Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2022
Ran by Y (administrator) on Y-THINK (LENOVO 20BG001CMC) (09-05-2022 12:58:38)
Running from C:\Users\Y\Desktop
Loaded Profiles: Y & _ashbackup_
Platform: Microsoft Windows 10 Pro Version 21H2 19044.1645 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\acrotray.exe
(Blue Jeans Network, Inc. -> BlueJeans) C:\Users\Y\AppData\Local\BlueJeans\current\BlueJeans.Detector.exe <2>
(C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe ->) (LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\TC UP\TCUP.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\TC UP\TOTALCMD.EXE
(C:\Program Files (x86)\TC UP\TCUP64.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\TC UP\TOTALCMD64.EXE
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupService-ab.exe ->) (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\oxHelper.exe
(C:\Program Files\ESET\ESET Smart Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe ->) (Chaos Software Ltd.) [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\nview\nviewMain64.exe ->) (NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\nview\nviewMain.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> ) C:\Program Files\PowerToys\modules\AlwaysOnTop\PowerToys.AlwaysOnTop.exe
(C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\Awake\PowerToys.Awake.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <4>
(DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCC3C~1.INF\driver\shtctky.exe
(DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCC3C~1.INF\driver\tpnumlkd.exe
(DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCC3C~1.INF\driver\tposd.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(explorer.exe ->) (ABBYY Production LLC -> ABBYY Production LLC.) C:\Program Files (x86)\ABBYY FineReader 14\ScreenshotReader.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(explorer.exe ->) (File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.10.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(explorer.exe ->) (Finkit d.o.o. -> Finkit d.o.o.) C:\Program Files (x86)\ManicTime\ManicTime.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\57.0.5.0\crashpad_handler.exe
(explorer.exe ->) (Intel Corporation - Client Connectivity Division -> Intel Corporation) C:\Program Files\Intel\Thunderbolt Software\Thunderbolt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(explorer.exe ->) (Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(explorer.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
(explorer.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe
(explorer.exe ->) (TC UP Team) [File not signed] C:\Program Files (x86)\TC UP\TCUP64.exe
(explorer.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(explorer.exe ->) (X-Rite Incorporated -> ) C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\nview\nviewMain64.exe <2>
(NVIDIA Corporation -> Igor Pavlov) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\7z.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(services.exe ->) (3DCONNEXION SAM -> 3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore\Mgl3DCtlrRPCService.exe
(services.exe ->) (ABBYY Production LLC -> ABBYY Production LLC) C:\Program Files (x86)\Common Files\ABBYY\FineReader\14.00\Licensing\NetworkLicenseServer.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupService-ab.exe
(services.exe ->) (Autodesk, Inc -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(services.exe ->) (AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(services.exe ->) (AVerMedia) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(services.exe ->) (Chaos Software Ltd. -> ) [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe
(services.exe ->) (ChengDu AoMei Tech Co., Ltd -> AOMEI Tech Co., Ltd.) [File not signed] C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Smart Connect software -> ) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\tphkload.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe <2>
(services.exe ->) (O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(services.exe ->) (pdfforge GmbH -> Â© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(services.exe ->) (ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(services.exe ->) (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(services.exe ->) (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (Synology Inc. -> ) [File not signed] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(services.exe ->) (Synology Inc. -> ) [File not signed] C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
(services.exe ->) (X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe
(svchost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2203.4603.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1613_none_7df538047ca074bb\TiWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TC UP Team) [File not signed] C:\Program Files (x86)\TC UP\TCUP.exe
(valWbioSyncSvc.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [Thunderbolt] => C:\Program Files\Intel\Thunderbolt Software\Thunderbolt.exe [768456 2013-08-11] (Intel Corporation - Client Connectivity Division -> Intel Corporation)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184632 2013-11-13] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-01-28] (Open Source Developer, Robin Krom -> Greenshot)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [168064 2022-04-01] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Ashampoo Backup] => C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupClient-ab.exe [321944 2019-05-29] (Ashampoo GmbH & Co. KG -> )
HKLM\...\Run: [TC UP] => C:\Program Files (x86)\TC UP\TCUP64.exe [2120704 2021-12-29] (TC UP Team) [File not signed]
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1668000 2021-06-09] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339512 2021-08-04] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [3DxWare Service] => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore\3DxService.exe [2515096 2022-01-28] (3DCONNEXION SAM -> 3Dconnexion, INC)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11245392 2022-04-23] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Acrotray.exe [2190616 2022-04-10] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM-x32\...\Run: [ICAMaintenance_ICAPKIService_RegKeysRefresh] => C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
HKLM-x32\...\Run: [TC UP] => C:\Program Files (x86)\TC UP\TCUP.exe [1356288 2021-12-29] (TC UP Team) [File not signed]
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2022-03-28] (Intel Corporation -> Intel)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera developer\assistant\browser_assistant.exe [4110592 2022-04-20] (Opera Software AS -> Opera Software)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [ManicTimeC34F57B2DA6E6758] => C:\Program Files (x86)\ManicTime\ManicTime.exe [63152 2018-03-15] (Finkit d.o.o. -> Finkit d.o.o.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Google Update] => C:\Users\Y\AppData\Local\Google\Update\1.3.36.132\GoogleUpdateCore.exe [227512 2022-04-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35888256 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Bonus.SSR.FR14] => C:\Program Files (x86)\ABBYY FineReader 14\ScreenshotReader.exe [1082016 2019-02-13] (ABBYY Production LLC -> ABBYY Production LLC.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> )
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2635160 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [BlueJeans.Detector] => C:\Users\Y\AppData\Local\BlueJeans\BlueJeans.Detector.exe [16376 2021-07-27] (Blue Jeans Network, Inc. -> BlueJeans)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Viber] => C:\Users\Y\AppData\Local\Viber\Viber.exe [52361032 2022-04-13] (Viber Media S.à r.l. -> Viber Media S.Г  r.l.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [DeepL] => C:\Users\Y\AppData\Local\DeepL\app-3.2.3939\DeepL.exe [141872 2022-01-28] (DeepL GmbH -> DeepL GmbH)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10929320 2021-12-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-732140370-2414468103-320680840-1003\...\Run: [Zoner Photo Studio Autoupdate] => C:\Users\Y\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTRAY.EXE [814240 2022-01-13] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-732140370-2414468103-320680840-1010\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-732140370-2414468103-320680840-1010\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2635160 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\57.0.5.0\GoogleDriveFS.exe [53934992 2022-04-14] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HPCP1020PP: C:\Windows\System32\spool\prtprocs\x64\HPCP1020PP.DLL [73712 2016-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\SST2CPC: C:\Windows\System32\spool\prtprocs\x64\sst2cpc.dll [36864 2015-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65192 2021-12-23] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\bizhub C200 PCL Language Monitor: C:\WINDOWS\system32\KOAZHJ_L.dll [14848 2007-02-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\C287SeriesPCL Language Monitor: C:\WINDOWS\system32\KOAXYJ_L.DLL [25600 2017-02-16] (Microsoft Windows Hardware Compatibility Publisher -> KONICA MINOLTA, INC.)
