Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
Ran by Lenovo (administrator) on DESKTOP-TACRTIO (LENOVO 80NV) (26-08-2024 22:40:32)
Running from C:\Users\Lenovo\Desktop\FRST64.exe
Loaded Profiles: Lenovo & niroco & lkClassAds & niLXIDiscovery
Platform: Microsoft Windows 10 Home Version 22H2 19045.2728 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe <6>
(C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\erl10.6\erts-10.6\bin\erl.exe ->) () [File not signed] C:\Program Files\erl10.6\erts-10.6\bin\epmd.exe
(C:\Program Files\erl10.6\erts-10.6\bin\erl.exe ->) () [File not signed] C:\Program Files\erl10.6\erts-10.6\bin\inet_gethost.exe
(C:\Program Files\erl10.6\erts-10.6\bin\erl.exe ->) () [File not signed] C:\Program Files\erl10.6\lib\os_mon-2.5.1\priv\bin\win32sysinfo.exe
(C:\Program Files\erl10.6\erts-10.6\bin\erlsrv.exe ->) () [File not signed] C:\Program Files\erl10.6\erts-10.6\bin\erl.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\WD Desktop App\kdd.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe
(C:\Windows\SysWOW64\cmd.exe ->) (Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(cmd.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastNM.exe
(cmd.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnNM.exe
(Discord Inc. -> Discord Inc.) C:\Users\Lenovo\AppData\Local\Discord\app-1.0.9159\Discord.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <18>
(explorer.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Grammarly, Inc. -> Grammarly) C:\Users\Lenovo\AppData\Local\Grammarly\DesktopIntegrations\Grammarly.Desktop.exe
(explorer.exe ->) (James Kring, Inc. -> JKI) C:\Program Files (x86)\JKI\VI Package Manager\support\VIPM Service.exe
(explorer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) () [File not signed] C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) () [File not signed] C:\Program Files\erl10.6\erts-10.6\bin\erlsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Kepware Technologies -> Kepware Technologies) C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\keysvc.exe
(services.exe ->) (Kepware Technologies -> Kepware Technologies) C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_eventlog.exe
(services.exe ->) (Kepware Technologies -> Kepware Technologies) C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_runtime.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.CITADEL\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\PXI\nipxicms.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nicitdl5.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe
(services.exe ->) (National Instruments Corporation -> National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_ce837e92efe9cbc4\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 8\activation-service.exe
(services.exe ->) (Siber Systems -> ) C:\Program Files\Siber Systems\GoodSync\gs-server.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(svchost.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16482040 2016-03-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2016-03-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2016-03-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2016-03-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427304 2024-08-26] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [NI Device Monitor] => C:\Program Files (x86)\National Instruments\NI Device Monitor\DeviceMonitor.exe [150016 2019-03-20] (National Instruments) [File not signed]
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81379600 2022-07-30] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1493259530-17723175-2292344264-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1493259530-17723175-2292344264-1001\...\Run: [Discord] => C:\Users\Lenovo\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1493259530-17723175-2292344264-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [819760 2019-03-05] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-21-1493259530-17723175-2292344264-1001\...\Run: [Steam] => D:\Games\Steam\steam.exe [4361576 2023-03-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1493259530-17723175-2292344264-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5553104 2023-02-14] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1493259530-17723175-2292344264-1001\...\Run: [Grammarly] => C:\Users\Lenovo\AppData\Local\Grammarly\DesktopIntegrations\Grammarly.Desktop.exe [233568 2024-08-24] (Grammarly, Inc. -> Grammarly)
HKLM\...\Windows x64\Print Processors\hpcpp108: C:\Windows\System32\spool\prtprocs\x64\hpcpp108.DLL [331776 2011-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PDF Architect 8 Monitor: C:\Windows\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.11.0.7.dll [960120 2022-03-24] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116736 2020-12-24] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\111.0.5563.147\Installer\chrmstp.exe [2023-04-12] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\111.0.20716.147\Installer\chrmstp.exe [2023-04-12] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2024-08-26]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2021-03-05]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VIPM Service.lnk [2021-03-05]
