Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-05-2023
Ran by Lenovo (administrator) on NOŤAS (LENOVO 20251) (06-05-2023 05:20:18)
Running from C:\Users\Lenovo\Desktop\FRST64.exe
Loaded Profiles: Lenovo
Platform: Microsoft Windows 10 Home Version 1903 18362.720 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(C:\Program Files (x86)\Download Studio\dstudio-gui.exe ->) () [File not signed] C:\Program Files (x86)\Download Studio\dstudio.exe
(C:\Program Files (x86)\Download Studio\dstudio-gui.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files (x86)\Download Studio\QtWebEngineProcess.exe <2>
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler64.exe
(C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe ->) (NETGEAR TAIWAN CO., LTD -> ) C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe <2>
(C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Users\Lenovo\AppData\Roaming\Oracle\bin\javaw.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Users\Lenovo\AppData\Roaming\Oracle\bin\java.exe <2>
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Codebox\BitMeter\BitMeter2.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Download Studio\dstudio-gui.exe
(explorer.exe ->) () [File not signed] C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\74.0.3.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <44>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Mega Limited -> Mega Limited) C:\Users\Lenovo\AppData\Local\MEGAsync\MEGAsync.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <4>
(explorer.exe ->) (NETGEAR TAIWAN CO., LTD -> NETGEAR Inc.) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
(explorer.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Users\Lenovo\AppData\Roaming\Oracle\bin\javaw.exe <2>
(explorer.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(explorer.exe ->) (Winstep Software Technologies) [File not signed] C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [File not signed] C:\Program Files\Free Desktop Clock\timeserv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (Ellora Assets Corp.) [File not signed] C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
(svchost.exe ->) (Adobe Inc. -> ) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (F851C579-7038-4FCF-A598-CE706BA3E512 -> ) C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2020.229.1.0_x64__8kea50m9krsh2\CalendarApp.Gui.Win10.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Skype Software Sarl -> ) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1092576 2023-04-24] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore: [DisableConfig] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe [53339416 2023-05-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe [53339416 2023-05-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [Nexus-Ultimate] => C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe [14558848 2011-10-11] (Winstep Software Technologies) [File not signed]
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [610904 2018-07-23] (NETGEAR TAIWAN CO., LTD -> NETGEAR Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [AtomicAlarmClock6] => C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [5321728 2016-08-16] () [File not signed]
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [193592 2023-04-28] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5779920 2023-04-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [bvCkqlDgKUt] => "C:\Users\Lenovo\AppData\Roaming\Oracle\bin\javaw.exe" -jar "C:\Users\Lenovo\PTCVWyAJvEp\XWHPSJfipJk.zbJXrg" (No File)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [UjmsTPqVeRE] => "C:\Users\Lenovo\AppData\Roaming\Oracle\bin\javaw.exe" -jar "C:\Users\Lenovo\pVZXuzLnHiO\JZIJkaGNhiN.PFQpDs" (No File)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [uTorrent] => C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe [2718880 2022-11-16] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123262376 2023-04-25] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe [53339416 2023-05-02] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40412984 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [Download Studio] => C:\Program Files (x86)\Download Studio\dstudio-gui.exe [2161152 2023-01-28] () [File not signed]