HKLM\...\Print\Monitors\HP 7212 Status Monitor: C:\WINDOWS\system32\hpinksts7212LM.dll [336904 2015-09-27] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\HP CP1020 LM: C:\WINDOWS\system32\HPCP1020LM.DLL [137712 2016-01-06] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\novaPDF Port Monitor: C:\WINDOWS\system32\novamn8.dll [18944 2016-03-03] (Softland) [File not signed]
HKLM\...\Print\Monitors\PDF-XChange5-ABBYY-FR: C:\WINDOWS\system32\pxc50pmaf.dll [57536 2016-10-03] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [120072 2016-03-01] (pdfforge GmbH -> pdfforge GmbH)
HKLM\...\Print\Monitors\SST2C Langmon: C:\WINDOWS\system32\sst2cl6.dll [34304 2015-09-05] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8237E44A-0054-442C-B6B6-EA0509993955}] -> C:\Program Files\Google\Chrome Beta\Application\102.0.5005.40\Installer\chrmstp.exe [2022-05-04] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\101.0.4951.54\Installer\chrmstp.exe [2022-05-04] (Google LLC -> Google LLC)
HKLM\Software\...\Winlogon\GPExtensions: [{6cfb9c5c-138e-4bb3-8a3d-d5383e910e57}] -> %SystemRoot%\System32\RdpGroupPolicyExtension.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk [2015-08-22]
ShortcutTarget: AVer HID Receiver.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk [2015-08-22]
ShortcutTarget: AVerQuick.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2022-01-10]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Color Calibrator Tray.lnk [2017-07-21]
ShortcutTarget: Color Calibrator Tray.lnk -> C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe (X-Rite Incorporated -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FTP Utility.lnk [2014-07-16]
ShortcutTarget: FTP Utility.lnk -> C:\Program Files (x86)\KONICA MINOLTA\FTP Utility\KMFtp.exe (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Imaging Edge Desktop.lnk [2020-05-13]
ShortcutTarget: Imaging Edge Desktop.lnk -> C:\Program Files\Sony\Imaging Edge Desktop\ied.exe (Sony Imaging Products & Solutions Inc. -> Sony)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2017-08-30]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\Users\Y\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2021-04-16]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {015D39E7-A132-4E57-9CE9-F96E676C6DCA} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [543536 2016-10-13] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {0B73327F-FB9A-4D94-A9D6-82B93D5C6E01} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-732140370-2414468103-320680840-1003 => C:\Users\Y\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2022-04-29] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {0CAFEB50-F403-4F5D-BBE7-D49E7DAA16D9} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1897824 2022-03-09] (Lenovo -> )
Task: {0E1618B1-9D3C-473C-B053-7C3B4F77C204} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {16E30065-CCF4-466B-AB33-C5B16CD9D665} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e3e4dc5c-514e-4fe8-97fe-5992880611b8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {17FF4DC1-FF6A-4071-A0F3-47C328D24FC6} - System32\Tasks\G2MUpdateTask-S-1-5-21-732140370-2414468103-320680840-1003 => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupdate.exe [31176 2021-11-12] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {182B8422-E777-4793-9085-C3AC0C9185E1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1010 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200864 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {1EDB03E1-6C4C-4283-9898-2C4524FB01A7} - System32\Tasks\Opera scheduled assistant Autoupdate 1578865434 => C:\Program Files (x86)\Opera developer\launcher.exe [2127616 2022-04-25] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera developer\assistant" $(Arg0)
Task: {27F22586-54B1-4DDF-89F9-B28D0F0B1B18} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {299AB1FC-983F-4593-BC39-F2AA6E4B775E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {2A2C67C1-6409-48F8-9C41-33FE12D79F5A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {30C55321-1AAA-4343-8754-F01D37ACDFD3} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.)
Task: {32F266FC-CB17-41E5-82CD-16FBE49C34A6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3487088 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35A67B65-9E0E-4F5F-BA5F-8B24CBA18FE2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {38357F87-897D-4B9E-8815-7811F6E33094} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [114112 2021-12-03] (Lenovo -> Lenovo)
Task: {3B285FA4-CF0C-4649-994B-87B3E44B6E5C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-03-10] (Piriform Software Ltd -> Piriform)
Task: {40DFE8C2-02D2-4501-908D-0417402C6F5C} - System32\Tasks\Color Calibrator Tray => C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe [151520 2017-07-07] (X-Rite Incorporated -> )
Task: {46EFA361-06B2-49BE-B6F1-C316E3B214AB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A8BD44B-ED18-43B1-AD36-3D843E6F929A} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {4C410A10-612B-4E3B-87EC-BC2660BF5EB5} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200864 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {4CE7377A-1ADD-40A5-9D6F-F7834E77AD88} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4D0B45E7-ECB5-4A5D-831A-9670BFD21C2F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22866856 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D193AFD-BC7B-4B69-B8BD-C6ACCAC13D39} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [695664 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4D763FCB-6308-416B-A721-775BD9E58470} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4EF0B5C3-3132-48F6-B8DA-C05771969D9A} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1897824 2022-03-09] (Lenovo -> )
Task: {50F7081F-4624-4302-A126-70A0343AF62C} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {5457B180-D321-4B9C-96A6-AF59D6A167A7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111520 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {565F7B7C-BD1E-4E29-A9E8-368E56A45456} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2104736 2017-05-18] (NVIDIA Corporation -> )
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5E832B94-60BC-416F-8FDA-3354F0B12D58} - System32\Tasks\G2MUploadTask-S-1-5-21-732140370-2414468103-320680840-1003 => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupload.exe [31176 2021-11-12] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {6055EDA9-4C02-4084-97DE-A076F0F9311B} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {641C6109-0DCF-4685-811A-72E2820D23E8} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {67E7AC32-5CC6-42B3-B765-F9B3F8BA4E2F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200864 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {80915441-5809-4451-9462-A5440C60E3C0} - \GoogleUpdateTaskUserS-1-5-21-732140370-2414468103-320680840-1003Core1d57da09f926586 -> No File <==== ATTENTION
Task: {83ED3753-32B7-420B-AE9D-5BB0CBEA56D8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {88837CB3-6478-435E-BB86-97AB2EB0387D} - System32\Tasks\CLMLSvc => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [110144 2013-03-07] (CyberLink Corp. -> CyberLink)
Task: {8C58CB34-6F61-419A-9A91-42027E395407} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {8D122E9E-9D61-4B4B-B39E-CEF404F3C45C} - \GoogleUpdateTaskMachineUA1d57dca40770605 -> No File <==== ATTENTION
Task: {A0AFB472-F6E6-45D9-BE40-85B87B4AF4DD} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A24D8D3F-7ECB-445C-8146-E59B9A7F27E8} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-732140370-2414468103-320680840-1003_1 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [417280 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
Task: {A29C012A-9F53-47BC-A843-E4522027E60C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e09b669c-784c-448d-9aef-179b2cb5e51a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A59A6B5E-C7E2-4F35-88EA-AA11F9DF463D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A5F8955B-37CC-40A0-BE7A-D0BEF4AE32A5} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {A83B28B4-C2E9-4248-A754-7C6ECA7AD834} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [63936 2021-12-03] (Lenovo -> )
Task: {A9F036A1-D254-402A-B690-DD9B7D1F214C} - System32\Tasks\{F08B3EE1-5720-4780-A594-5EB8769CAD35} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.2.0.103/cs/privacy
Task: {AA87AE87-3523-43E6-ADBB-461AA8FD52C6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22866856 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B4E7A3A5-A3FA-40E0-B174-3F35DDD8D17A} - System32\Tasks\Color Calibrator Tray Start up => C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe [151520 2017-07-07] (X-Rite Incorporated -> )
Task: {BA9366B7-4F00-4BCD-A571-50455FE5455E} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {BAC77EF2-8C2F-4D39-9FBE-3F950B68BD80} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {BD43A73A-96DA-4E8D-8242-61B7745435F7} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BF54B13C-12DF-4F85-B369-4738D335B7E1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c0386f77-2ffd-48b1-9526-485f528f229b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {BF92C462-3A14-4B26-9018-0BEDB4100F6C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {C1E28F95-091B-44EA-BF51-843B99342CAB} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950128 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD253175-5A9D-4A78-9A45-1602A57030EA} - System32\Tasks\PowerToys\Autorun for Y => C:\Program Files\PowerToys\PowerToys.exe [1045424 2022-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {D08BC0FB-64C8-4D53-85AC-2419BCF2BA5B} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D3723FAA-4D15-4332-BA17-8CEF77F8A376} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D4CBC001-2080-4538-8F36-6FD59635CFA3} - System32\Tasks\CCleanerSkipUAC - Y => C:\Program Files\CCleaner\CCleaner.exe [30053504 2022-03-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D579D640-1B91-4268-8EC6-220FFAD2910D} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\ScheduleEventAction.exe [26384 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
Task: {D9C8DB16-28CA-4435-93D2-D96CE49DFA5F} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.)