ShortcutTarget: VIPM Service.lnk -> C:\Program Files (x86)\JKI\VI Package Manager\support\VIPM Service.exe (James Kring, Inc. -> JKI)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {64837761-2404-4CF7-97A8-B86041C1E503} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {60FE284A-32E9-4A1F-AB73-0D591717FFB2} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364272 2023-03-28] (Avast Software s.r.o. -> AVAST Software)
Task: {F8F61ED6-2C7D-428B-B8B1-8DF3287148E9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364272 2023-03-28] (Avast Software s.r.o. -> AVAST Software)
Task: {FC5B18E4-D738-4868-A151-1724B34AADAC} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5173032 2024-08-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {6F1E5D94-A7B6-4A39-8F27-A899D53E39AA} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4964248 2024-08-26] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {FC4C2486-69AB-4DDE-A26C-1A03276D670F} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1440664 2024-08-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {C9C116C9-92AF-4A72-A547-CAE3EB17E237} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [8002968 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {6F23BDC6-6CE1-411D-94FC-B5DBBC36FE7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2024-08-26] (Avast Software s.r.o. -> Avast Software)
Task: {DBFA1FB0-F1D2-4FCF-ACB3-4266E3EF9406} - System32\Tasks\AvastBrowserProtectS-1-5-21-1493259530-17723175-2292344264-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1750664 2022-08-25] (Avast Software s.r.o. -> Avast Software)
Task: {C7EA0EE7-AD60-4355-9105-69F4E5DF84B8} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-02-14] (Avast Software s.r.o. -> AVAST Software)
Task: {AD44496E-D093-42A7-88D5-384ECA5329CC} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-02-14] (Avast Software s.r.o. -> AVAST Software)
Task: {BC0E84BF-C8A5-44E7-8689-C6C46171B6F4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-02-08] (Piriform Software Ltd -> Piriform)
Task: {02D60758-F2DA-47AF-A87A-C752B250CCD7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "fbc99fb0-74ad-4375-a2a2-da7d3e591280" --version "6.10.10347" --silent
Task: {7E7CFA24-125F-4972-B0C4-70280D0B4967} - System32\Tasks\CCleanerSkipUAC - Lenovo => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4F2A8A09-71DD-4E86-9B92-A6925F01E627} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem129.0.6651.0{05D52D9B-D396-46E8-9411-1277F46B42F6} => C:\Program Files (x86)\Google\GoogleUpdater\129.0.6651.0\updater.exe [4906600 2024-08-11] (Google LLC -> Google LLC)
Task: {C08FD317-EBB5-4633-8D10-BF5BF3282C28} - System32\Tasks\JKIUpdateTask => C:\Program Files (x86)\JKI\VI Package Manager\support\JKIUpdate.exe [1488632 2020-07-27] (James Kring, Inc. -> JKI) -> C:\Program Files (x86)\JKI\VI Package Manager\\/silent
Task: {ABD92110-AC58-4A18-8A13-7EA4B444A4EA} - System32\Tasks\MATLAB R2020b Startup Accelerator => D:\MATLAB\R2020b\bin\win64\MATLABStartupAccelerator.exe [53760 2020-07-29] () [File not signed]
Task: {819126A4-6D8F-49D9-A68E-48379BDC54C3} - System32\Tasks\MATLAB R2021a Startup Accelerator => D:\MATLAB\R2021a\bin\win64\MATLABStartupAccelerator.exe [51200 2020-11-15] () [File not signed]
Task: {C380B705-CC00-4B90-BFFC-CB31F6796B86} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23709624 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {463AF7F6-3628-462C-8255-BC93FD97D669} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23709624 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {D662C09C-FA00-4EB5-8CCA-65FB09729AF3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {28FD06FB-105F-4EF5-89C9-D8D7176081AD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FCC342B-EE15-4A89-8747-6477A1D65976} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [64408 2023-02-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {F25C7C2F-68BB-4F4D-A140-E0201802320C} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [3854464 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {233ED872-A878-4A71-BC1C-D7F62DCAAD1B} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16\OLicenseHeartbeat.exe [933352 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {22CCDBFD-3472-4C7F-A8ED-B7405D7D5F5D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8519680 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {F4D48DDF-2242-40C3-A902-C92D9A2332AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8519680 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {A91002E0-1C47-42D8-958D-067D55C21D2C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {4EA82BD5-C414-4837-BED9-F9FB423E2926} - System32\Tasks\NI OPC Servers 2016 => C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_admin.exe [300656 2019-03-17] (Kepware Technologies -> Kepware Technologies)