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [Opera Stable] => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe [2675608 2023-04-26] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [CCleanerBrowserAutoLaunch_0FCEDEFFEAA672B54CF436810685139B] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3370504 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2871776 2023-04-24] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Policies\system: [DISABLETASKMGR] 2
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\MountPoints2: {239a1c1c-a9a8-11ea-b96e-1c3e84e103cc} - "D:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\MountPoints2: {239a1c59-a9a8-11ea-b96e-1c3e84e103cc} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\MountPoints2: {286bab2a-9206-11ea-b900-1c3e84e103cc} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-760426430-1322398698-3842268529-1002\...\RunOnce: [ctfmon.exe] => ctfmon.exe /n (No File)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe [53339416 2023-05-02] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\HP1120PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1120PP.DLL [65024 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2021-12-24] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP LJ M1120 MFP LM: C:\Windows\system32\ZLM1120.dll [167424 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\112.0.21002.140\Installer\chrmstp.exe [2023-05-04] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\112.0.5615.138\Installer\chrmstp.exe [2023-04-21] (Google LLC -> Google LLC)
IFEO\acs.exe: [Debugger] svchost.exe
IFEO\AdAwareDesktop.exe: [Debugger] svchost.exe
IFEO\AdAwareService.exe: [Debugger] svchost.exe
IFEO\AdAwareTray.exe: [Debugger] svchost.exe
IFEO\AgentSvc.exe: [Debugger] svchost.exe
IFEO\AVK.exe: [Debugger] svchost.exe
IFEO\AVKProxy.exe: [Debugger] svchost.exe
IFEO\AVKService.exe: [Debugger] svchost.exe
IFEO\AVKTray.exe: [Debugger] svchost.exe
IFEO\AVKWCtlx64.exe: [Debugger] svchost.exe
IFEO\avpmapp.exe: [Debugger] svchost.exe
IFEO\av_task.exe: [Debugger] svchost.exe
IFEO\Bav.exe: [Debugger] svchost.exe
IFEO\bavhm.exe: [Debugger] svchost.exe
IFEO\BavSvc.exe: [Debugger] svchost.exe
IFEO\BavTray.exe: [Debugger] svchost.exe
IFEO\BavUpdater.exe: [Debugger] svchost.exe
IFEO\BavWebClient.exe: [Debugger] svchost.exe
IFEO\BDSSVC.EXE: [Debugger] svchost.exe
IFEO\BgScan.exe: [Debugger] svchost.exe
IFEO\BullGuard.exe: [Debugger] svchost.exe
IFEO\BullGuardBhvScanner.exe: [Debugger] svchost.exe
IFEO\BullGuardUpdate.exe: [Debugger] svchost.exe
IFEO\BullGuarScanner.exe: [Debugger] svchost.exe
IFEO\capinfos.exe: [Debugger] svchost.exe
IFEO\cavwp.exe: [Debugger] svchost.exe
IFEO\CertReg.exe: [Debugger] svchost.exe
IFEO\cis.exe: [Debugger] svchost.exe
IFEO\CisTray.exe: [Debugger] svchost.exe
IFEO\clamscan.exe: [Debugger] svchost.exe
IFEO\ClamTray.exe: [Debugger] svchost.exe
IFEO\ClamWin.exe: [Debugger] svchost.exe
IFEO\cmdagent.exe: [Debugger] svchost.exe
IFEO\ConfigSecurityPolicy.exe: [Debugger] svchost.exe
IFEO\CONSCTLX.EXE: [Debugger] svchost.exe
IFEO\coreFrameworkHost.exe: [Debugger] svchost.exe
IFEO\coreServiceShell.exe: [Debugger] svchost.exe
IFEO\dragon_updater.exe: [Debugger] svchost.exe
IFEO\dumpcap.exe: [Debugger] svchost.exe
IFEO\econceal.exe: [Debugger] svchost.exe
IFEO\econser.exe: [Debugger] svchost.exe
IFEO\editcap.exe: [Debugger] svchost.exe
IFEO\EMLPROXY.EXE: [Debugger] svchost.exe
IFEO\escanmon.exe: [Debugger] svchost.exe
IFEO\escanpro.exe: [Debugger] svchost.exe
IFEO\fcappdb.exe: [Debugger] svchost.exe
IFEO\FCDBlog.exe: [Debugger] svchost.exe
IFEO\FCHelper64.exe: [Debugger] svchost.exe
IFEO\FilMsg.exe: [Debugger] svchost.exe
IFEO\FilUp.exe: [Debugger] svchost.exe
IFEO\filwscc.exe: [Debugger] svchost.exe
IFEO\fmon.exe: [Debugger] svchost.exe
IFEO\FortiClient.exe: [Debugger] svchost.exe
IFEO\FortiClient_Diagnostic_Tool.exe: [Debugger] svchost.exe
