Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Extrémne spomalený PC

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
shatterhand
Návštěvník
Návštěvník
Příspěvky: 107
Registrován: 11 říj 2009 17:52
Bydliště: PB, SVK

Extrémne spomalený PC

#1 Příspěvek od shatterhand »

Dobrý deň.
Mám tento notebook cca 3 roky (2. majiteľ) a takmer som ho nepoužíval (používal som PC v práci).
V čase kúpy to bol najrýchlejší počítač, aký som videl, štart Winowsu po zapnutí snáď za 3 sekundy...
Dnes je tak extrémne spomlený, že štartuje možn aj 10 minút a takmer sa nedá používať, všetky programy aj malé súbory (napr. fotky) sa spúšťajú desiatky sekúnd, prieskumník súbory len pomaly zobrazuje...
Prosím o radu, ako to vyriešiť.
Prikladám log z FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2021 01
Ran by Lenovo (administrator) on LAPTOP-C9GFDQ9S (LENOVO 80QB) (02-06-2021 10:47:11)
Running from C:\Users\Lenovo\Desktop
Loaded Profiles: Lenovo
Platform: Windows 10 Home Version 20H2 19042.867 (X64) Language: Angličtina (USA) -> Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe <4>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <6>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Windows\Temp\AvastBrowserInstallerIncremental-90.0.9316.94.exe97fd5926
(Avast Software s.r.o. -> AVAST Software) C:\Windows\Temp\setup.exe97fd5bf5 <2>
(Brave Software, Inc. -> Brave Software, Inc.) C:\Windows\Temp\brave_installer-x64.exe75a80a0a
(Brave Software, Inc. -> Brave Software, Inc.) C:\Windows\Temp\setup.exe75a80a0a <2>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Windows\Temp\90.0.4430.212_90.0.4430.93_chrome_updater.exe56f7accb
(Google LLC -> Google LLC) C:\Windows\Temp\setup.exe56f7acda <2>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b9b9c39e4e2b88eb\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b9b9c39e4e2b88eb\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b9b9c39e4e2b88eb\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b9b9c39e4e2b88eb\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LENOVO -> ) C:\Program Files\Lenovo\LenovoUtility\utility.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Smart Fingerprint\fplmonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corp.) C:\Windows\System32\Defrag.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WaaSMedicAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.925_none_e76d4f6f260a683e\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2015-12-05] (LENOVO -> )
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18382824 2017-08-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3743648 2015-08-03] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117472 2021-03-30] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Lenovo Smart Fingerprint] => C:\Program Files (x86)\Lenovo\Lenovo Smart Fingerprint\fplmonitor.exe [1758480 2015-07-10] (LENOVO -> Lenovo) [File not signed]
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink Corp. -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-2762085457-3828971911-566155908-1002\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [109961064 2021-05-10] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2762085457-3828971911-566155908-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MG2900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCB.DLL [30208 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2900 series: C:\WINDOWS\system32\CNMLMCB.DLL [406016 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-05-03] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.94\Installer\chrmstp.exe [2021-05-18] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\90.1.23.75\Installer\chrmstp.exe [2021-05-03] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7478.89\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {057496DF-C0C2-4267-9FA0-FC4216549035} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-25] (Google Inc -> Google Inc.)
Task: {1D37093C-A70E-4A8B-8B14-5D4D9CEB8981} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {1F45D58C-DF82-4E15-BCE8-6FDAE0537D32} - System32\Tasks\Lenovo\SHPrompt => C:\Program Files (x86)\Lenovo\SHAREit\ShareitPrompt.exe [829384 2015-09-26] (LENOVO -> )
Task: {251EC242-DC31-41C4-9B4B-0910F6AD43B5} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {27E7EED6-106F-4604-AE92-09640A7F31A2} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-03-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {323590CE-0C69-48B2-A9CF-812475CF5761} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4686560 2021-03-30] (Avast Software s.r.o. -> AVAST Software)
Task: {3A090C80-9820-4A5E-98D1-E2A43FE49DB7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {3DC4BE9B-5CF1-413A-A8E2-4CC107CBF53C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {40515557-1368-458A-8F35-A51FF76B8EDD} - System32\Tasks\Lenovo\SHUpdate => C:\Program Files (x86)\Lenovo\SHAREit\ShareitUpdater.exe [808392 2015-09-26] (LENOVO -> )
Task: {435087B5-FB71-4220-8B2A-C28EF8B9AC9A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {4A6D88A0-EDE8-41A5-B689-64D8E2D83C46} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {4B76FE1C-F4E0-4AB5-918F-27F6624AC985} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-28] (CyberLink Corp. -> CyberLink Corp.)
Task: {57818881-585E-4E9E-ABB2-96D30C7CE27F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5290f12e-3dcd-40f2-8b47-33acdab5cdba => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {62220EC4-B390-4B05-9B71-C69468F146BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-25] (Google Inc -> Google Inc.)
Task: {6495A75B-6E5B-4B4B-AC45-97152CB25AE8} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-14] (Avast Software s.r.o. -> AVAST Software)
Task: {668AEB0B-417B-4759-870C-01C51B0A56F0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c12f278e-e06f-429e-93fb-2a0baf9a2b59 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {68F47942-4C4C-48C8-BDBA-F2CB4ED7C7DB} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {6DE23B3B-BB5F-4CA6-99FC-C2E7C930009B} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [287688 2016-06-25] (LENOVO -> Lenovo)
Task: {76F997FC-00AE-4948-96E7-382D6168DF1C} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-03-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {77499224-FB72-4816-9425-BD6DE06350B2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {837020A2-6A95-4F37-BBC9-80114F7EC3E8} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62392 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {8C2AF5D0-68E3-47AC-8D0C-130046029B62} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\64284501-f020-4328-9d82-f705ebcb6bef => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {CA5CDDC8-D5BE-43CD-B46C-A4F279E06717} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {E3D37A91-221A-44F9-95C4-502D0BF6F0BE} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\556e34cc-1b1f-45c0-8f98-6414ed547d04 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {E6455FC6-C221-4C8D-9BA7-95DFE35BF2FC} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {F143C0BC-DA23-414C-9651-7C786C6416E0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-14] (Avast Software s.r.o. -> AVAST Software)
Task: {FDDC2BC5-D42D-4216-9CC1-AC79B4D16B7F} - System32\Tasks\Lenovo\fplmonitor => C:\Program Files (x86)\Lenovo\Lenovo Smart Fingerprint\fplmonitor.exe [1758480 2015-07-10] (LENOVO -> Lenovo) [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{799a3940-d65c-4372-835a-f8292316e0d0}: [DhcpNameServer] 169.254.224.91
Tcpip\..\Interfaces\{85fe92ac-5602-48c4-a070-baf246643fd6}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Profile: C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-02]