Task: {DF6EDAF7-B32F-4DC1-A0C8-015D07759857} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {E0E2ECE6-473C-46A7-AF8D-A9F06B2BAA48} - System32\Tasks\Opera scheduled Autoupdate 1457969422 => C:\Program Files (x86)\Opera developer\launcher.exe [2127616 2022-04-25] (Opera Software AS -> Opera Software) <==== ATTENTION
Task: {E16D8C49-D82B-4258-87D4-EB7965003790} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {E3C5005F-5A00-4042-B604-C1183F4CCD62} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E8A4508C-ED5C-4257-8095-7D370FEC4FA9} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E9C73738-7AFA-4013-BA20-4452C78674A3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {EBA1B478-F4F8-40F8-8206-2B02771BCD1D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111520 2022-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC75034F-5E67-4A45-9F4B-6C1CC0B06394} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {F5D69631-E276-4918-A774-64E4348481E5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [994672 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F7A0B9C3-7BF3-4D73-946D-34732FA590CB} - System32\Tasks\Zoner.Updater.S-1-5-21-732140370-2414468103-320680840-1003 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [1603488 2021-12-20] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {F83995A2-4C05-42EA-B0CF-600DABD9AE01} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [100712 2013-06-29] (CyberLink Corp. -> CyberLink Corp.)
Task: {F9DD73D3-AC84-42D4-ABF4-C1FEDC6B3B26} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [772976 2018-09-12] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {FA285672-0EF7-4D9E-8699-29DCD8D27CFE} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {FD387140-6E48-497A-8A5D-055C15BBBA68} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [6656 2009-02-10] () [File not signed]
Task: {FDF3CCCD-1FA0-4478-9AD0-580E0E3FADDB} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-732140370-2414468103-320680840-1003.job => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-732140370-2414468103-320680840-1003.job => C:\Users\Y\AppData\Local\GoToMeeting\19932\g2mupload.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 169.254.0.1
Tcpip\..\Interfaces\{899c2d7b-1457-4bcd-b1b8-e262457d36b7}: [DhcpNameServer] 192.168.3.254
Tcpip\..\Interfaces\{a944ecab-ae64-4f32-a0a1-e47c63897ed1}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b362e47c-f029-4fbb-ba88-335e8a1d3900}: [DhcpNameServer] 169.254.0.1
Tcpip\..\Interfaces\{c1e3313b-8f3e-46e6-b64c-02ce473efc07}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{f2c73d21-a9fe-471c-b5fd-49ae0640ab9a}: [DhcpNameServer] 169.254.0.1

Edge: 
=======
DownloadDir: C:\Users\Y\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-732140370-2414468103-320680840-1003 -> 
Edge Session Restore: HKU\S-1-5-21-732140370-2414468103-320680840-1003 -> is enabled.
Edge DefaultProfile: Default
Edge Profile: C:\Users\Y\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-05]
Edge DownloadDir: Default -> C:\Users\Y\Downloads
Edge HomePage: Default -> edge://newtab/
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Session Restore: Default -> is enabled.
Edge Extension: (Komponenta I.CA PKI Service) - C:\Users\Y\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kchhpancoebhkdgdafnifpkcacaopncp [2021-08-24]

FireFox:
========
FF ProfilePath: C:\Users\Y\AppData\Roaming\TomTom\HOME\Profiles\5cpsiv61.default [2020-10-29]
FF Extension: (Emulator) - C:\Users\Y\AppData\Roaming\TomTom\HOME\Profiles\5cpsiv61.default\Extensions\Navcore.9.510.1234792@tomtom.com [2015-11-09] [Legacy] [not signed]
FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-03-01] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @graphisoft.com/GDL Web Plug-in -> C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll [2012-08-29] (Graphisoft SE) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] (Nokia -> )
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-07-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-07-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @parallelgraphics.com/Cortona -> C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npcortona.dll [2015-03-05] (Parallel Graphics LTD -> ParallelGraphics)
FF Plugin-x32: @parallelgraphics.com/RapidView -> C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona2D\npCortona2d.dll [2011-11-15] (Paragraphics) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Air\nppdf32.dll [2022-04-10] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH -> pdfforge GmbH)

Chrome: 
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default [2022-05-09]
CHR Extension: (Slides) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-23]
CHR Extension: (Docs) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-23]
CHR Extension: (Google Drive) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-31]
CHR Extension: (YouTube) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-23]
CHR Extension: (Google Sheets) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-06]
CHR Extension: (Google Docs Offline) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-05-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-23]
CHR Extension: (Gmail) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-23]
CHR Extension: (Chrome Media Router) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-23]
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-03-17]
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-03-17]
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Google Drive) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-08]
CHR Extension: (Adobe Acrobat) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-08]
CHR Extension: (Google Docs Offline) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-08]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-02-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-08]
CHR Extension: (Chrome Media Router) - C:\Users\Y\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR Profile: C:\Users\Y\AppData\Local\Google\Chrome\User Data\System Profile [2022-05-09]
CHR HKU\S-1-5-21-732140370-2414468103-320680840-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Y\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-06-09]
CHR HKU\S-1-5-21-732140370-2414468103-320680840-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aoclejgjkallknknpdaadeeecnajhmhl]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
StartMenuInternet: Google Chrome Beta - C:\Program Files\Google\Chrome Beta\Application\chrome.exe

Opera: 
=======
StartMenuInternet: (HKLM) Operadeveloper - C:\Program Files (x86)\Opera developer\Launcher.exe
StartMenuInternet: (HKLM) OperaStable - C:\Program Files (x86)\TC UP\PLUGINS\Media\Opera\launcher.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.14.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\14.00\Licensing\NetworkLicenseServer.exe [1021984 2018-09-13] (ABBYY Production LLC -> ABBYY Production LLC)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1231376 2016-03-23] (Autodesk, Inc -> Autodesk Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R2 ashbackup; c:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupService-ab.exe [34712 2019-05-29] (Ashampoo GmbH & Co. KG -> )
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [368640 2013-06-26] (AVerMedia) [File not signed]
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] () [File not signed]