IFEO\FortiESNAC.exe: [Debugger] svchost.exe
IFEO\FortiFW.exe: [Debugger] svchost.exe
IFEO\FortiProxy.exe: [Debugger] svchost.exe
IFEO\FortiSSLVPNdaemon.exe: [Debugger] svchost.exe
IFEO\FortiTray.exe: [Debugger] svchost.exe
IFEO\FPAVServer.exe: [Debugger] svchost.exe
IFEO\FProtTray.exe: [Debugger] svchost.exe
IFEO\FPWin.exe: [Debugger] svchost.exe
IFEO\freshclam.exe: [Debugger] svchost.exe
IFEO\freshclamwrap.exe: [Debugger] svchost.exe
IFEO\fsgk32.exe: [Debugger] svchost.exe
IFEO\FSHDLL64.exe: [Debugger] svchost.exe
IFEO\fshoster32.exe: [Debugger] svchost.exe
IFEO\FSM32.EXE: [Debugger] svchost.exe
IFEO\FSMA32.EXE: [Debugger] svchost.exe
IFEO\fsorsp.exe: [Debugger] svchost.exe
IFEO\fssm32.exe: [Debugger] svchost.exe
IFEO\GdBgInx64.exe: [Debugger] svchost.exe
IFEO\GDKBFltExe32.exe: [Debugger] svchost.exe
IFEO\GDSC.exe: [Debugger] svchost.exe
IFEO\GDScan.exe: [Debugger] svchost.exe
IFEO\guardxkickoff_x64.exe: [Debugger] svchost.exe
IFEO\guardxservice.exe: [Debugger] svchost.exe
IFEO\iptray.exe: [Debugger] svchost.exe
IFEO\K7AVScan.exe: [Debugger] svchost.exe
IFEO\K7CrvSvc.exe: [Debugger] svchost.exe
IFEO\K7EmlPxy.EXE: [Debugger] svchost.exe
IFEO\K7FWSrvc.exe: [Debugger] svchost.exe
IFEO\K7PSSrvc.exe: [Debugger] svchost.exe
IFEO\K7RTScan.exe: [Debugger] svchost.exe
IFEO\K7SysMon.Exe: [Debugger] svchost.exe
IFEO\K7TSecurity.exe: [Debugger] svchost.exe
IFEO\K7TSMain.exe: [Debugger] svchost.exe
IFEO\K7TSMngr.exe: [Debugger] svchost.exe
IFEO\LittleHook.exe: [Debugger] svchost.exe
IFEO\mbam.exe: [Debugger] svchost.exe
IFEO\mbamscheduler.exe: [Debugger] svchost.exe
IFEO\mbamservice.exe: [Debugger] svchost.exe
IFEO\MCS-Uninstall.exe: [Debugger] svchost.exe
IFEO\MCShieldCCC.exe: [Debugger] svchost.exe
IFEO\MCShieldDS.exe: [Debugger] svchost.exe
IFEO\MCShieldRTM.exe: [Debugger] svchost.exe
IFEO\mergecap.exe: [Debugger] svchost.exe
IFEO\MpCmdRun.exe: [Debugger] svchost.exe
IFEO\MpUXSrv.exe: [Debugger] svchost.exe
IFEO\MSASCui.exe: [Debugger] svchost.exe
IFEO\MsMpEng.exe: [Debugger] svchost.exe
IFEO\MWAGENT.EXE: [Debugger] svchost.exe
IFEO\MWASER.EXE: [Debugger] svchost.exe
IFEO\nanoav.exe: [Debugger] svchost.exe
IFEO\nanosvc.exe: [Debugger] svchost.exe
IFEO\nbrowser.exe: [Debugger] svchost.exe
IFEO\nfservice.exe: [Debugger] svchost.exe
IFEO\NisSrv.exe: [Debugger] svchost.exe
IFEO\njeeves2.exe: [Debugger] svchost.exe
IFEO\nnf.exe: [Debugger] svchost.exe
IFEO\nprosec.exe: [Debugger] svchost.exe
IFEO\NS.exe: [Debugger] svchost.exe
IFEO\nseupdatesvc.exe: [Debugger] svchost.exe
IFEO\nvcod.exe: [Debugger] svchost.exe
IFEO\nvcsvc.exe: [Debugger] svchost.exe
IFEO\nvoy.exe: [Debugger] svchost.exe
IFEO\nwscmon.exe: [Debugger] svchost.exe
IFEO\ONLINENT.EXE: [Debugger] svchost.exe
IFEO\OPSSVC.EXE: [Debugger] svchost.exe
IFEO\op_mon.exe: [Debugger] svchost.exe
IFEO\ProcessHacker.exe: [Debugger] svchost.exe
IFEO\procexp.exe: [Debugger] svchost.exe
IFEO\PSANHost.exe: [Debugger] svchost.exe
IFEO\PSUAMain.exe: [Debugger] svchost.exe
IFEO\PSUAService.exe: [Debugger] svchost.exe
IFEO\psview.exe: [Debugger] svchost.exe
IFEO\PtSessionAgent.exe: [Debugger] svchost.exe
IFEO\PtSvcHost.exe: [Debugger] svchost.exe
IFEO\PtWatchDog.exe: [Debugger] svchost.exe
IFEO\quamgr.exe: [Debugger] svchost.exe
IFEO\QUHLPSVC.EXE: [Debugger] svchost.exe
IFEO\rawshark.exe: [Debugger] svchost.exe
IFEO\SAPISSVC.EXE: [Debugger] svchost.exe
IFEO\SASCore64.exe: [Debugger] svchost.exe
IFEO\SASTask.exe: [Debugger] svchost.exe
IFEO\SBAMSvc.exe: [Debugger] svchost.exe
IFEO\SBAMTray.exe: [Debugger] svchost.exe
IFEO\SBPIMSvc.exe: [Debugger] svchost.exe
IFEO\SCANNER.EXE: [Debugger] svchost.exe
IFEO\SCANWSCS.EXE: [Debugger] svchost.exe
IFEO\schmgr.exe: [Debugger] svchost.exe
IFEO\scproxysrv.exe: [Debugger] svchost.exe
IFEO\ScSecSvc.exe: [Debugger] svchost.exe
IFEO\SDFSSvc.exe: [Debugger] svchost.exe
IFEO\SDScan.exe: [Debugger] svchost.exe
IFEO\SDTray.exe: [Debugger] svchost.exe
IFEO\SDWelcome.exe: [Debugger] svchost.exe
IFEO\SSUpdate64.exe: [Debugger] svchost.exe
IFEO\SUPERAntiSpyware.exe: [Debugger] svchost.exe
IFEO\SUPERDelete.exe: [Debugger] svchost.exe
IFEO\Taskmgr.exe: [Debugger] svchost.exe