FireFox:
========
FF DefaultProfile: zbvhojo6.default
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default [2021-06-02]
FF Extension: (Facebook Container) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\@contain-facebook.xpi [2019-11-03]
FF Extension: (Enhancer for YouTube™) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2019-12-30]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\firefox@ghostery.com.xpi [2019-11-26]
FF Extension: (iyplayer) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\jid1-dgnICqQgv2AUZw@jetpack.xpi [2019-03-05]
FF Extension: (AliPrice Assistant - AliExpress Price Tracker) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\jid1-kOqZHmOwLzTaFg@jetpack.xpi [2019-03-05]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\sp@avast.com.xpi [2019-12-30]
FF Extension: (uBlock Origin) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\uBlock0@raymondhill.net.xpi [2019-11-26]
FF Extension: (Avast Online Security) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\wrc@avast.com.xpi [2019-12-30]
FF Extension: (Video DownloadHelper) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zbvhojo6.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-12-04]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-03-05] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-03-05] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-11-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-11-14] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2021-06-02]
CHR Extension: (Docs) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-05]
CHR Extension: (Google Drive) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-18]
CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-05]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-18]
CHR Extension: (Google Docs Offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-02]
CHR Extension: (Avast Online Security) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-18]
CHR Extension: (Chrome Media Router) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-02]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

