021494 _____ () C:\Program Files\0x0409.ini
2017-11-04 02:13 - 2017-11-04 02:13 - 120828987 _____ () C:\Program Files\Data1.cab
2017-11-04 02:13 - 2017-11-04 02:13 - 003237376 _____ () C:\Program Files\DesignCAD3DMax27.msi
2004-11-28 08:53 - 2004-11-28 08:53 - 001822520 _____ (Microsoft Corporation) C:\Program Files\instmsiw.exe
2020-08-03 17:47 - 2020-08-03 17:47 - 003163728 _____ () C:\Program Files\jcpicker.exe
2017-11-04 02:14 - 2017-11-04 02:14 - 001024976 _____ (IMSIDesign                                                   ) C:\Program Files\setup.exe
2017-11-04 02:16 - 2017-11-04 02:16 - 000002834 _____ () C:\Program Files\Setup.ini
2017-10-24 21:34 - 2017-10-24 21:34 - 000003916 _____ () C:\Program Files (x86)\node.xml
2017-10-05 15:01 - 2017-10-05 15:01 - 000000268 ___RH () C:\Users\Y\AppData\Roaming\Analog Mono
2017-10-05 15:01 - 2017-10-05 15:01 - 000000268 ___RH () C:\Users\Y\AppData\Roaming\Analog Swirl
2021-02-27 12:58 - 2021-11-05 00:13 - 000000166 _____ () C:\Users\Y\AppData\Roaming\PLGComp.ini
2017-05-07 00:16 - 2020-01-16 19:36 - 000000600 _____ () C:\Users\Y\AppData\Roaming\winscp.rnd
2018-08-24 10:00 - 2018-08-24 10:00 - 000003584 _____ () C:\Users\Y\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-03-29 23:35 - 2020-03-29 23:39 - 000003075 _____ () C:\Users\Y\AppData\Local\krita.log
2020-03-29 23:39 - 2020-03-29 23:39 - 000000039 _____ () C:\Users\Y\AppData\Local\kritadisplayrc
2020-03-29 23:36 - 2020-03-29 23:39 - 000015820 _____ () C:\Users\Y\AppData\Local\kritarc
2022-05-02 08:05 - 2022-05-02 23:46 - 000000595 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-02.log
2022-05-03 14:15 - 2022-05-03 14:15 - 000000119 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-03.log
2022-05-04 08:20 - 2022-05-04 23:04 - 000000238 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-04.log
2022-05-05 08:45 - 2022-05-05 16:23 - 000000357 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-05.log
2022-05-06 08:40 - 2022-05-06 15:42 - 000000238 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-06.log
2022-05-09 08:03 - 2022-05-09 08:03 - 000000119 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-09.log
2018-04-17 16:38 - 2018-04-17 16:38 - 000029696 _____ () C:\Users\Y\AppData\Local\MSGBOX.EXE
2018-10-01 00:41 - 2018-10-01 00:41 - 000000000 _____ () C:\Users\Y\AppData\Local\oobelibMkey.log
2017-05-06 21:25 - 2017-05-17 21:00 - 000000600 _____ () C:\Users\Y\AppData\Local\PUTTY.RND
2021-10-27 16:07 - 2021-10-27 16:07 - 000003186 _____ () C:\Users\Y\AppData\Local\recently-used.xbel
2014-11-25 03:45 - 2022-05-05 16:29 - 000007670 _____ () C:\Users\Y\AppData\Local\resmon.resmoncfg
2015-08-28 00:45 - 2018-04-20 09:05 - 000266630 _____ () C:\Users\Y\AppData\Local\Snip.txt
2014-06-05 12:13 - 2014-06-05 12:13 - 000034171 _____ () C:\Users\Y\AppData\Local\WiDiSetupLog.20140605.121307.wdl