IFEO\text2pcap.exe: [Debugger] svchost.exe
IFEO\TRAYICOS.EXE: [Debugger] svchost.exe
IFEO\TRAYSSER.EXE: [Debugger] svchost.exe
IFEO\trigger.exe: [Debugger] svchost.exe
IFEO\tshark.exe: [Debugger] svchost.exe
IFEO\twsscan.exe: [Debugger] svchost.exe
IFEO\twssrv.exe: [Debugger] svchost.exe
IFEO\uiSeAgnt.exe: [Debugger] svchost.exe
IFEO\uiUpdateTray.exe: [Debugger] svchost.exe
IFEO\uiWatchDog.exe: [Debugger] svchost.exe
IFEO\uiWinMgr.exe: [Debugger] svchost.exe
IFEO\UnThreat.exe: [Debugger] svchost.exe
IFEO\UserAccountControlSettings.exe: [Debugger] svchost.exe
IFEO\UserReg.exe: [Debugger] svchost.exe
IFEO\utsvc.exe: [Debugger] svchost.exe
IFEO\V3Main.exe: [Debugger] svchost.exe
IFEO\V3Medic.exe: [Debugger] svchost.exe
IFEO\V3Proxy.exe: [Debugger] svchost.exe
IFEO\V3SP.exe: [Debugger] svchost.exe
IFEO\V3Svc.exe: [Debugger] svchost.exe
IFEO\V3Up.exe: [Debugger] svchost.exe
IFEO\VIEWTCP.EXE: [Debugger] svchost.exe
IFEO\VIPREUI.exe: [Debugger] svchost.exe
IFEO\virusutilities.exe: [Debugger] svchost.exe
IFEO\WebCompanion.exe: [Debugger] svchost.exe
IFEO\wireshark.exe: [Debugger] svchost.exe
IFEO\Zanda.exe: [Debugger] svchost.exe
IFEO\Zlh.exe: [Debugger] svchost.exe
IFEO\zlhh.exe: [Debugger] svchost.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bitmeter2.lnk [2020-01-13]
ShortcutTarget: Bitmeter2.lnk -> C:\Program Files (x86)\Codebox\BitMeter\BitMeter2.exe () [File not signed]
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-02-29]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Lenovo\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\One Calendar.lnk [2020-03-13]
ShortcutTarget: One Calendar.lnk ->  (No File)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Vista.ini.lnk [2023-05-05]
ShortcutTarget: Vista.ini.lnk -> C:\Users\Lenovo\AppData\Vista.js () [File not signed]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0415A157-6EB8-47EB-8790-20074063D48B} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {0D7E29A1-0063-4992-86CA-E71E7637D9B4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F3C579B-13C4-455D-95DF-4CDFDEEF030E} - System32\Tasks\AdvancedWindowsManager #9 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {1694ECC5-1ADD-403E-BFA8-B4CA890C416D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {19507FD4-2017-469D-B214-86497FC0BB41} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-760426430-1322398698-3842268529-1001 => C:\Users\Lenovo\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe (No File)
Task: {1A983045-28E6-4302-B607-5EB850694847} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1B1B0A1C-9A1E-40A9-857B-2E4FAA1D7438} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {223E454A-5C6B-46F2-9064-2396DF6B3D96} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23FA26BB-C039-4F85-A5B3-F0136F87928D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3050377B-9BA6-4FC7-BCB6-BF6B27AECE0D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3E35EAB2-CF0B-4236-9A54-10220D004DDF} - System32\Tasks\AdvancedWindowsManager #6 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {400C6EAA-B4C1-4D9F-AABA-E756695D4E52} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A31FB5E-B48A-41C6-929A-F2B1EDB8C624} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {54A05535-5DEC-4F14-88EB-E5B70968659F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
Task: {5846F0E5-0884-470C-BD0B-F6BF74C3B9B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5C4D55AE-D06D-45BC-A96C-44BDE8187243} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5E844327-C783-43EB-9CB2-091B9D3A639B} - System32\Tasks\AdvancedUpdater => C:\Program Files (x86)\AW Manager\Windows Manager\Windows Updater.exe [1036152 2022-05-11] (Microleaves LTD -> AdvancedWindowsManager) <==== ATTENTION
Task: {69C561C9-D69B-46B0-ACFF-17FA175B2B81} - System32\Tasks\Mozilla\mkeeicjnx => C:\Users\Lenovo\AppData\Roaming\jjqjtpt\mchost.exe -> "C:\Users\Lenovo\AppData\Roaming\jjqjtpt\mchost.chm" <==== ATTENTION
Task: {77286421-D767-45C2-834D-5ADF02279299} - System32\Tasks\Mozilla\cjmcihk => C:\Users\Lenovo\AppData\Roaming\gttjuaqn\mchost.exe -> "C:\Users\Lenovo\AppData\Roaming\gttjuaqn\mchost.chm" <==== ATTENTION