Brave:
=======
BRA Profile: C:\Users\Lenovo\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-06-02]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Lenovo\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2019-03-05]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Lenovo\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2019-03-05]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Lenovo\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2019-03-05]
BRA Extension: (PDF Viewer) - C:\Users\Lenovo\AppData\Local\BraveSoftware\Brave-Browser\User Data\oemmndcbldboiebfnladdacbdfmadadm [2019-03-05]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Lenovo\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-03-05]
StartMenuInternet: Brave - C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7888408 2021-04-07] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [623216 2021-03-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [353504 2021-03-30] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-14] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.94\elevation_service.exe [1396968 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56920 2021-03-30] (Avast Software s.r.o. -> AVAST Software)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-03-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-03-05] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-04-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-04-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate(CPC)\Transfer\DriverInstall.exe [107760 2019-09-26] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35664 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216360 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [365536 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250336 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99296 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-06-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41296 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [180944 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522824 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107792 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82856 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851144 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471352 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216376 2021-03-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-04-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-04-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-04-29] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-02 10:47 - 2021-06-02 10:53 - 000030282 _____ C:\Users\Lenovo\Desktop\FRST.txt
2021-06-02 10:43 - 2021-06-02 10:49 - 000000000 ____D C:\FRST
2021-06-02 10:40 - 2021-06-02 10:40 - 002299904 _____ (Farbar) C:\Users\Lenovo\Downloads\FRST64 (1).exe
2021-06-02 10:40 - 2021-06-02 10:40 - 002299904 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2021-06-02 09:18 - 2021-06-02 09:17 - 000215336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9bded2223584e5ba.tmp
2021-06-02 09:18 - 2021-06-02 09:16 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-06-02 09:13 - 2021-06-02 09:14 - 000000000 ____D C:\Program Files\CCleaner
2021-06-02 09:13 - 2021-06-02 09:13 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-02 09:13 - 2021-06-02 09:13 - 000002890 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-02 09:13 - 2021-06-02 09:13 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-06-02 09:13 - 2021-06-02 09:13 - 000000870 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-06-02 09:13 - 2021-06-02 09:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-06-02 09:12 - 2021-06-02 09:12 - 031491256 _____ (Piriform Software Ltd) C:\Users\Lenovo\Downloads\ccsetup580.exe
2021-06-02 09:10 - 2021-06-02 09:10 - 000017328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-05-18 18:06 - 2021-05-18 18:06 - 000000000 ____D C:\WINDOWS\Lenovo
2021-05-04 07:24 - 2021-05-04 07:28 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-05-04 07:18 - 2021-05-04 07:24 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-05-04 07:18 - 2021-05-04 07:18 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-05-04 07:10 - 2021-05-04 07:10 - 000000000 ____D C:\ProgramData\ssh
2021-05-04 06:59 - 2021-05-04 06:59 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-05-04 06:59 - 2021-05-04 06:59 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-05-04 06:59 - 2021-05-04 06:59 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2021-05-04 06:59 - 2021-05-04 06:59 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-05-04 06:59 - 2021-05-04 06:59 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-05-04 06:59 - 2021-05-04 06:59 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-05-04 06:58 - 2021-05-04 06:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-04 06:58 - 2021-05-04 06:58 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-05-04 06:58 - 2021-05-04 06:58 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-05-04 06:58 - 2021-05-04 06:58 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-05-04 06:58 - 2021-05-04 06:58 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2021-05-04 06:58 - 2021-05-04 06:58 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-05-04 06:58 - 2021-05-04 06:58 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-05-04 06:58 - 2021-05-04 06:58 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-05-04 06:58 - 2021-05-04 06:58 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-05-04 06:58 - 2021-05-04 06:58 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-05-04 06:58 - 2021-05-04 06:58 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-04 06:57 - 2021-05-04 06:57 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-04 06:57 - 2021-05-04 06:57 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-05-04 06:57 - 2021-05-04 06:57 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-05-04 06:57 - 2021-05-04 06:57 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-05-04 06:57 - 2021-05-04 06:57 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-05-04 06:57 - 2021-05-04 06:57 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-05-04 06:57 - 2021-05-04 06:57 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-05-04 06:57 - 2021-05-04 06:57 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-04 06:56 - 2021-05-04 06:56 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-05-04 06:56 - 2021-05-04 06:56 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-05-04 06:56 - 2021-05-04 06:56 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-05-04 06:56 - 2021-05-04 06:56 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-05-04 06:56 - 2021-05-04 06:56 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-05-04 06:56 - 2021-05-04 06:56 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-05-04 06:56 - 2021-05-04 06:56 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2021-05-04 06:56 - 2021-05-04 06:56 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2021-05-04 06:56 - 2021-05-04 06:56 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-04 06:55 - 2021-05-04 06:55 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-05-04 06:55 - 2021-05-04 06:55 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-05-04 06:55 - 2021-05-04 06:55 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-05-04 06:55 - 2021-05-04 06:55 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-05-04 06:55 - 2021-05-04 06:55 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-04 06:55 - 2021-05-04 06:55 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-05-04 06:55 - 2021-05-04 06:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2021-05-04 06:55 - 2021-05-04 06:55 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-05-04 06:54 - 2021-05-04 06:54 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-04 06:54 - 2021-05-04 06:54 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-04 06:54 - 2021-05-04 06:54 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-05-04 06:54 - 2021-05-04 06:54 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2021-05-04 06:54 - 2021-05-04 06:54 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-05-04 06:54 - 2021-05-04 06:54 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2021-05-04 06:54 - 2021-05-04 06:54 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-05-04 06:54 - 2021-05-04 06:54 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2021-05-04 06:54 - 2021-05-04 06:54 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-05-04 06:53 - 2021-05-04 06:53 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2021-05-04 06:53 - 2021-05-04 06:53 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-05-04 06:53 - 2021-05-04 06:53 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-05-04 06:53 - 2021-05-04 06:53 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-04 06:53 - 2021-05-04 06:53 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2021-05-04 06:53 - 2021-05-04 06:53 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2021-05-04 06:53 - 2021-05-04 06:53 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-04 06:28 - 2021-05-04 06:28 - 000296964 _____ C:\WINDOWS\system32\perfi005.dat
2021-05-04 06:28 - 2021-05-04 06:28 - 000038778 _____ C:\WINDOWS\system32\perfd005.dat
2021-05-04 06:28 - 2021-05-04 06:28 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-05-04 06:28 - 2021-05-04 06:28 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2021-05-04 06:28 - 2021-05-04 06:28 - 000000000 ____D C:\WINDOWS\system32\cs
2021-05-04 06:28 - 2021-05-03 21:51 - 000707530 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-04 06:28 - 2021-05-03 21:51 - 000144878 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-04 06:19 - 2021-05-04 06:19 - 000000000 ____D C:\WINDOWS\system32\sk
2021-05-04 06:08 - 2021-05-04 07:28 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-05-04 06:08 - 2021-05-04 06:08 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-05-04 06:08 - 2021-05-04 06:08 - 000000000 ____D C:\Program Files\MSBuild
2021-05-04 06:08 - 2021-05-04 06:08 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-05-03 22:09 - 2021-05-03 22:09 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-05-03 22:04 - 2021-05-03 22:04 - 000000020 ___SH C:\Users\Lenovo\ntuser.ini
2021-05-03 22:03 - 2021-06-02 09:20 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-05-03 22:03 - 2021-05-26 18:02 - 000004212 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A54A84C2-79FB-45E8-88E4-796DA389A3EA}
2021-05-03 22:03 - 2021-05-18 18:21 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2762085457-3828971911-566155908-1002
2021-05-03 22:03 - 2021-05-04 18:31 - 000003504 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-03 22:03 - 2021-05-04 18:31 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-05-03 22:03 - 2021-05-04 18:31 - 000003384 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-03 22:03 - 2021-05-04 18:31 - 000003364 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2021-05-03 22:03 - 2021-05-04 18:31 - 000003350 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{38325917-258D-45B4-9E57-8B68BF98EA68}
2021-05-03 22:03 - 2021-05-04 18:31 - 000003280 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-03 22:03 - 2021-05-04 18:31 - 000003160 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-03 22:03 - 2021-05-04 18:31 - 000003140 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2021-05-03 22:03 - 2021-05-04 18:31 - 000002212 _____ C:\WINDOWS\system32\Tasks\PDVDServ12 Task
2021-05-03 22:03 - 2021-05-04 18:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-05-03 22:03 - 2021-05-03 22:04 - 000003422 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2021-05-03 22:03 - 2021-05-03 22:03 - 000003198 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2021-05-03 22:03 - 2021-05-03 22:03 - 000003118 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-05-03 22:03 - 2021-05-03 22:03 - 000002636 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2021-05-03 22:03 - 2021-05-03 22:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-03 22:03 - 2021-05-03 22:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2021-05-03 22:03 - 2021-05-03 22:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-05-03 22:02 - 2021-05-03 22:03 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2021-05-03 22:02 - 2021-05-03 22:03 - 000011433 _____ C:\WINDOWS\diagerr.xml
2021-05-03 21:51 - 2021-05-03 21:51 - 001694952 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-03 21:37 - 2021-05-18 18:17 - 000002361 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-03 21:37 - 2021-05-03 22:04 - 000000000 ____D C:\Users\Lenovo
2021-05-03 21:37 - 2021-05-03 21:51 - 000000000 ____D C:\Users\Majo
2021-05-03 21:37 - 2019-12-07 11:10 - 000001105 _____ C:\Users\Majo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-03 21:29 - 2021-06-02 09:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-03 21:29 - 2021-05-03 21:43 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-03 21:29 - 2021-05-03 21:30 - 000467376 _____ C:\WINDOWS\system32\FNTCACHE.DAT