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [29912 2015-09-15] (ChengDu AoMei Tech Co., Ltd -> AOMEI Tech Co., Ltd.) [File not signed]
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-08-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-04-06] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [11982784 2021-06-11] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [45408 2022-04-23] (Dropbox, Inc -> Dropbox, Inc.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [39352 2022-03-28] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [184248 2022-03-28] (Intel Corporation -> Intel)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40128 2017-06-19] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [3210720 2022-04-01] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-11-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncHelper.exe [3399584 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [614624 2014-12-10] (FUTUREMARK INC -> Futuremark)
S3 GoogleChromeBetaElevationService; C:\Program Files\Google\Chrome Beta\Application\102.0.5005.40\elevation_service.exe [1637776 2022-05-04] (Google LLC -> Google LLC)
S3 I.CA Maintenance Service; C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
S3 I.CA Maintenance Service2; C:\Program Files (x86)\I.CA\I.CA Maintenance2\ICAMaintenance.exe [299336 2021-02-08] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-16] (Intel(R) Smart Connect software -> )
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
S3 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.12.13.0\LenovoVantageService.exe [29968 2022-03-20] (Lenovo -> Lenovo Group Ltd.)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8347832 2022-04-29] (Malwarebytes Inc -> Malwarebytes)
R2 Mgl3DCtlrRPCService; C:\Program Files\3Dconnexion\3DxWare\3DxWinCore\Mgl3DCtlrRPCService.exe [172184 2022-01-28] (3DCONNEXION SAM -> 3Dconnexion)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [50600 2016-03-03] (Softland SRL -> Microsoft)
R2 NVWMI; C:\WINDOWS\system32\nvwmi64.exe [4738952 2019-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 O2FLASH; C:\WINDOWS\SysWOW64\drivers\o2flash.exe [82096 2015-05-21] (O2Micro -> BayHubTech/O2Micro International)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.077.0410.0007\OneDriveUpdaterService.exe [3847072 2022-04-29] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2157456 2017-06-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3127192 2017-06-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2417376 2016-01-15] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-01-15] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-01-15] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [959248 2015-10-05] (pdfforge GmbH -> Â© pdfforge GmbH.)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH -> pdfforge GmbH)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
R2 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [48752 2017-06-21] (ProtonVPN AG -> )
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [61232 2014-12-05] (LENOVO -> Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [317224 2014-12-05] (LENOVO -> Lenovo Group Limited)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254352 2022-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [365080 2019-07-03] (Synology Inc. -> ) [File not signed]
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Miroslav Topolar -> Mister Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13274600 2022-04-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\TPHKLOAD.exe [473760 2021-10-22] (Lenovo -> Lenovo Group Limited)
R2 TTHOMEService; C:\Program Files\TomTom HOME\TTHOMEService.exe [97792 2019-04-17] (TomTom) [File not signed]
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248856 2018-05-11] (Synology Inc. -> ) [File not signed]
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2020-11-04] (Chaos Software Ltd. -> ) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [203088 2011-10-11] (X-Rite Incorporated -> X-Rite Inc.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 3dxhid; C:\WINDOWS\system32\DRIVERS\3dxhid.sys [49624 2021-11-23] (3Dconnexion SAM -> 3Dconnexion SAM)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [30648 2015-02-26] (Aomei Technology Co., Limited -> ) [File not signed]
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [151480 2015-02-26] (Aomei Technology Co., Limited -> ) [File not signed]
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [17848 2015-02-26] (Aomei Technology Co., Limited -> ) [File not signed]
S3 athur; C:\WINDOWS\System32\drivers\athurx.sys [1847296 2015-08-25] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 BcmNfcIc; C:\WINDOWS\System32\drivers\BcmNfcIc.sys [140112 2016-03-18] (Broadcom Corporation -> Broadcom Corporation.)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dlusbaudio; C:\WINDOWS\system32\DRIVERS\dlusbaudio_x64.sys [229648 2015-10-16] (DISPLAYLINK -> DisplayLink Corp.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183888 2022-04-01] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107944 2022-04-01] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [226264 2022-04-01] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [44968 2022-04-01] (ESET, spol. s r.o. -> ESET)
S3 ElcMouLFlt; C:\WINDOWS\System32\drivers\ElcMouLFlt.sys [28648 2015-09-11] (Microsoft Windows Hardware Compatibility Publisher -> ELECOM)
S3 ElcMouUFlt; C:\WINDOWS\System32\drivers\ElcMouUFlt.sys [27624 2015-09-11] (Microsoft Windows Hardware Compatibility Publisher -> ELECOM)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70776 2022-04-01] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [111624 2022-04-01] (ESET, spol. s r.o. -> ESET)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [33448 2016-12-07] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [65192 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [52392 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22696 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [196776 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 GemCCID; C:\WINDOWS\System32\drivers\GemCCID.sys [130944 2014-11-10] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [60704 2020-05-14] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO_150; C:\WINDOWS\system32\drivers\HWiNFO64A_150.SYS [62240 2020-05-14] (Martin Malik - REALiX -> REALiX(tm))
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [66824 2017-06-15] (IObit Information Technology -> IObit)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R3 KMJHidMini; C:\WINDOWS\System32\drivers\3dxkmj.sys [18944 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> 3Dconnextion Inc.)
R3 KMJShim; C:\WINDOWS\System32\drivers\3dxshim.sys [7168 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> 3Dconnextion Inc.)
S3 LenovoBoost; C:\WINDOWS\system32\DRIVERS\vanboost.sys [45824 2022-01-18] (Lenovo -> Lenovo Group Ltd.)
S3 LnvHIDHW; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [42544 2017-07-23] (Lenovo -> Lenovo)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239560 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 memudrv; C:\Program Files\Microvirt\MEmuHyperv\MEmuDrv.sys [260368 2015-11-02] (上海迈微软件科技有限公司 -> Microvirt Corporation)
S3 nmwcd; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\WINDOWS\system32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 pccsmcfd; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.)
S3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2014-06-06] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 Rockey_USB; C:\WINDOWS\system32\DRIVERS\Rockey4USB.sys [23592 2014-06-06] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [974888 2021-11-24] (Realtek Semiconductor Corp. -> Realtek Corporation)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [757824 2016-12-20] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tvtvcamd; C:\WINDOWS\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (Lenovo (Japan) Ltd. -> ThinkVantage Communications Utility)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [206744 2013-06-21] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
S3 UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
R1 VD_FileDisk; C:\Windows\SysWow64\Drivers\VD_FileDisk.sys [24680 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
S3 vl810filter; C:\WINDOWS\system32\DRIVERS\vl810filter.sys [17008 2011-11-17] (VIA Technologies Inc. -> VIA Labs, Inc.)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [9728 2016-12-19] (SunnysideSoft -> )
R1 vsock; C:\WINDOWS\system32\DRIVERS\vsock.sys [91712 2016-09-30] (VMware, Inc. -> VMware, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [118200 2016-12-20] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R3 WPRO_41_2001; C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [34752 2022-05-09] (Intel(R) Smart Connect software -> )
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X]
S3 cpuz153; \??\C:\WINDOWS\temp\cpuz153\cpuz153_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-05-09 12:58 - 2022-05-09 12:59 - 000075070 _____ C:\Users\Y\Desktop\FRST.txt
2022-05-09 12:57 - 2022-05-09 12:57 - 000004032 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-732140370-2414468103-320680840-1003_1
2022-05-09 12:56 - 2022-05-09 12:56 - 000094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2022-05-09 12:56 - 2022-05-09 12:56 - 000000004 ____H C:\ProgramData\cm-lock
2022-05-09 12:40 - 2022-05-09 12:53 - 000043814 _____ C:\Users\Y\Desktop\Fixlog.txt
2022-05-09 09:51 - 2022-05-09 09:51 - 000407566 _____ C:\Users\Y\Downloads\Faktura_000216.pdf
2022-05-09 09:15 - 2022-05-09 09:15 - 000009807 _____ C:\Users\Y\Downloads\Samosběr jahod - www.skrblik.cz.kmz
2022-05-09 08:16 - 2022-05-09 08:18 - 000000000 ____D C:\Users\Y\Desktop\FRST
2022-05-09 08:04 - 2022-05-09 08:04 - 000000000 ____D C:\Users\Y\Desktop\FRST-OlderVersion
2022-05-06 17:25 - 2022-05-06 17:25 - 000001936 _____ C:\Users\Y\Desktop\AdwCleaner[C04].txt
2022-05-06 17:21 - 2022-05-06 17:18 - 008551608 _____ (Malwarebytes) C:\Users\Y\Desktop\adwcleaner.exe
2022-05-06 17:18 - 2022-05-06 17:18 - 008551608 _____ (Malwarebytes) C:\Users\Y\Downloads\adwcleaner.exe
2022-05-06 08:51 - 2022-05-09 08:04 - 002366976 _____ (Farbar) C:\Users\Y\Desktop\FRST64.exe
2022-05-06 08:49 - 2022-05-06 08:50 - 002366976 _____ (Farbar) C:\Users\Y\Downloads\FRST64.exe
2022-05-05 16:52 - 2022-05-05 16:52 - 000867401 _____ C:\Users\Y\Downloads\Vankyo-Performance-V630W.pdf
2022-05-05 00:39 - 2022-05-05 00:39 - 001389422 _____ C:\Users\Y\Downloads\Haibike xDuro Cross RC 2016 Bosch – E-BikeShop UK.pdf
2022-05-05 00:31 - 2022-05-05 01:50 - 000000000 ____D C:\Users\Y\Desktop\haibike XDURO Cross RC 2016
2022-05-04 08:23 - 2022-05-09 12:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2022-05-04 08:23 - 2022-05-04 08:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2022-05-04 08:23 - 2022-05-04 08:23 - 000000000 ____D C:\Program Files\PowerToys
2022-05-03 18:48 - 2022-05-06 09:07 - 000000000 ____D C:\Users\Y\Desktop\_oprava tablet
2022-05-03 16:35 - 2022-05-03 16:35 - 000126174 _____ C:\Users\Y\Desktop\ARCHICAD padá na laptopech s duální grafickou kartou... - Komunita Graphisoftu.pdf
2022-05-03 16:34 - 2022-05-03 16:34 - 000182742 _____ C:\Users\Y\Desktop\Nelze použít 3D zobrazení na Archicad – komunita Graphisoft.pdf
2022-05-03 16:32 - 2022-05-03 16:34 - 000180599 _____ C:\Users\Y\Desktop\Can't use 3D view on Archicad - Graphisoft Community.pdf
2022-05-03 16:31 - 2022-05-03 16:32 - 000379527 _____ C:\Users\Y\Desktop\Jak přizpůsobím profily a nastavení Optimus_ _ NVIDIA.pdf
2022-05-03 14:59 - 2022-05-03 15:27 - 000000000 ____D C:\Users\Y\Desktop\_____textura
2022-05-03 14:21 - 2022-05-05 16:29 - 000007102 _____ C:\WINDOWS\system32\PerfStringBackup.TMP
2022-05-03 14:14 - 2022-05-03 14:14 - 000848024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-05-02 16:09 - 2022-05-02 16:09 - 000695200 _____ C:\Users\Y\Desktop\(1612) Pinterest.html
2022-05-02 16:09 - 2022-05-02 16:09 - 000000000 ____D C:\Users\Y\Desktop\(1612) Pinterest_files
2022-05-02 16:01 - 2022-05-02 16:01 - 003409905 _____ C:\Users\Y\Downloads\Booklet-Covid-EN-2021-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 001395949 _____ C:\Users\Y\Downloads\multiclear-warranty-en-2021.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000895422 _____ C:\Users\Y\Downloads\Booklet-Soundwall-EN-2015-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000396127 _____ C:\Users\Y\Downloads\Datasheet-Multiclear-Box7W-2014-EN-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000077542 _____ C:\Users\Y\Downloads\ProductHandlingInfo-Multiclear-EN-2015-v1.pdf
2022-05-02 16:01 - 2022-05-02 16:01 - 000045290 _____ C:\Users\Y\Downloads\Datasheet-Multiclear-Hammer-Finish-2014-EN-v1.pdf
2022-05-02 14:28 - 2022-05-04 13:42 - 000373658 _____ C:\Users\Y\Downloads\2919371354.pdf
2022-05-02 09:25 - 2022-05-02 09:25 - 000224200 _____ C:\Users\Y\Desktop\OptimusRenderingPolicies.pdf
2022-05-02 08:59 - 2022-05-02 09:01 - 577895425 _____ C:\Users\Y\Downloads\Totalni raus.zip
2022-05-02 08:59 - 2022-05-02 08:59 - 000501797 _____ C:\Users\Y\Desktop\Audiokniha Totální rauš - Audioknihy ke stažení.pdf
2022-05-02 08:58 - 2022-05-02 08:58 - 000116951 _____ C:\Users\Y\Desktop\epic, Just Die Already.pdf
2022-05-02 08:57 - 2022-05-02 08:57 - 000116530 _____ C:\Users\Y\Desktop\epic, Paradigm.pdf