Task: {77B62088-1023-46EB-90B4-AC1520CF61C2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "5316baa1-c3f7-45a7-b92c-39cfbbdb03fa" --version "6.11.10455" --silent
Task: {79EA3F8C-D16D-4FCB-8296-C3CD24B3540A} - System32\Tasks\AdvancedWindowsManager #4 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {92FCAD62-FE46-4590-9C3C-15E333CA9D34} - System32\Tasks\Opera scheduled Autoupdate 1674894786 => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe [2675608 2023-04-26] (Opera Norway AS -> Opera Software)
Task: {958F8275-A385-4AFF-BE5A-D5C545B92F65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
Task: {968D6549-655B-4BE0-B439-3CF4AF326CBB} - System32\Tasks\AdvancedWindowsManager #5 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {9E70FDF1-B47D-435C-8015-9C2CE0E3F32B} - System32\Tasks\AdvancedWindowsManager #2 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {A96BB396-F919-4416-84B5-782746DCBE22} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3370504 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {AE6B7D2D-37C5-4822-8175-9769E577EB54} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3370504 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {B2A727D4-1707-4D98-8480-5A24671E7E3F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {BD4395F8-86CE-425B-AD64-DCACBD9F5B81} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {BF4601C6-D83B-4923-BEED-08DAD2855F0F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D395BA1F-144C-438F-A6EC-30324D5472F8} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-05-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {D9AC0F1C-C24A-46B4-9CF4-2F2600CFC00A} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-760426430-1322398698-3842268529-1001 => C:\Users\Lenovo\AppData\Local\MEGAsync\MEGAupdater.exe [1776304 2023-04-19] (Mega Limited -> )
Task: {DABA94A5-324A-425B-A36C-29EA58158B78} - System32\Tasks\CCleanerSkipUAC - Lenovo => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {DE2AA4F3-D094-4B05-A85E-FE8DFD096B93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E3C08656-D592-4D82-AF80-233067262B3C} - System32\Tasks\NCH Software\PixillionDowngrade => C:\Program Files (x86)\NCH Software\Pixillion\pixillion.exe [2693816 2022-12-13] (NCH Software, Inc. -> NCH Software)
Task: {E4F1C79E-7D61-4C5C-817F-028C9B51D85C} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-05-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {E561139A-2CED-4F25-9C02-43F16393AE3B} - System32\Tasks\AdvancedWindowsManager #8 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {E9EAA716-1B75-4968-B734-18CD5B05E683} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {EB81E3CB-AB5A-4AFD-A222-C7C96480FA00} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe (No File)
Task: {F1458C65-6148-4A65-A652-C8433E5ABFF9} - System32\Tasks\AdvancedWindowsManager #1 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {F749E72A-A51D-4FDE-8719-EE3FF52B3E42} - System32\Tasks\AdvancedWindowsManager #3 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {F96E2E47-6748-498E-8199-322ECF562CF3} - System32\Tasks\AdvancedWindowsManager #7 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-19] => Proxy is enabled.
ProxyServer: [S-1-5-19] => 127.0.0.1:8080
ProxyEnable: [S-1-5-20] => Proxy is enabled.
ProxyServer: [S-1-5-20] => 127.0.0.1:8080
ProxyServer: [S-1-5-21-760426430-1322398698-3842268529-1001] => 127.0.0.1:8080
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{23c03b2f-2a1b-40ac-97ab-a0e1451634ce}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{b5f4ac6c-0ec6-49e1-92b2-0dc8b9aefa8d}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d22bb9ac-ab75-40ee-9000-0d9611b37417}: [DhcpNameServer] 192.168.0.1

Edge: 
=======
DownloadDir: C:\Users\Lenovo\Downloads

FireFox:
========
FF DefaultProfile: v8ckfixm.default
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v8ckfixm.default [2020-07-03]
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122 [2023-05-06]
FF Session Restore: Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122 -> is enabled.