Task: {65DF07DC-5342-4354-9B39-58E96E0B2B84} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {88C24BD6-379A-448F-9844-B14BB5051E41} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [875400 2019-03-05] (National Instruments Corporation -> National Instruments Corporation)
Task: {6098ACD9-BAB2-48E8-9029-409DC7BAC652} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [875400 2019-03-05] (National Instruments Corporation -> National Instruments Corporation)
Task: {2053D7DD-6FE4-4236-B416-D5162F4760EB} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {99DBC152-0AA4-4F1C-A620-160601096DF0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation)
Task: {76B82876-CBC0-4056-85A7-4FC26595DFD6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {DD9938CC-CAAA-412A-93F4-F41926839CDF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C72C35D3-E8D9-4A9B-A2D0-A662B9621376} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E6FE1820-BC81-4D82-9044-EAA8537DBF41} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8F3DAE69-EB16-4CFE-8B28-A7BA40C1726C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F233E054-299C-4699-8D08-3F973D0F5562} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {73E3E2F8-34BB-4D13-8606-9D6F1AFCEA41} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A651499B-D990-41A8-9EA1-6222FB2D2E8F} - System32\Tasks\pdfforge GmbH\PDF Architect 8\App Notification => C:\Program Files\PDF Architect 8\architect-launcher.exe [2311216 2022-02-21] (pdfforge GmbH -> pdfforge GmbH)
Task: {9621D0FB-7DB5-4BD6-9FC9-F7FAB567D776} - System32\Tasks\pdfforge GmbH\PDF Architect 8\App Notification Logon => C:\Program Files\PDF Architect 8\architect-launcher.exe [2311216 2022-02-21] (pdfforge GmbH -> pdfforge GmbH)
Task: {9D405A31-735B-44BD-A8F2-6BEF435D566A} - System32\Tasks\pdfforge GmbH\PDF Architect 8\Update => C:\Program Files\PDF Architect 8\architect.exe [3497520 2022-02-21] (pdfforge GmbH -> pdfforge GmbH)
Task: {D7C6A2D0-22E3-4223-94D6-C3657915F4F3} - System32\Tasks\pdfforge GmbH\Update => C:\Program Files\PDF Architect 8\architect.exe [3497520 2022-02-21] (pdfforge GmbH -> pdfforge GmbH)
Task: {1FF5F45B-8157-4E30-8188-012313984FAB} - System32\Tasks\WD Device Agent Task lenovo => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [723728 2022-07-30] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {0B317C4B-0A92-4B8A-9967-683DA48923B3} - System32\Tasks\WD Discovery Service Task lenovo => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [78608 2022-07-30] (Western Digital Technologies, Inc. -> )

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\MATLAB R2020b Startup Accelerator.job => D:\MATLAB\R2020b\bin\win64\MATLABStartupAccelerator.exe
Task: C:\Windows\Tasks\MATLAB R2021a Startup Accelerator.job => D:\MATLAB\R2021a\bin\win64\MATLABStartupAccelerator.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [35448 2017-03-07] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [38520 2017-03-07] (National Instruments Corporation -> National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{7cbf84d2-b7c7-413a-9da5-83c478e473ec}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c0575f0c-de19-42d5-a439-7d4b2c1a9dfe}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c0575f0c-de19-42d5-a439-7d4b2c1a9dfe}\56465727F616D6: [DhcpNameServer] 147.32.82.19 147.32.80.9
Tcpip\..\Interfaces\{c0575f0c-de19-42d5-a439-7d4b2c1a9dfe}\A5978554C4F593339363F55374: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c0575f0c-de19-42d5-a439-7d4b2c1a9dfe}\A5978554C4F593339363F55374: [DhcpDomain] zyxel.com
Tcpip\..\Interfaces\{c0575f0c-de19-42d5-a439-7d4b2c1a9dfe}\D41627877796C6: [DhcpNameServer] 192.168.200.144
Tcpip\..\Interfaces\{c0575f0c-de19-42d5-a439-7d4b2c1a9dfe}\D4943545F4F564275656: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{c111eda0-9e0b-48e3-9665-18d03c6dc6a9}: [DhcpNameServer] 172.20.10.1

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-26]
Edge Extension: (Outlook) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-21]
Edge Extension: (Word) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-21]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-08-26]
Edge Extension: (Excel) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-21]
Edge Extension: (PowerPoint) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-21]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: lk8pterx.default
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\lk8pterx.default [2021-03-01]
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\86kezmap.default-release [2024-08-26]
FF Notifications: Mozilla\Firefox\Profiles\86kezmap.default-release -> hxxps://www.youtube.com
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-02-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-08-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-02-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-02-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-02-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2024-08-26]
CHR Extension: (Blue Nebula - Full HD - Axlg) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpbfcgopniakghhkjcnnmpfdemapblij [2020-10-02]