2022-04-29 21:14 - 2022-04-29 21:14 - 000508362 _____ C:\Users\Y\Downloads\2919696246.pdf
2022-04-29 21:09 - 2022-04-29 21:09 - 007444880 _____ (TechPowerUp (www.techpowerup.com)) C:\Users\Y\Downloads\GPU-Z.2.45.0.exe
2022-04-29 21:09 - 2022-04-29 21:09 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z.lnk
2022-04-29 21:09 - 2022-04-29 21:09 - 000001043 _____ C:\Users\Public\Desktop\TechPowerUp GPU-Z.lnk
2022-04-29 21:09 - 2022-04-29 21:09 - 000000000 ____D C:\Program Files (x86)\GPU-Z
2022-04-29 21:03 - 2022-04-29 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D
2022-04-29 21:03 - 2022-04-29 21:03 - 000000000 ____D C:\Program Files (x86)\Geeks3D
2022-04-29 20:25 - 2022-04-29 20:25 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-04-28 23:03 - 2022-04-28 23:03 - 000000000 ____D C:\Users\Y\AppData\Local\Tvsukernel
2022-04-28 15:12 - 2022-04-28 15:15 - 000016365 _____ C:\Users\Y\Desktop\archicad ceny do 2022-04-28.xlsx
2022-04-28 14:25 - 2022-05-01 21:42 - 000000000 ____D C:\Users\Y\Desktop\thinkpad
2022-04-28 09:14 - 2022-04-28 09:14 - 011087873 _____ C:\Users\Y\Desktop\Znovu jsem vložil W540. Je tišší a chladnější! _ thinkpad.pdf
2022-04-27 21:08 - 2022-04-27 23:06 - 000000000 ____D C:\Users\Y\AppData\Roaming\DropboxElectron
2022-04-27 21:08 - 2022-04-27 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-04-27 11:50 - 2022-04-27 11:50 - 000429710 _____ C:\Users\Y\Desktop\Jaroslava Ježka 770_16, Jeseník _ Reas.cz.pdf
2022-04-27 11:49 - 2022-04-27 11:50 - 000459785 _____ C:\Users\Y\Desktop\Krameriova 562_29, Jeseník _ Reas.cz.pdf
2022-04-27 11:49 - 2022-04-27 11:49 - 000445384 _____ C:\Users\Y\Desktop\Velké Kunětice 173, Velké Kunětice _ Reas.cz.pdf
2022-04-27 11:48 - 2022-04-27 11:48 - 000246420 _____ C:\Users\Y\Desktop\odhad nemovitostí.pdf
2022-04-26 12:16 - 2022-04-26 12:16 - 000072410 _____ C:\Users\Y\Downloads\Zaplacene_NP (MAX ROZSAH KE DNI 2022-04-26).pdf
2022-04-26 12:16 - 2022-04-26 12:16 - 000071696 _____ C:\Users\Y\Downloads\Zaplacene_NP_2021.pdf
2022-04-26 12:15 - 2022-04-26 12:15 - 000068660 _____ C:\Users\Y\Downloads\Zaplacene_NP (1).pdf
2022-04-26 12:14 - 2022-04-26 12:14 - 000067946 _____ C:\Users\Y\Downloads\Zaplacene_NP.pdf
2022-04-26 07:52 - 2022-04-26 07:52 - 002074326 _____ C:\Users\Y\Desktop\bim-urs-pruzkum-2022.pdf
2022-04-25 15:12 - 2022-04-25 14:33 - 015656281 _____ C:\Users\Y\Desktop\komplet.pdf
2022-04-23 21:08 - 2022-04-23 21:08 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-04-23 21:08 - 2022-04-23 21:08 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-04-23 21:08 - 2022-04-23 21:08 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-04-23 21:08 - 2022-04-23 21:08 - 000045408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-04-22 16:07 - 2022-04-22 16:07 - 000039193 _____ C:\Users\Y\Downloads\SUDYZP-E01_EN.pdf
2022-04-20 15:11 - 2022-04-20 15:15 - 000000000 ____D C:\Users\Y\Desktop\soutěž
2022-04-20 14:51 - 2022-04-20 14:51 - 000000708 _____ C:\Users\Y\Desktop\sketchup.txt
2022-04-20 14:38 - 2022-04-20 14:48 - 000002287 _____ C:\Users\Y\Desktop\archicad a grafika.txt
2022-04-20 11:27 - 2022-04-20 11:27 - 000000000 ____D C:\Users\Y\AppData\Local\Viber
2022-04-19 23:47 - 2022-04-07 10:29 - 000125169 _____ C:\Users\Y\Desktop\2022-04-06_KUSOVNIK.pdf
2022-04-19 16:56 - 2022-04-19 17:12 - 000001862 _____ C:\Users\Y\Desktop\SEZNAM PŘÍLOH.txt
2022-04-19 16:51 - 2022-04-19 16:51 - 000019201 _____ C:\Users\Y\Desktop\Kno_print_DCAD25, ABCDE_2021_vi.pdf
2022-04-19 01:22 - 2022-04-19 01:24 - 000000051 _____ C:\Users\Y\Desktop\OVLADAČ GRAFIKA.txt
2022-04-19 01:16 - 2022-04-19 01:16 - 000838352 _____ C:\Users\Y\Desktop\Doporučené grafické karty pro Archicad 25 – komunita Graphisoft.pdf
2022-04-19 01:13 - 2022-04-19 01:13 - 000453453 _____ C:\Users\Y\Desktop\Doporučený hardware – komunita Graphisoft.pdf
2022-04-14 16:19 - 2022-04-14 16:19 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-04-13 12:31 - 2022-04-13 12:31 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-04-13 12:31 - 2022-04-13 12:31 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-04-13 12:31 - 2022-04-13 12:31 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-04-13 12:30 - 2022-04-13 12:30 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-04-13 12:22 - 2022-04-13 12:22 - 000000000 ___HD C:\$WinREAgent
2022-04-13 09:42 - 2022-04-13 09:45 - 000172514 _____ C:\Users\Y\Desktop\Název místního zařízení se již používá Oprava - GeekingUp.pdf
2022-04-12 09:45 - 2022-04-12 09:45 - 000000000 ____D C:\Users\Y\Documents\UnrealTournament
2022-04-12 09:39 - 2022-04-12 09:39 - 000010516 _____ C:\Users\Y\Desktop\disk místo.xlsx
2022-04-12 09:21 - 2022-04-12 09:21 - 000000000 ____D C:\WINDOWS\Panther

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-01-01 01:00 - 2021-07-19 11:51 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-01 01:00 - 2021-04-16 16:46 - 000004140 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{33901C63-A052-46B6-A9B2-94458F7D3AA8}
2023-01-01 00:59 - 2021-09-21 15:44 - 000000000 ____D C:\ProgramData\Zoner
2022-05-09 12:59 - 2017-12-02 13:27 - 000000000 ____D C:\FRST
2022-05-09 12:59 - 2014-06-07 18:13 - 000000000 ____D C:\Program Files (x86)\Google
2022-05-09 12:58 - 2017-04-12 08:55 - 000000000 ____D C:\ProgramData\NVIDIA
2022-05-09 12:58 - 2015-12-25 13:51 - 000000000 ____D C:\Program Files\CCleaner
2022-05-09 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-05-09 12:57 - 2014-06-28 18:42 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-05-09 12:56 - 2021-11-26 13:03 - 000034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2022-05-09 12:56 - 2021-04-16 16:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-05-09 12:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-05-09 12:56 - 2018-04-17 16:40 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-05-09 12:56 - 2017-04-12 08:54 - 000000000 ____D C:\ProgramData\Synaptics