==================== SigCheckExt =========================

2017-08-30 23:11 - 2017-08-08 17:49 - 004027072 _____ C:\WINDOWS\system32\BootMan.exe
2012-10-09 19:39 - 2012-10-09 19:39 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\capicom.dll
2016-07-12 21:34 - 2016-07-01 05:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2015-10-30 09:19 - 2015-10-30 09:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2010-11-21 05:23 - 2010-11-21 05:23 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvscres.dll
2017-08-30 23:11 - 2014-11-18 14:46 - 000017504 _____ C:\WINDOWS\system32\EuEpmGdi.dll
2017-08-30 23:13 - 2016-12-06 02:46 - 000026304 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\fbnative.exe
2013-12-09 20:58 - 2013-08-08 17:44 - 002384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-09 20:58 - 2013-08-08 17:44 - 000108032 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2010-01-19 15:19 - 2010-01-19 15:19 - 000032768 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbmiapi.dll
2010-01-19 15:19 - 2010-01-19 15:19 - 000033280 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboid.dll
2010-01-19 15:19 - 2010-01-19 15:19 - 000009216 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboidps.dll
2010-01-19 15:19 - 2010-01-19 15:19 - 000056832 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbpro.dll
2010-01-19 15:19 - 2010-01-19 15:19 - 000009728 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbprops.dll
2010-01-19 15:12 - 2010-01-19 15:12 - 000070144 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPBWSDR.DLL
2009-11-27 12:15 - 2009-11-27 12:15 - 000228864 _____ (hp) C:\WINDOWS\system32\hplbddrv.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000079360 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZidr12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000071680 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZinw12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000089600 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipm12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000053760 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipr12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000045056 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzipt12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000030208 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzisn12.dll
2013-12-09 20:58 - 2013-08-08 17:53 - 000089600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3272.dll
2015-03-11 00:55 - 2015-07-30 06:32 - 000206848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4256.dll
2013-12-09 20:58 - 2013-08-08 17:44 - 008997888 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2017-10-25 14:59 - 2017-10-25 14:59 - 000341504 _____ (The cURL library, hxxps://curl.haxx.se/) C:\WINDOWS\system32\libcurl.dll
2017-10-25 14:59 - 2017-10-25 14:59 - 001826816 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libeay32.dll
2014-08-29 09:54 - 2014-08-29 09:54 - 001659904 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libeay32_101.dll
2019-01-30 12:14 - 2019-01-30 12:14 - 000944128 _____ (Free Software Foundation) C:\WINDOWS\system32\libiconv.dll
2019-12-07 11:52 - 2019-12-06 18:26 - 006361600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-12-07 11:52 - 2019-12-06 18:36 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-03-03 16:18 - 2016-03-03 16:18 - 000015872 _____ (Softland) C:\WINDOWS\system32\novami8.dll
2016-03-03 16:18 - 2016-03-03 16:18 - 000018944 _____ (Softland) C:\WINDOWS\system32\novamn8.dll
2014-03-07 11:25 - 2014-03-07 11:25 - 000999424 _____ (BayHubTech/O2Micro International) C:\WINDOWS\system32\O2Icon.dll
2021-04-17 02:05 - 2021-04-17 02:05 - 006472704 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0005.dll
2019-12-07 11:52 - 2019-12-06 18:36 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-11-26 16:11 - 2019-11-26 16:11 - 001158656 _____ ( Prvni certifikacni autorita, a.s.) C:\WINDOWS\system32\SecureStoreCore.dll
2019-11-26 16:11 - 2019-11-26 16:11 - 000482816 _____ C:\WINDOWS\system32\SecureStoreCspRes.dll
2019-11-26 16:11 - 2019-11-26 16:11 - 000159232 _____ C:\WINDOWS\system32\SecureStoreKSign.dll
2019-11-26 15:38 - 2019-11-26 15:38 - 000122368 _____ C:\WINDOWS\system32\SecureStoreKSignReg.exe
2019-11-26 16:11 - 2019-11-26 16:11 - 000187904 _____ C:\WINDOWS\system32\SecureStorePkcs11.dll
2015-10-30 09:18 - 2015-10-30 09:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2017-08-30 23:11 - 2016-07-11 10:01 - 000101984 _____ C:\WINDOWS\system32\setupempdrvx64.exe
2017-10-25 14:59 - 2017-10-25 14:59 - 000351744 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\ssleay32.dll