FF Extension: (To Google Translate) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-22]
FF Extension: (Open bookmarks in new tab) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\Extensions\{02503e58-2fea-4dc4-893b-d35e36b92437}.xpi [2021-03-27]
FF Extension: (Open Link in New Tab) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\Extensions\{c064b4e8-a82e-415f-9d31-8516e613182e}.xpi [2021-03-27]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-02-04]
FF HKLM\...\Firefox\Extensions: [soda_pdf_desktop_11_conv_v.4@sodapdf.com] - C:\Program Files\Soda PDF Desktop 11\creator\plugins\FirefoxAddin\soda_pdf_desktop_11_conv_v.4@sodapdf.com.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKLM-x32\...\Firefox\Extensions: [soda_pdf_desktop_11_conv_v.4@sodapdf.com] - C:\Program Files\Soda PDF Desktop 11\creator\plugins\FirefoxAddin\soda_pdf_desktop_11_conv_v.4@sodapdf.com.xpi => not found
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-04-24] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2023-05-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2023-05-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-04-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-04-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-04-24] (Adobe Inc. -> Adobe Systems)

Chrome: 
=======
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2023-05-06]
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://best.aliexpress.com; hxxps://calendar.google.com; hxxps://cz.pinterest.com; hxxps://drive.google.com; hxxps://fastshare.cz; hxxps://trading.1market.eu; hxxps://www.aliexpress.com; hxxps://www.kupi.cz; hxxps://www.messenger.com; hxxps://www.namaximum.cz
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com","hxxps://www.google.com/","hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Click to Tab) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebicmkkcnhdiglneianohfjapmanjoek [2020-03-15]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-05-05]
CHR Extension: (Save as Shortcut) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flehofiklehmnnolpjcamplcnmhgcbkk [2021-08-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-03]
CHR Extension: (Inoreader - RSS, News and Social Reader) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhglljfmpijadbpkalkclnhlncncdono [2019-12-10]
CHR Extension: (Tab Activate) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlmadbnpnnolpaljadgakjilggigioaj [2022-05-21]
CHR Extension: (Netpanel) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbidbgoheiddfilfipcobicemncfogno [2023-04-04]
CHR Extension: (Save as PDF) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2022-10-28]
CHR Extension: (gLinks) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\leanhbopikglhiejeckmchmobphcpphm [2019-12-10]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-01-26]
CHR Extension: (Rozšíření Odběry RSS (od Googlu)) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2021-01-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Custom Cursor for Chrome™ - Vlastní kurzor) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogdlpmhglpejoiomcodnpjnfgcpmgale [2023-04-23]
CHR Extension: (RSS Feed Reader) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2022-04-01]
CHR HKU\S-1-5-21-760426430-1322398698-3842268529-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKU\S-1-5-21-760426430-1322398698-3842268529-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera: 
=======
OPR Profile: C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable [2023-05-06]
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={searchTerms}&sourceid=opera&ie={inputEncoding}&oe={outputEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-05-03]
OPR Extension: (Opera Wallet) - C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-05-06]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2023-05-03]
OPR Extension: (Opera AI Prompts) - C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-05-03]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [928224 2023-04-24] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AtomicAlarmClock; C:\Program Files\Free Desktop Clock\timeserv.exe [2007040 2013-04-24] () [File not signed]
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe [553600 2020-04-01] (NZXT, Inc. -> )
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-05-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\112.0.21002.140\elevation_service.exe [1805392 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-05-03] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063736 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-06-26] (Mixbyte Inc -> Freemake)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2018-03-02] (Ellora Assets Corp.) [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2020-01-15] (FUTUREMARK INC -> Futuremark)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-13] (Malwarebytes Inc -> Malwarebytes)
S3 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [233456 2017-07-04] (Netgear Incorporated -> NETGEAR)
S4 SpyEmrgHealth; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe [379192 2015-03-20] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S4 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3335008 2015-03-20] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