CHR Extension: (Google Docs Offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-22]
CHR Extension: (The Great Suspender) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2020-11-01]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7248680 2024-08-26] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-02-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [771880 2024-08-26] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1209640 2024-08-26] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-02-14] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\111.0.20716.147\elevation_service.exe [1818288 2023-03-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-04] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1072440 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12126112 2023-03-13] (Microsoft Corporation -> Microsoft Corporation)
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [163328 2016-01-27] () [File not signed]
R2 gpibenumsvc; C:\Program Files (x86)\National Instruments\NI-488.2\Bin\gpibenumsvc.exe [37872 2020-03-28] (National Instruments Corporation -> National Instruments Corporation)
R2 GsServer; C:\Program Files\Siber Systems\GoodSync\gs-server.exe [14902512 2023-04-24] (Siber Systems -> )
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229360 2023-03-16] (HP Inc. -> HP Inc.)
R2 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [704544 2019-08-07] (National Instruments Corporation -> National Instruments, Inc.)
R2 lkClassAds; C:\Windows\SysWOW64\lkads.exe [61376 2020-04-06] (National Instruments Corporation -> National Instruments Corporation)
R2 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [73160 2020-04-06] (National Instruments Corporation -> National Instruments Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8683336 2022-07-17] (Malwarebytes Inc. -> Malwarebytes)
R2 MSSQL$CITADEL; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.CITADEL\MSSQL\Binn\sqlservr.exe [163008 2017-08-15] (Microsoft Corporation -> Microsoft Corporation)
R2 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [96688 2020-03-12] (National Instruments Corporation -> National Instruments Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [73736 2020-11-17] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [92680 2020-11-17] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [601544 2020-11-17] (National Instruments Corporation -> National Instruments Corporation)
R2 NICitadel5Service; C:\Windows\SysWOW64\nicitdl5.exe [1382840 2020-04-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\Windows\SysWOW64\nidevldu.exe [342496 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [424376 2020-04-06] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [537144 2020-04-07] (National Instruments Corporation -> National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [343080 2017-03-07] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [189512 2019-03-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NIOPCServersKeySvcV2016; C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\keysvc.exe [36976 2019-03-17] (Kepware Technologies -> Kepware Technologies)
R2 NIOPCServersLoggerV2016; C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_eventlog.exe [156784 2019-03-17] (Kepware Technologies -> Kepware Technologies)
R2 NIOPCServersV2016; C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_runtime.exe [301168 2019-03-17] (Kepware Technologies -> Kepware Technologies)
R2 nipxicmsvc; C:\Program Files (x86)\National Instruments\PXI\nipxicms.exe [338904 2020-09-01] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmu; C:\Windows\SysWOW64\nipxism.exe [25472 2020-08-25] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [834528 2020-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [26560 2020-06-13] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [102248 2020-03-16] (National Instruments Corporation -> National Instruments Corporation)
R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [73712 2020-11-17] (National Instruments Corporation -> National Instruments Corporation)
R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [752056 2020-04-07] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [33656 2020-11-24] (National Instruments Corporation -> )
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
R2 PDF Architect 8; C:\Program Files\PDF Architect 8\activation-service.exe [3336752 2022-02-21] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 8 Creator; C:\Program Files\PDF Architect 8\creator-ws.exe [628272 2022-02-21] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 8 Update Service; C:\Program Files\PDF Architect 8\update-service.exe [382000 2022-02-21] (pdfforge GmbH -> pdfforge GmbH)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RabbitMQ; C:\Program Files\erl10.6\erts-10.6\bin\erlsrv.exe [226304 2019-12-09] () [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [12456856 2024-08-26] (Avast Software s.r.o. -> Gen Digital Inc.)
S4 SQLAgent$CITADEL; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.CITADEL\MSSQL\Binn\SQLAGENT.EXE [448704 2017-08-15] (Microsoft Corporation -> Microsoft Corporation)
S3 VBoxSDS; D:\VirtualBox\VBoxSDS.exe [746688 2021-04-28] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_ce837e92efe9cbc4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_ce837e92efe9cbc4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [20536 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [229832 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [381392 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [293944 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [84536 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [27744 2024-08-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [28616 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [273456 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [549968 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [97736 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [69176 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [949816 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [1198648 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203832 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswTap; C:\Windows\System32\drivers\aswTap.sys [53904 2021-02-16] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [306744 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVpnRdr; C:\Windows\System32\drivers\aswVpnRdr.sys [79248 2024-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWintun; C:\Windows\System32\drivers\aswWintun.sys [38768 2021-05-05] (Avast Software s.r.o. -> Avast Software)
R3 IntelDFUACPI; C:\Windows\System32\drivers\IntelDFUACPI.sys [37888 2015-12-01] (Intel(R) Software Development Products -> Intel(R) Corporation)
S3 lvalarmk; C:\Windows\System32\drivers\lvalarmk.sys [36920 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-04-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [194480 2022-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 nicdcck; C:\Windows\System32\drivers\nicdcckl.sys [30984 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\Windows\System32\drivers\nicdrkl.sys [23552 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\Windows\System32\drivers\nicmrkl.sys [23576 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\Windows\System32\drivers\nicondrkl.sys [23536 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\Windows\System32\drivers\nicsrkl.sys [23544 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\Windows\System32\drivers\nidimkl.sys [23560 2020-03-19] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\Windows\System32\drivers\nidmxfkl.sys [23536 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\Windows\System32\drivers\nidsarkl.sys [23552 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\Windows\System32\drivers\niemrkl.sys [23544 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\Windows\System32\drivers\niesrkl.sys [23544 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\Windows\System32\drivers\niede.sys [59464 2019-03-29] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\Windows\System32\drivers\nifdrkl.sys [23544 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\Windows\System32\drivers\nifslkl.sys [30992 2020-03-26] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\Windows\System32\drivers\nihorbrkl.sys [23536 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\Windows\System32\drivers\nilmskl.sys [23600 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\Windows\System32\drivers\nimdbgkl.sys [23560 2020-03-18] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\Windows\System32\drivers\nimru2kl.sys [23568 2020-03-19] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\Windows\System32\drivers\nimsdrkl.sys [31344 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\Windows\System32\drivers\nimstskl.sys [31288 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\Windows\System32\drivers\nimxdfkl.sys [23544 2020-03-18] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\Windows\System32\drivers\nimxpkl.sys [31296 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\Windows\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\Windows\System32\drivers\niorbkl.sys [23552 2020-03-18] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [23808 2020-03-13] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\Windows\System32\drivers\nipalk.sys [790232 2020-03-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [23824 2020-03-13] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\Windows\System32\drivers\nipbcfk.sys [19288 2020-03-13] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\Windows\System32\drivers\nipcibrd.sys [141288 2020-08-25] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\Windows\System32\drivers\nipxifpk.sys [43800 2020-08-25] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\Windows\System32\drivers\nipxigpk.sys [32984 2020-08-25] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\Windows\System32\drivers\nipxirmkl.sys [23480 2020-08-25] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\Windows\System32\drivers\niraptrkl.sys [23552 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\Windows\System32\drivers\niscdkl.sys [31528 2020-04-01] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\Windows\System32\drivers\nisdigkl.sys [23568 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\Windows\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\Windows\System32\drivers\nispdkl.sys [31528 2020-04-01] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\Windows\System32\drivers\nissrkl.sys [23552 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\Windows\System32\drivers\nistc2kl.sys [31400 2020-03-26] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\Windows\System32\drivers\nistc3rkl.sys [23544 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\Windows\System32\drivers\nistcrkl.sys [31288 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\Windows\System32\drivers\niswdkl.sys [30952 2020-03-23] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\Windows\System32\drivers\nitfurkl.sys [23592 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\Windows\System32\drivers\nitiorkl.sys [31288 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\Windows\System32\drivers\niufurkl.sys [23584 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\Windows\System32\drivers\NiViPciKl.sys [23568 2020-04-07] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\Windows\System32\drivers\niwfrkl.sys [23552 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\Windows\System32\drivers\nixfmrrkl.sys [23560 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\Windows\System32\drivers\nixsrkl.sys [23552 2020-06-15] (National Instruments Corporation -> National Instruments Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239616 2021-04-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [249536 2021-04-28] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48520 2020-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [428256 2020-09-30] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\Windows\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [69856 2020-09-30] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\Windows\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-08-26 22:40 - 2024-08-26 22:41 - 000057195 _____ C:\Users\Lenovo\Desktop\FRST.txt
2024-08-26 22:40 - 2024-08-26 22:41 - 000000000 ____D C:\FRST
2024-08-26 22:38 - 2024-08-26 22:38 - 002397184 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2024-08-26 22:28 - 2024-08-26 22:28 - 000000231 _____ C:\Windows\pxisys.ini
2024-08-26 22:28 - 2024-08-26 22:28 - 000000222 _____ C:\Windows\pxiesys.ini
2024-08-26 22:24 - 2024-08-26 22:24 - 000000000 ____D C:\Windows\system32\o2
2024-08-26 22:23 - 2024-08-26 22:22 - 000315176 _____ (Gen Digital Inc.) C:\Windows\system32\aswBoot.exe
2024-08-26 22:17 - 2024-08-26 22:17 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-08-26 21:40 - 2024-08-26 21:40 - 000000597 _____ C:\Users\Lenovo\Desktop\New_Ubuntu.lnk
2024-08-26 21:31 - 2024-08-26 21:31 - 000003824 _____ C:\Windows\system32\Tasks\AvastBrowserProtectS-1-5-21-1493259530-17723175-2292344264-1001
2024-08-26 21:13 - 2024-08-26 21:13 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-08-26 22:35 - 2020-09-30 11:31 - 001949350 _____ C:\Windows\system32\PerfStringBackup.INI
2024-08-26 22:35 - 2019-12-07 16:41 - 000807722 _____ C:\Windows\system32\perfh005.dat
2024-08-26 22:35 - 2019-12-07 16:41 - 000181010 _____ C:\Windows\system32\perfc005.dat
2024-08-26 22:35 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-08-26 22:32 - 2020-10-02 21:38 - 000000000 ____D C:\Users\Lenovo\AppData\Local\AVAST Software
2024-08-26 22:31 - 2020-10-03 00:59 - 000000000 ____D C:\Program Files\CCleaner
2024-08-26 22:30 - 2020-10-04 15:16 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\discord
2024-08-26 22:29 - 2022-07-30 19:47 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\WD Discovery
2024-08-26 22:29 - 2022-07-30 19:46 - 000000000 ____D C:\Users\Lenovo\.wdc
2024-08-26 22:29 - 2020-10-04 15:16 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Discord
2024-08-26 22:28 - 2020-10-02 21:37 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2024-08-26 22:28 - 2020-10-02 21:36 - 000000000 ____D C:\ProgramData\Avast Software
2024-08-26 22:28 - 2020-09-30 11:43 - 000000000 __SHD C:\Users\Lenovo\IntelGraphicsProfiles
2024-08-26 22:28 - 2020-09-30 11:43 - 000000000 ____D C:\Intel
2024-08-26 22:28 - 2020-09-30 11:37 - 000000000 ____D C:\ProgramData\NVIDIA
2024-08-26 22:28 - 2020-09-30 11:25 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-08-26 22:28 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-26 22:27 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-08-26 22:26 - 2021-02-16 22:10 - 000050976 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe
2024-08-26 22:24 - 2021-11-21 05:34 - 000002036 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2024-08-26 22:24 - 2020-10-02 21:37 - 000002048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2024-08-26 22:23 - 2020-10-02 21:37 - 000949816 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSnx.sys
2024-08-26 22:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-08-26 22:22 - 2022-10-20 22:11 - 000027744 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswElam.sys
2024-08-26 22:22 - 2020-10-19 22:01 - 000273456 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswMonFlt.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 001198648 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSP.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000549968 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswNetHub.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000381392 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsdriver.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000306744 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswVmm.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000293944 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsh.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000229832 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArPot.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000097736 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRdr2.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000084536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbuniv.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000069176 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRvrt.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000028616 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswKbd.sys
2024-08-26 22:22 - 2020-10-02 21:37 - 000020536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArDisk.sys
2024-08-26 22:15 - 2022-01-02 22:08 - 000001426 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Grammarly.lnk
2024-08-26 22:15 - 2022-01-02 22:08 - 000001418 _____ C:\Users\Lenovo\Desktop\Grammarly.lnk
2024-08-26 22:15 - 2020-10-21 10:35 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Grammarly
2024-08-26 22:15 - 2020-10-07 17:35 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2024-08-26 22:03 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2024-08-26 21:59 - 2020-10-03 14:31 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-08-26 21:55 - 2020-12-25 16:30 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Logishrd
2024-08-26 21:55 - 2020-12-25 16:29 - 000000000 ____D C:\ProgramData\Logishrd
2024-08-26 21:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2024-08-26 21:41 - 2021-07-14 13:54 - 000000000 ____D C:\Users\Lenovo\.VirtualBox
2024-08-26 21:40 - 2021-07-14 13:54 - 000000000 ____D C:\ProgramData\VirtualBox
2024-08-26 21:32 - 2020-10-03 00:34 - 000000000 ____D C:\Users\Lenovo\AppData\Local\D3DSCache
2024-08-26 21:31 - 2020-10-03 00:59 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-08-26 21:30 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-08-26 21:28 - 2022-10-20 22:24 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-08-26 21:28 - 2020-09-30 11:25 - 000459520 _____ C:\Windows\system32\FNTCACHE.DAT
2024-08-26 21:26 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-08-26 21:26 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-08-26 21:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-08-26 21:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-08-26 21:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-08-26 21:20 - 2021-07-16 04:51 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-08-26 21:20 - 2021-07-16 04:51 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-08-26 21:19 - 2021-12-16 04:42 - 000000000 ____D C:\Windows\SystemTemp
2024-08-26 21:13 - 2020-09-30 12:11 - 000000000 ____D C:\Program Files (x86)\Google
2024-08-26 21:13 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-08-26 21:05 - 2022-07-30 21:02 - 000000000 ____D C:\ProgramData\GoodSync
2024-08-26 21:05 - 2020-09-30 11:25 - 000000000 ____D C:\Windows\system32\SleepStudy

==================== Files in the root of some directories ========

2021-10-05 01:36 - 2021-10-05 01:36 - 000000436 _____ () C:\Users\Lenovo\AppData\Local\katevirc
2021-10-05 01:29 - 2021-10-05 01:36 - 000022826 _____ () C:\Users\Lenovo\AppData\Local\kilerc
2021-04-27 07:14 - 2015-10-14 11:27 - 000025798 _____ () C:\Users\Lenovo\AppData\Local\loading.gif
2020-10-14 21:27 - 2022-08-07 13:36 - 000000128 _____ () C:\Users\Lenovo\AppData\Local\PUTTY.RND
2022-07-29 04:11 - 2022-07-29 04:11 - 000001828 _____ () C:\Users\Lenovo\AppData\Local\recently-used.xbel
2021-04-27 07:14 - 2015-10-14 11:03 - 000094160 _____ () C:\Users\Lenovo\AppData\Local\STECH.ico
2021-10-05 01:29 - 2021-10-05 01:29 - 000004671 _____ () C:\Users\Lenovo\AppData\Local\user-places.xbel
2021-10-05 01:29 - 2021-10-05 01:29 - 000002583 _____ () C:\Users\Lenovo\AppData\Local\user-places.xbel.bak
2021-10-05 01:29 - 2021-10-05 01:29 - 000000000 _____ () C:\Users\Lenovo\AppData\Local\user-places.xbel.tbcache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================