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-02 11:14 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-02 10:53 - 2016-06-25 22:03 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-02 10:52 - 2016-06-25 22:03 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-02 10:51 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-02 10:50 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-06-02 10:44 - 2019-03-05 19:37 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2021-06-02 10:29 - 2020-11-18 07:17 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-02 10:29 - 2020-11-18 07:17 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-02 10:29 - 2020-11-18 07:17 - 000002289 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-06-02 10:14 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-02 09:47 - 2021-03-13 09:59 - 000000000 ___DC C:\WINDOWS\Panther
2021-06-02 09:47 - 2019-03-05 19:37 - 000000000 ____D C:\Users\Lenovo\AppData\Local\AVAST Software
2021-06-02 09:18 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-02 09:17 - 2019-03-05 19:22 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-06-02 09:17 - 2019-03-05 19:22 - 000250336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-06-02 09:17 - 2019-03-05 19:22 - 000099296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-06-02 09:16 - 2020-05-21 09:58 - 000180944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-06-02 09:16 - 2020-04-29 18:21 - 000522824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-06-02 09:16 - 2019-03-05 19:22 - 000851144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-06-02 09:16 - 2019-03-05 19:22 - 000471352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-06-02 09:16 - 2019-03-05 19:22 - 000216360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-06-02 09:16 - 2019-03-05 19:22 - 000107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-06-02 09:16 - 2019-03-05 19:22 - 000082856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-06-02 09:16 - 2019-03-05 19:22 - 000041296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-06-02 09:16 - 2019-03-05 19:22 - 000035664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-06-02 09:15 - 2019-03-05 19:22 - 000365536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-06-02 09:01 - 2018-10-02 13:39 - 000000000 __SHD C:\Users\Lenovo\IntelGraphicsProfiles
2021-05-26 18:00 - 2020-12-18 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-05-20 19:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-20 19:00 - 2016-06-25 21:52 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-18 18:17 - 2018-10-02 13:41 - 000000000 ___RD C:\Users\Lenovo\OneDrive
2021-05-18 18:13 - 2019-03-05 19:39 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-05-18 18:09 - 2020-04-29 18:21 - 000524944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswa12ff118972ff91a.tmp
2021-05-18 18:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-18 18:06 - 2020-11-14 23:48 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-18 18:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-18 18:06 - 2015-12-05 02:54 - 000000000 ____D C:\Program Files\Lenovo
2021-05-18 18:06 - 2015-12-05 02:53 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-05-04 18:31 - 2019-03-05 20:26 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\vlc
2021-05-04 18:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-05-04 07:28 - 2020-05-31 22:55 - 000000000 ____D C:\Program Files\UNP
2021-05-04 07:28 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup
2021-05-04 07:28 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-05-04 07:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-05-04 07:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-05-04 07:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-05-04 07:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2021-05-04 07:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-05-04 07:28 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-05-04 07:28 - 2019-09-16 09:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2021-05-04 07:28 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-05-04 07:28 - 2019-03-05 20:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2021-05-04 07:28 - 2019-03-05 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MultiCommander
2021-05-04 07:28 - 2016-06-25 22:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2021-05-04 07:28 - 2016-06-25 22:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2021-05-04 07:28 - 2016-06-25 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-04 07:28 - 2015-12-05 03:58 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2021-05-04 07:28 - 2015-12-05 03:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2021-05-04 07:28 - 2015-12-05 03:52 - 000000000 ____D C:\Program Files\AMD
2021-05-04 07:28 - 2015-12-05 03:48 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2021-05-04 07:28 - 2015-12-05 03:46 - 000000000 ____D C:\Program Files\Intel
2021-05-04 07:28 - 2015-12-05 02:58 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2021-05-04 07:28 - 2015-12-05 02:53 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-05-04 07:28 - 2015-07-10 15:16 - 000000000 ____D C:\WINDOWS\ShellNew
2021-05-04 07:28 - 2015-07-10 13:04 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-05-04 07:27 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-05-04 07:25 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-05-04 07:25 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-05-04 07:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Resources
2021-05-04 07:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help
2021-05-04 07:24 - 2019-11-03 09:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2021-05-04 07:24 - 2019-11-03 09:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-05-04 07:24 - 2015-12-05 04:10 - 000000000 ____D C:\Program Files\Synaptics
2021-05-04 07:24 - 2015-12-05 03:55 - 000000000 ____D C:\Program Files\Realtek
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-05-04 07:10 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-05-04 07:10 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-05-04 07:10 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-05-04 07:08 - 2019-12-07 11:52 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-04 07:08 - 2019-12-07 11:52 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-05-04 06:30 - 2019-12-07 11:51 - 000000000 ____D C:\WINDOWS\OCR
2021-05-04 06:28 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-05-04 06:28 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-05-04 06:28 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-05-04 06:28 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-05-04 06:28 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-05-04 06:28 - 2019-12-07 11:49 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-05-04 06:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-05-04 06:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-05-03 22:24 - 2018-10-02 13:39 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Packages
2021-05-03 22:23 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-03 22:19 - 2019-03-05 19:21 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-03 22:06 - 2020-04-28 04:56 - 000000000 ____D C:\ProgramData\Packages
2021-05-03 22:06 - 2020-04-28 04:29 - 000000000 ___RD C:\Users\Lenovo\3D Objects
2021-05-03 22:06 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-03 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-05-03 22:06 - 2015-07-16 17:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-05-03 22:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-03 22:04 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-05-03 22:03 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-05-03 22:01 - 2015-12-05 03:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2021-05-03 21:49 - 2019-03-05 20:25 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-05-03 21:49 - 2016-06-25 21:06 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-03 21:49 - 2016-06-25 21:06 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-03 21:49 - 2016-06-25 21:06 - 000002267 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-05-03 21:48 - 2019-03-05 20:25 - 000002384 _____ C:\Users\Public\Desktop\Brave.lnk
2021-05-03 21:48 - 2019-03-05 20:25 - 000002384 _____ C:\ProgramData\Desktop\Brave.lnk
2021-05-03 21:44 - 2020-04-28 04:05 - 000000000 ____D C:\ProgramData\Synaptics
2021-05-03 21:43 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-05-03 21:42 - 2021-01-14 09:08 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-05-03 21:42 - 2019-04-15 18:35 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-03 21:42 - 2016-06-25 21:58 - 000000000 ____D C:\Users\Majo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-03 21:40 - 2016-06-16 11:59 - 000000000 ____D C:\Users\Majo\AppData\Local\Packages
2021-05-03 21:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-05-03 21:36 - 2015-12-05 03:56 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2021-05-03 21:35 - 2019-06-20 20:04 - 000312687 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2021-05-03 21:35 - 2019-05-27 19:39 - 000000000 ____D C:\WINDOWS\system32\DAX3
2021-05-03 21:35 - 2015-12-05 04:09 - 000000000 ____D C:\Program Files\Elantech
2021-05-03 21:35 - 2015-12-05 03:55 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-05-03 21:35 - 2015-12-05 03:55 - 000000000 ____D C:\WINDOWS\system32\DAX2