2015-04-17 23:08 - 2015-04-17 23:08 - 001376625 _____ C:\WINDOWS\unins000.exe
2003-07-28 10:07 - 2003-07-28 10:07 - 000005632 _____ (Identcode Ltd.) C:\WINDOWS\SysWOW64\ANGELVDD.DLL
2012-06-12 17:02 - 2012-06-12 17:02 - 000073728 _____ (Kros a. s.) C:\WINDOWS\SysWOW64\ASPE.dll
2011-12-21 13:42 - 2011-12-21 13:42 - 000024576 _____ (Kros, s. r. o., Žilina) C:\WINDOWS\SysWOW64\AST.dll
2017-08-30 23:11 - 2017-08-08 17:49 - 003037376 _____ C:\WINDOWS\SysWOW64\BootMan.exe
2015-08-22 21:36 - 2013-09-24 14:45 - 000204800 _____ (AVerMedia Technologies, Inc.) C:\WINDOWS\SysWOW64\CardID.dll
2000-08-04 12:34 - 2000-08-04 12:34 - 000507904 _____ (Software FX, Inc.) C:\WINDOWS\SysWOW64\Cfx4032.dll
2000-08-04 12:16 - 2000-08-04 12:16 - 000066048 _____ (Software FX, Inc.) C:\WINDOWS\SysWOW64\cfx4data.dll
2013-12-09 20:42 - 2013-08-05 05:50 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2015-10-30 09:19 - 2015-10-30 09:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
1998-06-18 00:00 - 1998-06-18 00:00 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DLGOBJS.DLL
2003-02-07 01:07 - 2003-02-07 01:07 - 000665600 _____ (Developer Express Inc.) C:\WINDOWS\SysWOW64\dXDBGrid.dll
2002-05-14 07:06 - 2002-05-14 07:06 - 000137216 _____ (Developer Express Inc.) C:\WINDOWS\SysWOW64\dXGridEditor.dll
2003-02-07 01:05 - 2003-02-07 01:05 - 000138752 _____ (Developer Express Inc.) C:\WINDOWS\SysWOW64\dXPSystm.dll
2002-05-15 04:58 - 2002-05-15 04:58 - 000618496 _____ C:\WINDOWS\SysWOW64\dXQGridEdit.dll
2002-05-14 07:08 - 2002-05-14 07:08 - 000559104 _____ (Developer Express Inc.) C:\WINDOWS\SysWOW64\dXQWzrd.dll
2003-02-07 01:07 - 2003-02-07 01:07 - 000167936 _____ (Developer Express Inc.) C:\WINDOWS\SysWOW64\dXSBar.dll
2003-02-07 01:02 - 2003-02-07 01:02 - 000424448 _____ ( Developer Express Inc.) C:\WINDOWS\SysWOW64\dXTList.dll
2005-09-09 00:16 - 2005-09-09 00:16 - 000294912 _____ (DynamSoft Corporation) C:\WINDOWS\SysWOW64\DynamicTwainCtrl.dll
2017-08-30 23:11 - 2014-11-18 14:46 - 000021088 _____ C:\WINDOWS\SysWOW64\EuEpmGdi.dll
2007-05-07 10:35 - 2007-05-07 10:35 - 001843200 _____ (Exontrol Inc.) C:\WINDOWS\SysWOW64\ExG2antt.dll
2007-05-07 10:35 - 2007-05-07 10:35 - 000192512 _____ (Exontrol Inc.) C:\WINDOWS\SysWOW64\ExPrint.dll
2011-12-13 22:47 - 2011-12-13 22:47 - 006219264 _____ (FarPoint Technologies, Inc.) C:\WINDOWS\SysWOW64\FarPoint.Spread8.Excel2007.dll
2011-12-13 22:48 - 2011-12-13 22:48 - 006219264 _____ (FarPoint Technologies, Inc.) C:\WINDOWS\SysWOW64\FarPoint.Spread8U.Excel2007.dll
2009-05-06 16:15 - 2009-05-06 16:15 - 000766025 _____ (FarPoint Technologies, Inc.) C:\WINDOWS\SysWOW64\fpimage.dll
2021-02-27 12:58 - 2018-08-01 07:18 - 006018560 _____ (FreeImage) C:\WINDOWS\SysWOW64\FreeImage.dll
2010-01-18 12:28 - 2010-01-18 12:28 - 000049152 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZidr12.dll
2010-01-18 12:28 - 2010-01-18 12:28 - 000033792 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZipr12.dll
2011-09-15 10:36 - 2011-09-15 10:36 - 015150592 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icudt46.dll
2011-09-15 10:36 - 2011-09-15 10:36 - 000946176 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icuuc46.dll
2013-12-09 20:58 - 2013-08-08 17:45 - 000354304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2017-04-06 17:42 - 2004-07-07 01:21 - 000077824 _____ (Newtone Corp.) C:\WINDOWS\SysWOW64\Ik5Com.dll
2017-04-06 17:42 - 2003-04-10 01:21 - 000331776 _____ (Newtone Corp.) C:\WINDOWS\SysWOW64\Ik5Effect.dll
2017-04-06 17:42 - 2002-06-19 01:21 - 000065536 _____ (Newtone Corp.) C:\WINDOWS\SysWOW64\Ik5File.dll
2017-04-06 17:42 - 2002-06-06 01:21 - 000094208 _____ (Newtone Corp.) C:\WINDOWS\SysWOW64\Ik5Print.dll
2017-04-06 17:42 - 2003-04-22 01:21 - 000073728 _____ (Newtone Corp.) C:\WINDOWS\SysWOW64\Ik5Scan.dll
2017-04-06 17:42 - 2003-04-22 01:21 - 000200704 _____ (Newtone Corp.) C:\WINDOWS\SysWOW64\Ik5Tiff.dll
2013-05-12 03:17 - 2013-05-12 03:17 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JETCOMP.exe
2018-06-15 09:51 - 2018-06-15 09:51 - 000018160 _____ (Kros a.s.) C:\WINDOWS\SysWOW64\Kros.DistributeFile.exe
2014-08-29 09:06 - 2014-08-29 09:06 - 001187328 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\libeay32_101.dll
2019-01-30 12:14 - 2019-01-30 12:14 - 000922624 _____ (Free Software Foundation) C:\WINDOWS\SysWOW64\libiconv.dll
2002-01-05 13:36 - 2002-01-05 13:36 - 000964608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2010-12-23 13:47 - 2010-12-23 13:47 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll
2004-02-23 21:42 - 2004-02-23 21:42 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msbind.dll
2000-06-28 11:47 - 2000-06-28 11:47 - 000024848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdart32.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexch35.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000252688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl35.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 001050896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet35.dll
2000-04-26 13:35 - 2000-04-26 13:35 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint35.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 001238288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjt4jlt.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000024848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter35.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000168720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus35.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000250128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspdox35.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x35.dll
2004-02-23 21:42 - 2004-02-23 21:42 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrdo20.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000415504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl35.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000044304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrpfs35.dll
2004-02-23 21:42 - 2004-02-23 21:42 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2000-04-04 11:52 - 2000-04-04 11:52 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstkprp.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000166672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext35.dll
2001-08-23 13:00 - 2001-08-23 13:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2002-01-05 13:37 - 2002-01-05 13:37 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2000-04-26 13:34 - 2000-04-26 13:34 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbse35.dll
2003-04-19 02:29 - 2003-04-19 02:29 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4r.dll
2019-12-07 11:52 - 2019-12-06 18:20 - 005496320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-08-22 21:36 - 2007-12-26 13:37 - 000045056 _____ (Open Source Software community project) C:\WINDOWS\SysWOW64\pthreadVC.dll
2000-08-02 14:44 - 2000-08-02 14:44 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdocurs.dll
2018-06-15 09:42 - 2018-06-15 09:42 - 000036088 _____ C:\WINDOWS\SysWOW64\RYDLL32.DLL
2019-11-26 16:11 - 2019-11-26 16:11 - 000978944 _____ ( Prvni certifikacni autorita, a.s.) C:\WINDOWS\SysWOW64\SecureStoreCore.dll
2019-11-26 16:11 - 2019-11-26 16:11 - 000482304 _____ C:\WINDOWS\SysWOW64\SecureStoreCspRes.dll
2019-11-26 16:11 - 2019-11-26 16:11 - 000132608 _____ C:\WINDOWS\SysWOW64\SecureStoreKSign.dll
2019-11-26 15:38 - 2019-11-26 15:38 - 000107008 _____ C:\WINDOWS\SysWOW64\SecureStoreKSignReg.exe
2019-11-26 16:11 - 2019-11-26 16:11 - 000172032 _____ C:\WINDOWS\SysWOW64\SecureStorePkcs11.dll
2017-08-30 23:11 - 2016-07-11 10:01 - 000088160 _____ C:\WINDOWS\SysWOW64\setupempdrv03.exe
2001-01-01 04:15 - 2001-01-01 04:15 - 000132880 _____ (Software FX, Inc.) C:\WINDOWS\SysWOW64\sfxbar.dll
2015-08-22 21:36 - 2013-10-30 13:57 - 000311296 _____ C:\WINDOWS\SysWOW64\sptlib01.dll
2015-08-22 21:36 - 2011-06-01 11:55 - 000421888 _____ C:\WINDOWS\SysWOW64\sptlib02.dll
2015-08-22 21:36 - 2013-10-30 13:58 - 000307200 _____ C:\WINDOWS\SysWOW64\sptlib03.dll
2015-08-22 21:36 - 2013-07-15 21:35 - 000294912 _____ C:\WINDOWS\SysWOW64\sptlib11.dll
2015-08-22 21:36 - 2013-05-29 18:15 - 000462848 _____ C:\WINDOWS\SysWOW64\sptlib12.dll
2015-08-22 21:36 - 2013-08-06 15:50 - 000659456 _____ C:\WINDOWS\SysWOW64\sptlib21.dll
2015-08-22 21:36 - 2011-07-28 15:42 - 000307200 _____ C:\WINDOWS\SysWOW64\sptlib22.dll
1998-06-18 00:00 - 1998-06-18 00:00 - 000089360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB5DB.DLL
1997-01-16 01:00 - 1997-01-16 01:00 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB5StKit.dll
2000-07-15 00:00 - 2000-07-15 00:00 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6STKIT.DLL
2000-04-26 13:34 - 2000-04-26 13:34 - 000368912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBAR332.DLL
2018-06-15 09:42 - 2018-06-15 09:42 - 002200064 _____ (KROS a.s.) C:\WINDOWS\SysWOW64\XlsImportLib.dll
2013-12-09 21:03 - 2013-08-15 08:34 - 000041984 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\USB3Ver.dll
2021-04-16 16:46 - 2021-04-16 16:46 - 000002470 _____ C:\WINDOWS\system32\Tasks\3DconnexionCreateProcess_3DxService.exe
2022-05-06 08:51 - 2022-05-09 08:04 - 002366976 _____ (Farbar) C:\Users\Y\Desktop\FRST64.exe
2022-05-06 08:49 - 2022-05-06 08:50 - 002366976 _____ (Farbar) C:\Users\Y\Downloads\FRST64.exe
2018-04-17 16:38 - 2018-04-17 16:38 - 000029696 _____ C:\Users\Y\AppData\Local\MSGBOX.EXE

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


==================== BCD ================================

Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=C:
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {e880eba5-9f13-11eb-b182-95ca1d850fae}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Windows Boot Loader
-------------------
identifier              {283161d3-0784-11e8-a6bf-8345af2a664a}
device                  ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{283161d4-0784-11e8-a6bf-8345af2a664a}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
osdevice                ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{283161d4-0784-11e8-a6bf-8345af2a664a}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {49732ac3-9ec0-11eb-a051-a927c672f85d}
device                  ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{49732ac4-9ec0-11eb-a051-a927c672f85d}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
locale                  en-US
inherit                 {bootloadersettings}
displaymessage          Recovery
osdevice                ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{49732ac4-9ec0-11eb-a051-a927c672f85d}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \WINDOWS\system32\winload.exe
description             Windows 10
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {49732ac3-9ec0-11eb-a051-a927c672f85d}
displaymessageoverride  Recovery
recoveryenabled         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \WINDOWS
resumeobject            {e880eba5-9f13-11eb-b182-95ca1d850fae}
nx                      OptIn
bootmenupolicy          Standard

Resume from Hibernate
---------------------
identifier              {e880eba5-9f13-11eb-b182-95ca1d850fae}
device                  partition=C:
path                    \WINDOWS\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
recoverysequence        {49732ac3-9ec0-11eb-a051-a927c672f85d}
recoveryenabled         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=C:
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS Settings
------------
identifier              {emssettings}
bootems                 No

Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Local

RAM Defects
-----------
identifier              {badmemory}

Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}

Device options
--------------
identifier              {49732ac4-9ec0-11eb-a051-a927c672f85d}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume3
ramdisksdipath          \Recovery\WindowsRE\boot.sdi


==================== End of FRST.txt ========================