R2 TermService; C:\Windows\branding\mediasrv.png [56320 2014-11-11] (important) [File not signed] <==== ATTENTION (no ServiceDLL)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\NisSrv.exe [3294680 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate(CPC)\Transfer\DriverInstall.exe [112560 2020-03-25] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 wuauserv; C:\Windows\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 478A5347; C:\ProgramData\478A5347\B79C6115.dll [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
S4 Soda PDF Desktop 11 Creator; "C:\Program Files\Soda PDF Desktop 11\creator\common\creator-ws.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 googledrivefs31092; C:\Windows\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [19768 2015-03-09] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [391392 2020-03-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-20] (Microsoft Windows -> Microsoft Corporation)
S0 fltsrv; system32\DRIVERS\fltsrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-05-06 05:20 - 2023-05-06 05:21 - 000050234 _____ C:\Users\Lenovo\Desktop\FRST.txt
2023-05-06 05:15 - 2023-05-06 05:15 - 002382848 _____ (Farbar) C:\Users\Lenovo\Downloads\FRST64 (1).exe
2023-05-06 05:11 - 2023-05-06 05:11 - 002382848 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2023-05-05 22:43 - 2023-05-05 22:51 - 000825780 _____ C:\Users\Lenovo\Downloads\Nepotvrzeno 553436.crdownload
2023-05-03 13:02 - 2023-05-04 21:04 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-05-03 13:02 - 2023-05-04 21:04 - 000002352 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2023-05-03 13:02 - 2023-05-03 13:02 - 000003842 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2023-05-03 13:02 - 2023-05-03 13:02 - 000003258 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2023-05-03 13:02 - 2023-05-03 13:02 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CCleaner Browser
2023-05-03 13:02 - 2023-05-03 13:02 - 000000000 ____D C:\ProgramData\CCleaner Browser
2023-05-03 13:01 - 2023-05-04 21:04 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2023-05-03 13:01 - 2023-05-03 13:01 - 000003528 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineUA
2023-05-03 13:01 - 2023-05-03 13:01 - 000003404 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineCore
2023-04-30 20:25 - 2023-04-30 23:23 - 3265401752 _____ C:\Users\Lenovo\Downloads\3 Milénium (Dívka, která kopla do vosího hnízda) CZ (2009).mp4
2023-04-30 17:47 - 2023-04-30 20:23 - 2877764273 _____ C:\Users\Lenovo\Downloads\2 Milénium (Dívka, která si hrála s ohněm) CZ (2009).mp4
2023-04-30 16:17 - 2023-04-30 17:00 - 793815042 _____ C:\Users\Lenovo\Downloads\1 Muži, kteří nenávidí ženy CZ dabing (2011).avi
2023-04-28 03:10 - 2023-04-28 03:10 - 000000000 ___RD C:\Users\Lenovo\Documents\COMPUTER
2023-04-25 18:28 - 2023-05-05 13:56 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-04-24 21:26 - 2023-04-24 21:26 - 000001310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-05-06 05:20 - 2020-05-18 19:13 - 000000000 ____D C:\FRST
2023-05-06 05:20 - 2020-01-13 23:38 - 000000000 ____D C:\ProgramData\Bitmeter2
2023-05-06 05:20 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-06 05:14 - 2019-12-10 18:22 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-06 05:07 - 2020-01-04 04:37 - 000000000 ____D C:\Program Files\CCleaner
2023-05-06 05:04 - 2019-12-12 05:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-05-06 05:04 - 2019-11-27 19:44 - 000000000 ___SD C:\Users\Lenovo\AppData\Roaming\Microsoft\Credentials
2023-05-05 22:37 - 2021-07-11 18:15 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\WhatsApp
2023-05-05 22:00 - 2020-02-22 01:45 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-05-05 14:06 - 2022-10-31 14:17 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-05-05 14:05 - 2019-12-28 01:28 - 000000000 ____D C:\Users\Lenovo\AppData\LocalLow\Mozilla
2023-05-05 14:03 - 2019-03-19 13:55 - 000718198 _____ C:\Windows\system32\perfh005.dat
2023-05-05 14:03 - 2019-03-19 13:55 - 000145242 _____ C:\Windows\system32\perfc005.dat
2023-05-05 14:03 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2023-05-05 14:03 - 2016-04-27 08:54 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2023-05-05 13:58 - 2019-12-15 04:11 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\uTorrent
2023-05-05 13:58 - 2019-11-27 19:51 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-05 13:58 - 2019-11-27 19:47 - 000000000 ___RD C:\Users\Lenovo\OneDrive
2023-05-05 13:57 - 2020-11-03 11:32 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Skype for Desktop
2023-05-05 13:57 - 2020-05-16 14:29 - 000000781 _____ C:\Windows\SysWOW64\test.txt
2023-05-05 13:57 - 2020-02-29 13:36 - 000000000 ___RD C:\Users\Lenovo\Documents\MEGA
2023-05-05 13:57 - 2020-01-02 23:10 - 000000000 ____D C:\Users\Lenovo\AppData\Local\NETGEARGenie
2023-05-05 13:57 - 2019-12-10 19:45 - 000000000 ___RD C:\Users\Lenovo\Disk Google
2023-05-05 13:56 - 2022-11-09 18:36 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-05-05 13:56 - 2019-12-28 01:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-05-05 13:56 - 2019-12-12 05:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-05-05 13:56 - 2019-11-27 20:03 - 000000000 __SHD C:\Users\Lenovo\IntelGraphicsProfiles
2023-05-05 13:56 - 2019-03-19 06:37 - 001835008 _____ C:\Windows\system32\config\BBI
2023-05-03 12:54 - 2022-11-09 18:36 - 000003474 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-05-03 12:54 - 2020-01-04 04:37 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-05-03 12:42 - 2022-11-15 20:19 - 000000000 ___RD C:\Users\Lenovo\Creative Cloud Files
2023-05-03 11:28 - 2021-02-27 09:23 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-05-03 08:04 - 2022-12-17 17:08 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-760426430-1322398698-3842268529-1001
2023-05-03 08:04 - 2022-12-17 17:08 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-760426430-1322398698-3842268529-1001
2023-05-03 08:04 - 2022-12-17 17:08 - 000002380 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-03 08:03 - 2020-11-03 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-05-03 08:03 - 2019-12-15 04:12 - 000000000 ____D C:\Users\Lenovo\AppData\Local\BitTorrentHelper
2023-05-02 19:19 - 2021-09-08 17:14 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-05-02 19:19 - 2021-09-08 17:14 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk
2023-05-02 19:19 - 2021-09-08 17:14 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2023-05-02 19:19 - 2021-09-08 17:14 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk
2023-05-01 17:03 - 2021-04-10 01:37 - 000001018 _____ C:\Users\Public\Desktop\PotPlayer 64 bit.lnk
2023-05-01 03:09 - 2023-01-11 06:58 - 000000000 ____D C:\Users\Lenovo\Downloads\PaperScan
2023-04-30 19:42 - 2023-01-22 12:47 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\R.G. Catalyst
2023-04-30 12:28 - 2023-01-28 10:33 - 000004158 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1674894786
2023-04-30 12:28 - 2023-01-28 10:33 - 000001408 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2023-04-28 22:24 - 2020-02-20 23:53 - 000000000 ____D C:\Program Files\Adobe
2023-04-26 12:34 - 2022-01-31 13:55 - 000000000 ____D C:\Users\Lenovo\AppData\Local\WhatsApp
2023-04-25 06:09 - 2020-10-15 17:23 - 000003768 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-04-25 06:09 - 2020-10-15 17:23 - 000003644 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-04-24 21:26 - 2020-02-21 19:37 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-04-24 21:25 - 2020-02-20 23:54 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-04-24 16:25 - 2022-07-30 14:37 - 000001493 _____ C:\Users\Lenovo\Desktop\Léky - upraven 22.07.30.ods – zástupce.lnk
2023-04-24 08:15 - 2020-01-03 13:46 - 000000000 ____D C:\Users\Lenovo\AppData\Local\SquirrelTemp
2023-04-24 05:24 - 2021-07-11 18:15 - 000002216 _____ C:\Users\Lenovo\Desktop\WhatsApp.lnk
2023-04-23 09:12 - 2022-05-28 05:04 - 000000000 ____D C:\ProgramData\Piriform
2023-04-23 03:46 - 2019-12-11 21:53 - 000000000 ____D C:\Users\Lenovo\AppData\Local\ElevatedDiagnostics
2023-04-22 17:59 - 2022-11-15 20:28 - 000000000 ____D C:\Windows\system32\Tasks\NCH Software
2023-04-21 05:14 - 2019-12-10 18:23 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-04-19 12:43 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\LiveKernelReports
2023-04-19 12:39 - 2022-10-28 16:30 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-04-19 12:35 - 2020-02-29 13:31 - 000000000 ____D C:\Users\Lenovo\AppData\Local\MEGAsync
2023-04-11 15:28 - 2022-10-29 17:08 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2023-04-11 15:28 - 2022-10-29 17:08 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-04-11 15:26 - 2020-02-21 20:22 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-04-11 14:55 - 2023-01-07 20:16 - 000003716 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{5C0C20A9-9348-4269-BBEC-43F7F7B2331E}
2023-04-11 14:55 - 2023-01-07 20:16 - 000003592 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{2BA3E877-26FE-4A85-82FA-9F5007A3BFFD}
2023-04-08 17:15 - 2019-12-12 05:20 - 000000000 ____D C:\Users\Lenovo

==================== Files in the root of some directories ========

2019-12-11 08:41 - 2020-01-02 17:50 - 000000132 _____ () C:\Users\Lenovo\AppData\Roaming\Adobe PNG Format CS6 Prefs
2020-06-06 19:42 - 2020-06-06 19:42 - 000490835 _____ () C:\Users\Lenovo\AppData\Roaming\cbmtlrxtsp.txt
2020-04-01 08:32 - 2020-04-01 08:32 - 000004433 _____ () C:\Users\Lenovo\AppData\Roaming\for.js
2020-06-06 19:37 - 2020-06-06 19:37 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\gjgletdf.txt
2020-05-15 13:51 - 2020-05-15 13:51 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\jbghuhqrms.txt
2022-02-20 10:54 - 2022-01-26 14:04 - 000000701 _____ () C:\Users\Lenovo\AppData\Roaming\nefcodec.dll
2020-06-06 19:38 - 2020-06-06 19:38 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\njoyurb.txt
2020-05-15 14:00 - 2020-05-15 14:00 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\oicxmzkagb.txt
2020-06-06 19:43 - 2020-06-06 19:43 - 000490835 _____ () C:\Users\Lenovo\AppData\Roaming\prxuzodrbp.txt
2022-02-20 10:54 - 2022-02-20 10:54 - 000000019 _____ () C:\Users\Lenovo\AppData\Roaming\settingnef.ini
2020-06-06 19:37 - 2020-06-06 19:37 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\tgkobfjkjt.txt
2020-03-30 14:27 - 2020-03-30 14:27 - 139261152 _____ (Wondershare Software                                        ) C:\Users\Lenovo\AppData\Roaming\video-converter-ultimate_full495.exe
2020-05-08 00:48 - 2020-05-06 22:52 - 000177620 _____ () C:\Users\Lenovo\AppData\Roaming\windowsupdate
2023-02-21 15:24 - 2023-02-21 15:24 - 000009728 _____ () C:\Users\Lenovo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-02-21 19:38 - 2020-02-21 19:38 - 000000410 _____ () C:\Users\Lenovo\AppData\Local\oobelibMkey.log
2019-11-27 20:29 - 2019-11-27 20:29 - 000007605 _____ () C:\Users\Lenovo\AppData\Local\Resmon.ResmonCfg
2020-03-13 21:38 - 2020-03-13 21:38 - 000893608 _____ (AutoIt Team) C:\Users\Lenovo\AppData\Local\wintmp.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================