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2021 01
Ran by Lenovo (02-06-2021 11:17:58)
Running from C:\Users\Lenovo\Desktop
Windows 10 Home Version 20H2 19042.867 (X64) (2021-05-03 20:04:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2762085457-3828971911-566155908-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2762085457-3828971911-566155908-503 - Limited - Disabled)
Guest (S-1-5-21-2762085457-3828971911-566155908-501 - Limited - Disabled)
Lenovo (S-1-5-21-2762085457-3828971911-566155908-1002 - Administrator - Enabled) => C:\Users\Lenovo
WDAGUtilityAccount (S-1-5-21-2762085457-3828971911-566155908-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{98E4E589-E9C6-9E0B-D4FE-FD51AC05B3E7}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.4.2464 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 90.0.9316.94 - Autori prehliadača Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 90.1.23.75 - Autori prehliadača Brave)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.93 - Google LLC)
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4627 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{BB041B6A-FACB-4853-BEE9-814FE7F93BB2}) (Version: 17.1.1530.1669 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{1544031f-5449-4415-b577-993c2a533a1b}) (Version: 18.12.2 - Intel Corporation)
Lenovo BatteryGauge (HKLM\...\{B8D3ED8D-A295-44C2-8AE1-56823D44AD1F}) (Version: 1.0.017.00 - Lenovo)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.69.4 - ELAN Microelectronic Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo Smart Fingerprint (HKLM-x32\...\{90C700B4-BC7E-4628-867C-FC8622F0DAD9}_is1) (Version: 1.0.0.44 - Lenovo)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.1.18.1 - Lenovo)
LenovoUtility (HKLM-x32\...\{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo) Hidden
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.37 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2762085457-3828971911-566155908-1002\...\OneDriveSetup.exe) (Version: 21.073.0411.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 70.0.1 (x64 sk) (HKLM\...\Mozilla Firefox 70.0.1 (x64 sk)) (Version: 70.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2 - Mozilla)
MultiCommander (x64) (HKLM\...\MultiCommander x64) (Version: 8.3.0.2469 - Mathias Svensson)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29088 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.5.5.1 - Lenovo)
Skype verzia 8.72 (HKLM-x32\...\Skype_is1) (Version: 8.72 - Skype Technologies S.A.)
Synaptics WBF DDK 5011 (HKLM\...\{9062E143-DEDB-4F8C-B5B8-30AEC328400C}) (Version: 4.5.289.0 - Synaptics)
ThinkPad OneLink Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.08.36 - Lenovo)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{13668B9F-F140-4BAB-AB06-08E0D43564F4}) (Version: 2.51.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-3) (Version: 1.0.33.0 - LunarG, Inc.)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinX DVD Ripper Platinum 8.20.0 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare UniConverter(Build 11.5.1.0) (HKLM-x32\...\UniConverter_is1) (Version: 11.5.1.0 - Wondershare Software)
Zoom (HKU\S-1-5-21-2762085457-3828971911-566155908-1002\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)

Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.189.300.0_x86__kgqvnymyfvs32 [2021-05-03] (king.com)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe [2021-05-03] (Microsoft Corporation)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2020-04-28] (LENOVO INCORPORATED.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2103.17.0_x64__k1h2ywk1493x8 [2021-05-03] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-28] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-05-03] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-28] (Microsoft Corporation) [MS Ad]
Portál konta Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2020-04-28] (LENOVO INCORPORATED.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-11] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2015-09-26] (LENOVO -> Lenovo)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-11] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2015-09-26] (LENOVO -> Lenovo)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b9b9c39e4e2b88eb\igfxDTCM.dll [2019-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-11-03 09:02 - 2016-07-21 11:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2019-11-03 09:02 - 2017-03-23 10:49 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2020-12-18 13:22 - 2021-05-10 23:47 - 002552320 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2020-12-18 13:22 - 2021-05-10 23:47 - 000388608 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\swiftshader\libegl.dll
2020-12-18 13:22 - 2021-05-10 23:47 - 002863104 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\swiftshader\libglesv2.dll
2015-07-22 20:44 - 2015-07-22 20:44 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-07-22 20:44 - 2015-07-22 20:44 - 000285184 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2021-05-18 18:17 - 2020-05-30 14:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2019-02-18 20:55 - 2019-02-18 20:55 - 000217600 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\ccme_asym.dll
2019-02-18 20:55 - 2019-02-18 20:55 - 000404480 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\ccme_base.dll
2019-02-18 20:55 - 2019-02-18 20:55 - 000379904 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\ccme_base_non_fips.dll
2019-02-18 20:55 - 2019-02-18 20:55 - 000504320 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\ccme_ecc.dll
2019-02-18 20:55 - 2019-02-18 20:55 - 000218624 _____ (RSA - The Security Division of EMC) [File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\cryptocme.dll
2021-05-18 18:11 - 2020-04-09 09:17 - 000944840 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2019-11-03 09:02 - 2017-03-23 10:52 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2762085457-3828971911-566155908-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-2762085457-3828971911-566155908-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-2762085457-3828971911-566155908-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-2762085457-3828971911-566155908-1002 -> DefaultScope {E9A32104-8889-4F35-8E24-244B400A27F4} URL =
SearchScopes: HKU\S-1-5-21-2762085457-3828971911-566155908-1002 -> {E9A32104-8889-4F35-8E24-244B400A27F4} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 13:04 - 2016-06-25 21:55 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2762085457-3828971911-566155908-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F4BDAA41-6422-4D0B-8313-524F8BFE2C89}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F002E9A9-72A1-4FA3-BC68-19A1C731F2E9}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{E76725F3-328B-4B20-BEE5-A4B5F8AD613B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{14EF60DB-46CB-407E-9E31-F3D86AD493F6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{38CB4AEE-198C-43BC-8EFB-3B9980D070C7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{155D5945-44FA-4CD9-A5B4-CA4A57DC2410}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{81074D78-F511-424D-8831-9488C0428BB1}] => (Allow) C:\Users\Lenovo\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{6DD03990-9291-47C8-9F7C-87AF11B84443}] => (Allow) C:\Users\Lenovo\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{A6D227C2-B3D3-4C96-B91D-294FED994503}] => (Allow) C:\Users\Lenovo\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{68B25EBA-B61D-4199-A4FF-C5C6CE51DFE5}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo)
FirewallRules: [{C433CA25-CE7A-46B5-94BE-2903368A0ABC}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo)
FirewallRules: [{E201B624-63C8-44B8-BBC9-11816BCAE0BB}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{8AD653A3-4D5F-44C3-B4F6-CC987EF55CE5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{400C5A91-5270-4899-8B9D-A45421B4A66D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{C4F283D2-8D35-4031-89BF-D9BE71E06341}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{18A3B0D6-7134-4B6A-8018-712A096A2FD4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5D0B7F89-F34A-42FC-ACB7-A365EF41EEBC}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/02/2021 10:44:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: SearchApp.exe, verzia: 10.0.19041.844, časová značka: 0x69441820
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.19041.804, časová značka: 0x0e9c5eae
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000010bd5c
Identifikácia chybujúceho procesu: 0x3bb4
Čas spustenia chybujúcej aplikácie: 0x01d7578a45ce24c1
Cesta chybujúcej aplikácie: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\KERNELBASE.dll
Identifikácia hlásenia: 0330d915-1ab2-46cd-8df0-4a4b49e04ccc
Celé meno chybujúceho balíka: Microsoft.Windows.Search_1.14.0.19041_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: CortanaUI