2022-05-09 12:56 - 2015-03-11 01:00 - 000000000 __SHD C:\Users\Y\IntelGraphicsProfiles
2022-05-09 12:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-05-09 12:55 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-05-09 12:42 - 2015-10-13 20:54 - 000000000 ____D C:\Users\Y\AppData\LocalLow\Temp
2022-05-09 12:40 - 2021-04-16 16:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2022-05-09 12:40 - 2019-12-07 11:51 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-05-09 12:40 - 2014-06-05 14:09 - 000000000 ____D C:\Users\Y\Graphisoft
2022-05-09 12:40 - 2014-06-05 14:09 - 000000000 ____D C:\Users\Y\AppData\Local\Graphisoft
2022-05-09 12:36 - 2014-06-05 13:25 - 000000000 ____D C:\Users\Y\AppData\Local\GHISLER
2022-05-09 12:35 - 2014-06-05 13:31 - 000000000 ____D C:\Users\Y\AppData\Roaming\XnView
2022-05-09 11:02 - 2021-04-16 16:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-05-09 09:38 - 2019-10-03 13:51 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-05-09 08:07 - 2020-03-03 08:45 - 000000000 ____D C:\WINDOWS\TempInst
2022-05-09 08:03 - 2020-06-08 21:27 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-05-09 08:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-05-09 08:02 - 2014-06-06 10:18 - 000000000 ____D C:\Users\Y\AppData\Local\CrashDumps
2022-05-06 17:08 - 2021-10-20 08:38 - 000025288 _____ C:\WINDOWS\storelibdebug.txt
2022-05-06 08:46 - 2017-09-11 23:20 - 000002577 _____ C:\Users\Y\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary.lnk
2022-05-05 17:26 - 2020-09-04 08:12 - 000000000 ____D C:\Users\Y\Documents\ViberDownloads
2022-05-05 17:26 - 2020-09-04 08:12 - 000000000 ____D C:\Users\Y\AppData\Roaming\ViberPC
2022-05-05 16:49 - 2021-04-02 16:43 - 000000000 ____D C:\Users\Y\AppData\LocalLow\IGDump
2022-05-05 16:29 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-05-05 16:29 - 2014-11-25 03:45 - 000007670 _____ C:\Users\Y\AppData\Local\resmon.resmoncfg
2022-05-05 13:26 - 2020-12-22 08:48 - 000057650 _____ C:\LidTrace.txt
2022-05-05 13:22 - 2021-04-16 16:33 - 000000000 ____D C:\Users\_ashbackup_
2022-05-04 23:05 - 2021-03-13 11:52 - 000002273 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome Beta.lnk
2022-05-04 13:19 - 2014-06-07 18:14 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-05-04 08:24 - 2016-07-31 14:26 - 000000000 ____D C:\Users\Y\AppData\Local\LenovoServiceBridge
2022-05-04 08:23 - 2013-12-09 20:50 - 000000000 ____D C:\ProgramData\Package Cache
2022-05-04 08:22 - 2018-06-14 08:55 - 000000000 ____D C:\ProgramData\Packages
2022-05-04 08:22 - 2018-02-08 12:21 - 000000000 ____D C:\Users\Y\AppData\Local\Packages
2022-05-03 20:41 - 2021-04-16 16:33 - 000000000 ____D C:\Users\Y
2022-05-03 20:39 - 2020-11-04 01:01 - 000000000 ____D C:\Users\Y\Documents\DesignCAD 3D MAX 2020 64-bit
2022-05-03 18:49 - 2019-05-14 17:25 - 000000000 ____D C:\Users\Y\Desktop\! L
2022-05-02 15:14 - 2014-08-15 19:23 - 000000000 ____D C:\Users\Y\Documents\Soubory aplikace Outlook
2022-05-02 12:15 - 2021-04-22 08:58 - 000000000 ____D C:\Users\Y\AppData\Local\Deployment
2022-05-02 10:29 - 2018-05-11 11:28 - 000000000 ____D C:\Users\Y\AppData\Local\D3DSCache
2022-05-02 08:17 - 2021-04-16 16:42 - 001868164 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-05-01 21:48 - 2014-07-28 21:07 - 000000000 ____D C:\Users\Y\AppData\Roaming\vlc
2022-04-30 18:47 - 2021-04-16 16:46 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-04-30 17:43 - 2021-09-05 17:28 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-04-29 21:56 - 2017-09-30 00:46 - 000000000 ____D C:\Program Files\Google
2022-04-29 21:25 - 2022-01-11 09:44 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1010
2022-04-29 21:25 - 2021-12-13 08:52 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-732140370-2414468103-320680840-1003
2022-04-29 21:04 - 2015-01-13 00:22 - 000000000 ___RD C:\Users\Y\Desktop\shortcut
2022-04-29 20:49 - 2016-04-08 10:59 - 000000000 ____D C:\Program Files\HWiNFO64
2022-04-29 20:45 - 2019-09-04 08:08 - 000000000 ____D C:\Users\Y\AppData\Local\Ashampoo Backup
2022-04-29 20:24 - 2020-03-16 17:21 - 000000000 ____D C:\Users\Y\Documents\MAXON
2022-04-29 20:23 - 2014-07-15 07:43 - 000000000 ____D C:\Users\Y\AppData\Roaming\MAXON
2022-04-29 20:09 - 2022-02-18 01:40 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-04-29 20:09 - 2021-11-08 23:09 - 000239560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-04-29 20:09 - 2021-01-07 13:08 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-04-29 20:09 - 2021-01-07 13:08 - 000002004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-04-29 20:09 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-04-29 20:09 - 2019-07-04 09:08 - 000103888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-04-29 20:08 - 2018-01-30 16:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-04-29 20:08 - 2018-01-30 16:39 - 000000000 ____D C:\Program Files\Malwarebytes
2022-04-28 22:07 - 2016-03-14 17:29 - 000000000 ____D C:\Program Files (x86)\Opera developer
2022-04-28 22:01 - 2021-04-26 07:38 - 000003440 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d732ce48f9d04
2022-04-28 22:01 - 2021-04-16 16:46 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-28 16:56 - 2021-04-12 13:13 - 000000000 ____D C:\Users\Y\AppData\Roaming\Videoder
2022-04-28 15:21 - 2021-04-16 16:46 - 000003980 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1457969422
2022-04-28 15:21 - 2016-03-14 17:30 - 000001240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera developer.lnk
2022-04-27 21:08 - 2016-09-05 18:09 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-04-27 21:08 - 2016-09-05 18:05 - 000000000 ____D C:\Users\Y\AppData\Local\Dropbox
2022-04-27 07:51 - 2021-10-28 05:12 - 000003548 _____ C:\WINDOWS\system32\Tasks\Color Calibrator Tray
2022-04-25 14:23 - 2016-11-16 15:05 - 000747363 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2022-04-21 13:18 - 2018-05-01 01:06 - 000000000 ____D C:\Users\Y\AppData\Local\Lenovo
2022-04-21 13:17 - 2021-04-16 16:46 - 000004224 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1578865434
2022-04-20 14:53 - 2018-02-08 12:56 - 000000000 ____D C:\Users\Y\AppData\Local\PlaceholderTileLogoFolder
2022-04-20 14:52 - 2021-06-25 10:50 - 000001374 _____ C:\Users\Y\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-04-20 14:52 - 2021-06-25 10:50 - 000000000 ____D C:\Users\Y\AppData\Local\PCHealthCheck
2022-04-19 09:37 - 2021-12-06 08:55 - 000000000 ____D C:\Users\Y\AppData\Roaming\TIDAL
2022-04-19 09:27 - 2019-01-18 13:16 - 000000000 ___RD C:\Users\Y\iCloudDrive
2022-04-19 00:03 - 2017-12-07 20:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-04-18 23:53 - 2013-12-09 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2022-04-18 17:52 - 2021-09-03 18:43 - 000002028 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-04-18 17:52 - 2021-09-03 18:43 - 000001870 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-04-18 17:52 - 2021-09-03 18:43 - 000001870 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-04-18 17:52 - 2021-09-03 18:43 - 000001858 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-04-15 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-04-15 03:54 - 2022-03-23 15:44 - 000000000 ____D C:\Users\Y\Desktop\!   harazín odložiště
2022-04-14 15:34 - 2021-04-16 16:46 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-04-14 15:34 - 2018-01-10 10:46 - 000002135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller 2017.lnk
2022-04-14 15:34 - 2018-01-10 10:46 - 000002124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat 2017.lnk
2022-04-13 15:56 - 2017-07-20 08:51 - 000000000 ____D C:\Users\Y\AppData\Local\Greenshot
2022-04-13 12:34 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-04-13 12:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-04-13 12:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-04-13 12:31 - 2012-10-01 21:26 - 000414970 __RSH C:\bootmgr
2022-04-13 12:21 - 2014-06-05 23:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-04-13 12:09 - 2020-05-20 09:23 - 000000000 ____D C:\Program Files\dotnet
2022-04-13 12:09 - 2014-06-05 23:29 - 143823848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-04-12 09:47 - 2015-07-03 16:49 - 000000000 ____D C:\Program Files\Epic Games
2022-04-12 09:45 - 2016-02-08 22:11 - 000000000 ____D C:\Users\Y\AppData\Local\UnrealEngine
2022-04-12 09:44 - 2018-06-11 09:11 - 000000000 ____D C:\Users\Y\Documents\Unreal Projects
2022-04-11 18:57 - 2021-03-31 09:48 - 000000000 ____D C:\Program Files\Stawebnice_3_0

==================== Files in the root of some directories ========

2022-03-04 13:06 - 2020-11-04 00:29 - 129609848 _____ () C:\Users\Y\designcad_3d_max_2020_x64.exe
2015-08-04 12:08 - 2006-03-30 16:57 - 000046592 _____ () C:\Program Files\04-10v1r0 - Záznam o provedení vstupní lékařské prohlídky.wpd
2015-08-04 12:08 - 2005-11-06 13:38 - 000023552 _____ () C:\Program Files\04-12v1r0 - Zaškolovací plán.wpd
2009-05-21 14:53 - 2009-05-21 14:53 - 000021494 _____ () C:\Program Files\0x0409.ini
2017-11-04 02:13 - 2017-11-04 02:13 - 120828987 _____ () C:\Program Files\Data1.cab
2017-11-04 02:13 - 2017-11-04 02:13 - 003237376 _____ () C:\Program Files\DesignCAD3DMax27.msi
2004-11-28 08:53 - 2004-11-28 08:53 - 001822520 _____ (Microsoft Corporation) C:\Program Files\instmsiw.exe
2020-08-03 17:47 - 2020-08-03 17:47 - 003163728 _____ () C:\Program Files\jcpicker.exe
2017-11-04 02:14 - 2017-11-04 02:14 - 001024976 _____ (IMSIDesign                                                   ) C:\Program Files\setup.exe
2017-11-04 02:16 - 2017-11-04 02:16 - 000002834 _____ () C:\Program Files\Setup.ini
2017-10-24 21:34 - 2017-10-24 21:34 - 000003916 _____ () C:\Program Files (x86)\node.xml
2017-10-05 15:01 - 2017-10-05 15:01 - 000000268 ___RH () C:\Users\Y\AppData\Roaming\Analog Mono
2017-10-05 15:01 - 2017-10-05 15:01 - 000000268 ___RH () C:\Users\Y\AppData\Roaming\Analog Swirl
2021-02-27 12:58 - 2021-11-05 00:13 - 000000166 _____ () C:\Users\Y\AppData\Roaming\PLGComp.ini
2017-05-07 00:16 - 2020-01-16 19:36 - 000000600 _____ () C:\Users\Y\AppData\Roaming\winscp.rnd
2020-03-29 23:35 - 2020-03-29 23:39 - 000003075 _____ () C:\Users\Y\AppData\Local\krita.log
2020-03-29 23:39 - 2020-03-29 23:39 - 000000039 _____ () C:\Users\Y\AppData\Local\kritadisplayrc
2020-03-29 23:36 - 2020-03-29 23:39 - 000015820 _____ () C:\Users\Y\AppData\Local\kritarc
2022-05-02 08:05 - 2022-05-02 23:46 - 000000595 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-02.log
2022-05-03 14:15 - 2022-05-03 14:15 - 000000119 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-03.log
2022-05-04 08:20 - 2022-05-04 23:04 - 000000238 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-04.log
2022-05-05 08:45 - 2022-05-05 16:23 - 000000357 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-05.log
2022-05-06 08:40 - 2022-05-06 15:42 - 000000238 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-06.log
2022-05-09 08:03 - 2022-05-09 12:57 - 000000238 _____ () C:\Users\Y\AppData\Local\ManicTime_2022-05-09.log
2018-04-17 16:38 - 2018-04-17 16:38 - 000029696 _____ () C:\Users\Y\AppData\Local\MSGBOX.EXE
2018-10-01 00:41 - 2018-10-01 00:41 - 000000000 _____ () C:\Users\Y\AppData\Local\oobelibMkey.log
2017-05-06 21:25 - 2017-05-17 21:00 - 000000600 _____ () C:\Users\Y\AppData\Local\PUTTY.RND
2021-10-27 16:07 - 2021-10-27 16:07 - 000003186 _____ () C:\Users\Y\AppData\Local\recently-used.xbel
2014-11-25 03:45 - 2022-05-05 16:29 - 000007670 _____ () C:\Users\Y\AppData\Local\resmon.resmoncfg
2015-08-28 00:45 - 2018-04-20 09:05 - 000266630 _____ () C:\Users\Y\AppData\Local\Snip.txt
2014-06-05 12:13 - 2014-06-05 12:13 - 000034171 _____ () C:\Users\Y\AppData\Local\WiDiSetupLog.20140605.121307.wdl

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================