Error: (06/02/2021 10:41:49 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CHXSmartScreen.exe version 10.0.19041.423 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 7758

Start Time: 01d7578b06025094

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

Report Id: a7df772c-5f6c-4540-b7c7-39deb7083354

Faulting package full name: Microsoft.Windows.Apprep.ChxApp_1000.19041.423.0_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: App

Hang type: Quiesce

Error: (06/02/2021 09:27:32 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v LENOVO (D:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (06/02/2021 09:27:29 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v DATA (F:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (05/26/2021 06:11:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program GameBar.exe version 5.621.4142.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 56c4

Start Time: 01d7524869dd6a61

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4142.0_x64__8wekyb3d8bbwe\GameBar.exe

Report Id: 2506e6f7-9c1c-4205-9fe2-27bd7a269979

Faulting package full name: Microsoft.XboxGamingOverlay_5.621.4142.0_x64__8wekyb3d8bbwe

Faulting package-relative application ID: App

Hang type: Navigation

Error: (05/18/2021 06:06:41 PM) (Source: ImControllerService) (EventID: 0) (User: )
Description: Service cannot be started. The service process could not connect to the service controller

Error: (05/03/2021 09:53:01 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider wsp_sr attempted to register query "select * from WSP_ReplicationGroupModificationEvent" whose target class "WSP_ReplicationGroupModificationEvent" in //./ROOT/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (05/03/2021 09:53:01 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider wsp_sr attempted to register query "select * from WSP_ReplicationGroupDepartureEvent" whose target class "WSP_ReplicationGroupDepartureEvent" in //./ROOT/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.


System errors:
=============
Error: (06/02/2021 09:06:56 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-C9GFDQ9S)
Description: The server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (06/02/2021 09:03:29 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-C9GFDQ9S)
Description: The server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (05/26/2021 06:03:42 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-C9GFDQ9S)
Description: The server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (05/26/2021 05:59:10 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-C9GFDQ9S)
Description: The server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (05/20/2021 07:19:39 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-C9GFDQ9S)
Description: The server Microsoft.Windows.ContentDeliveryManager_10.0.19041.423_neutral_neutral_cw5n1h2txyewy!App.AppXwdz8g2fxr36xz0tdtagygnvemf85s7gg.mca did not register with DCOM within the required timeout.

Error: (05/20/2021 06:42:09 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-C9GFDQ9S)
Description: The server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (05/18/2021 06:06:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba System Interface Foundation Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 20 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (05/18/2021 05:57:22 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-C9GFDQ9S)
Description: The server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.


CodeIntegrity:
===============
Date: 2021-06-02 10:40:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO D7CN15WW(V1.01) 08/12/2015
Motherboard: LENOVO Lenovo E51-80
Processor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Percentage of memory in use: 77%
Total physical RAM: 8050.76 MB
Available physical RAM: 1834.33 MB
Total Virtual: 9330.76 MB
Available Virtual: 1808.81 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:452.6 GB) (Free:383.24 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:21.6 GB) NTFS
Drive f: (DATA) (Fixed) (Total:431.98 GB) (Free:264.11 GB) NTFS
Drive g: (Windows) (RAMDisk) (Total:452.6 GB) (Free:384.37 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{9ecd11a8-bd20-4c0b-96d0-066fb5a7aeee}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{a6fcce67-2ff7-4eb5-93ab-d2097d51978a}\ (LENOVO_PART) (Fixed) (Total:19.71 GB) (Free:6.86 GB) NTFS
\\?\Volume{6eb84d2d-cdda-41ff-8765-f7ef476b3815}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0B606CD1)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémne spomalený PC

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

shatterhand
Návštěvník
Návštěvník
Příspěvky: 107
Registrován: 11 říj 2009 17:52
Bydliště: PB, SVK

Re: Extrémne spomalený PC

#3 Příspěvek od shatterhand »

Sken prebehol, čistenie opravy som tam nenašiel, ponúka mi to karanténu...

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-02-2021
# Duration: 00:00:19
# OS: Windows 10 Home
# Scanned: 31982
# Detected: 33


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.CyberLinkShellExtension Registry HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2}
Preinstalled.LenovoAcceleratorApplication Folder C:\Program Files (x86)\LENOVO\LENOVOPORTAL
Preinstalled.LenovoExperienceImprovement Folder C:\Program Files\LENOVO\EXPERIENCEIMPROVEMENT
Preinstalled.LenovoExperienceImprovement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\LenovoExperienceImprovement
Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Users\Lenovo\AppData\Local\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}
Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Preinstalled.LenovoPower2Go Folder C:\Program Files (x86)\LENOVO\POWER2GO
Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLMLServer_For_P2G8
Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLVirtualDrive
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLMLServer_For_P2G8
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLVirtualDrive
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Preinstalled.LenovoPowerDVD Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B76FE1C-F4E0-4AB5-918F-27F6624AC985}
Preinstalled.LenovoPowerDVD Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PDVDServ12 Task
Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
Preinstalled.LenovoPowerDVD Task C:\Windows\System32\Tasks\PDVDSERV12 TASK
Preinstalled.LenovoSHAREit Folder C:\Program Files (x86)\LENOVO\SHAREIT
Preinstalled.LenovoSHAREit Folder C:\Users\Lenovo\AppData\Local\LENOVO\SHAREIT
Preinstalled.LenovoSHAREit Folder C:\Users\Majo\AppData\Local\LENOVO\SHAREIT
Preinstalled.LenovoSHAREit Registry HKLM\Software\Classes\CLSID\{430BD134-576D-4E75-87CD-0F5C6221A82B}
Preinstalled.LenovoSHAREit Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\SHAREit_is1
Preinstalled.LenovoSolutionCenter Folder C:\Program Files\LENOVO\LENOVO SOLUTION CENTER
Preinstalled.LenovoUtility Folder C:\Program Files\LENOVO\LENOVOUTILITY
Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoUtility
Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LenovoUtility
Preinstalled.LenovoUtility Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}
Preinstalled.LenovoUtility Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémne spomalený PC

#4 Příspěvek od Rudy »

Toto je OK. Preinstaled jsou utility od Lenova. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {057496DF-C0C2-4267-9FA0-FC4216549035} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-25] (Google Inc -> Google Inc.)
Task: {62220EC4-B390-4B05-9B71-C69468F146BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-25] (Google Inc -> Google Inc.)
C:\WINDOWS\system32\Drivers\asw9bded2223584e5ba.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\Drivers\aswa12ff118972ff91a.tmp
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKU\S-1-5-21-2762085457-3828971911-566155908-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-2762085457-3828971911-566155908-1002 -> DefaultScope {E9A32104-8889-4F35-8E24-244B400A27F4} URL =
SearchScopes: HKU\S-1-5-21-2762085457-3828971911-566155908-1002 -> {E9A32104-8889-4F35-8E24-244B400A27F4} URL =
FirewallRules: [{81074D78-F511-424D-8831-9488C0428BB1}] => (Allow) C:\Users\Lenovo\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{6DD03990-9291-47C8-9F7C-87AF11B84443}] => (Allow) C:\Users\Lenovo\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{8AD653A3-4D5F-44C3-B4F6-CC987EF55CE5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{400C5A91-5270-4899-8B9D-A45421B4A66D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

shatterhand
Návštěvník
Návštěvník
Příspěvky: 107
Registrován: 11 říj 2009 17:52
Bydliště: PB, SVK

Re: Extrémne spomalený PC

#5 Příspěvek od shatterhand »

Dobrý deň.
To s tým tlačidlom "Fix" som vyskúšal opakovane trikrát. Žiaden log sa neobjavil, vždy to na konci vyžaduje reštart, ale log nevyskočí ani nie je ani na ploche ani v adresári FRST...

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémne spomalený PC

#6 Příspěvek od Rudy »

Měl by být v tomto adresáři: C:\Users\Lenovo\Desktop . Pokud tam není, zopakujte fix v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

shatterhand
Návštěvník
Návštěvník
Příspěvky: 107
Registrován: 11 říj 2009 17:52
Bydliště: PB, SVK

Re: Extrémne spomalený PC

#7 Příspěvek od shatterhand »

Nejakú dobu mi trvalo, kým som spustil núdzový režim. Lenže v núdzovom režime zmizla ikona Frst, nedá sa ani vyhľadať. A nejde v ňom ani internet, toto píšem z iného PC.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118197
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Extrémne spomalený PC

#8 Příspěvek od Rudy »

Stáhněte ji tedy ne externí médium v normálním režimu a pak ji v nouzáku do PC nakopírujte. Stalo se mi poprvé, aby fixlog nebyl v adresáři, kde by měl být. Je to divné.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět