Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

zpomalené browsery

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zpráva
Autor
dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

zpomalené browsery

#1 Příspěvek od dinospages »

Ahoj rádci, opět se obracím na Vás jelikož se mi můj NTB nezdá v kondici, pocmalé načítání v internetových browserech ( pritom mam doma o nekolik generaci slabsi notebook a tam to jede hladce).

Co se týčr práce na PC tak mi nepřijde nijak moc omezená jen ten net je hroznej, a je to ať používám operu nebo chrom stejné.

Nechci to řešit reinstalem, a chci se pokusit to vyřešit zde s Vámi.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2021
Ran by lenovo (administrator) on LENOVO-PC (LENOVO 20A7003UMC) (14-02-2021 22:07:58)
Running from C:\Users\lenovo\Desktop
Loaded Profiles: lenovo
Platform: Windows 10 Pro Version 1909 18363.1379 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ANDREA VACONDIO -> ANDREA VACONDIO) C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Corel Corporation -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe <3>
(Fengtao Software Inc. -> DVDFab Software) C:\Program Files\DVDFab Virtual Drive\vdrive.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HP Color LaserJet CM2320 MFP Series\hppfaxprintersrv.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\dfrctl.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo -> Lenovo.) C:\Windows\System32\TpShocks.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe <2>
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2012.21.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(Monet+, a.s. -> Monet+, a.s.) C:\Windows\SysWOW64\xmesrv.exe
(NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\nsmservice.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe
(Trichilia Consultants Limited -> CloudBerry Lab) C:\Program Files\Remote Assistant\CloudRaService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\Dr.Fone for iOS\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [151768 2013-09-19] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [HP Color LaserJet CM2320 MFP Series Fax] => C:\Program Files (x86)\HP\HP Color LaserJet CM2320 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company) [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-07-19] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436704 2020-09-28] (Corel Corporation -> WinZip Computing, S.L.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\lenovo\AppData\Local\slack\Update.exe [1559056 2019-01-26] (Slack Technologies, Inc. -> )
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [49654728 2018-06-26] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [698328 2019-02-21] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Run: [DVDFab VDrive] => C:\Program Files\DVDFab Virtual Drive\vdrive.exe [621472 2014-08-29] (Fengtao Software Inc. -> DVDFab Software)
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\lenovo\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAR.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpcpp093: C:\Windows\System32\spool\prtprocs\x64\hpcpp093.DLL [300032 2009-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\LogMeIn Print Processor: C:\Windows\System32\spool\prtprocs\x64\LMIproc.dll [60416 2016-01-29] (LogMeIn, Inc. -> LogMeIn, Inc.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3100 series: C:\WINDOWS\system32\CNMLMAR.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\FPP6:: C:\WINDOWS\system32\fppmon6.dll [722112 2017-02-28] (FinePrint Software, LLC -> FinePrint Software, LLC)
HKLM\...\Print\Monitors\HP Fax Port: C:\WINDOWS\system32\hppfaxprintermon5.dll [22016 2009-09-22] (Hewlett-Packard Company) [File not signed]
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2008-03-03] (Hewlett Packard) [File not signed]
HKLM\...\Print\Monitors\KM Language Monitor: C:\WINDOWS\system32\KMPJL64.DLL [99328 2017-12-15] (Microsoft Windows Hardware Compatibility Publisher -> KYOCERA Document Solutions Inc.)
HKLM\...\Print\Monitors\KX Language Monitor: C:\WINDOWS\system32\KXPLM64.DLL [134664 2018-08-17] (Microsoft Windows Hardware Compatibility Publisher -> KYOCERA Document Solutions Inc.)
HKLM\...\Print\Monitors\LogMeIn Printer Port Monitor: C:\WINDOWS\system32\LMIport.dll [35328 2016-01-29] (LogMeIn, Inc. -> LogMeIn, Inc.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [36864 2014-02-05] (Windows (R) Win 7 DDK provider) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe [2021-02-10] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{65CD7F9B-E8F3-4bb0-82EB-6F6875B745DF}] -> C:\WINDOWS\system32\LMIinit.dll [2016-10-12] (LogMeIn, Inc. -> LogMeIn, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-10-13]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ThinkPad OneLink Dock Management.lnk [2015-10-27]
ShortcutTarget: ThinkPad OneLink Dock Management.lnk -> C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2021-01-23]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
Startup: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2018-03-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0017E9A5-E470-4914-BE7F-3CE0240779B0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {08407A7C-FF6B-4C09-B755-C6D95165A64B} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {09E55BF0-C096-4365-8519-98A71A2BF97B} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [263504 2016-06-02] (LENOVO -> )
Task: {0DFBEDA0-7D8C-49B9-8236-4A440254771A} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {1AC248B0-721D-4CF5-AD45-693635A1BD01} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe [1372392 2019-02-13] (AVAST Software s.r.o. -> AVAST Software)
Task: {1B17838C-4125-47B7-A090-015166FBCFB2} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [851800 2018-12-25] (Lenovo -> Lenovo.)
Task: {1CAD2A15-582E-4D57-9B47-293F98554745} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [113024 2019-11-12] (Lenovo -> Lenovo)
Task: {1EA0F0E5-51BC-4B6D-BE1F-772D96EAC81B} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {237FF799-C170-4967-A42A-E1B53C149B9F} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [59776 2019-11-12] (Lenovo -> )
Task: {23EB0A6A-1AEA-495A-9548-B8831254588A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4621920 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
Task: {2773A43E-8F69-4743-979D-9F9D2C4E3A73} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1732064c-8150-4c01-8615-41187c66348d => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [58176 2017-07-22] () [File not signed]
Task: {28F4E00B-8302-4638-B899-7A224B796F42} - System32\Tasks\AutoPico Daily Restart => D:\install\crack_all_WIN\Portable\AutoPico.exe [740544 2015-11-01] (@ByELDI -> @ByELDI) [File not signed]
Task: {2C3337A4-80A3-4286-AC60-456538533D9F} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4214872 2018-01-19] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {372257BC-A33C-4E69-B9E9-4ADCA43C2B35} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-20] (Avast Software s.r.o. -> Avast Software)
Task: {38AA9FBC-7A7D-43F0-8FA2-B5B45B28808A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23083408 2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E64EDD9-8799-4CC1-9CAC-08C35F496E07} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {3EEDD1EF-C09A-4392-8186-B725986B5C9B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {402A798E-600F-494C-A79E-83E58DF77C50} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {40C09469-038D-40F7-9F33-2BF641328610} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {458CCB01-B39C-4BD9-A280-0CB8391E81E5} - System32\Tasks\Opera scheduled Autoupdate 1493068622 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software)
Task: {47D2703D-A2D7-49E5-97FE-402DCEE22044} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4DACA452-3F57-4E21-8A24-C670317C3FC5} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {4F8EC955-58B6-4349-BD92-4605157798B3} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {50686E5A-60F5-4F11-AE2C-D017C1CFE31F} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService
Task: {510F9E47-1434-4704-BDCC-441601C402FD} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {5188F072-1187-4C56-8988-8D1D04E1D192} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-05-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Flash Player PPAPI Notifier" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\AutoPico Daily Restart" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\DolbySelectorTask" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\DropboxUpdateTaskMachineCore" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\DropboxUpdateTaskMachineUA" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\Lenovo Active Protection System" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\Lenovo Power Management Driver PnP Task" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-1864349024-1291946563-1421522111-1001" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1582647494" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1582894829" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1493068622" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1493069008" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\RtHDVBg_Dolby" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\RTKCPL" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\Synaptics TouchPad Enhancements" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\update-S-1-5-21-1864349024-1291946563-1421522111-1001" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\update-sys" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(26): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{203AD8B5-B1A9-434B-A23A-4D0D6EDE1F37}" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(27): schtasks.exe -> /Change /TN "\WinZip Update Notifier 1" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(28): schtasks.exe -> /Change /TN "\WinZip Update Notifier 2" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(29): schtasks.exe -> /Change /TN "\WinZip Update Notifier 3" /ENABLE
Task: {6387FC70-4957-4EB8-8853-9B60AD272EEA} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(30): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {63CC28A4-6568-4C3A-8554-224CA6B10987} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {6A0A2045-A7ED-42CD-A237-4CBF97DA2203} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16864 2015-12-11] (LENOVO -> Lenovo)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F96D568-DABF-4AC2-9F2D-5C39E190E1B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-17] (Google Inc -> Google Inc.)
Task: {768D31A3-00FC-418C-A6A3-0ADBB02BBB99} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {80B9D14E-4E1D-4534-898B-E1D8F25CD4D9} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {8198BBBD-B6E2-4289-88D6-1CCF40AF768C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-05-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8706D10F-05CE-4CCA-9475-9A40BAD1F949} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23083408 2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {89C58118-0DA8-4F19-ABA0-CB5ACFECDED0} - System32\Tasks\Xerox\Xerox PowerENGAGE Update => C:\Program Files (x86)\Xerox PowerENGAGE\xeroxreg.exe [117984 2016-09-13] (Aviata Inc -> Aviata Inc)
Task: {8D96780B-8F9E-4308-A2BC-8A408CAA1E57} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-08] (Adobe Inc. -> Adobe)
Task: {8FAF77C0-EE7F-44C0-B53C-25E6F9D1789C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {8FD3C403-CDD8-4124-8833-C512911B09EA} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\ea35caa3-4cee-40cc-b6a2-5ed8a3240e32 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [58176 2017-07-22] () [File not signed]
Task: {9A03A3BA-8816-4CAC-B072-C3BA146568B6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {ABF48A92-1D5D-4D83-95C1-E6FED77EA024} - System32\Tasks\Opera scheduled assistant Autoupdate 1582647494 => C:\Program Files\Opera developer\launcher.exe [2139800 2021-02-01] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera developer\assistant" $(Arg0)
Task: {AC1C00D5-0558-4B32-AFA3-8EF615E8F501} - System32\Tasks\Lenovo Active Protection System => C:\WINDOWS\system32\TpShUI.exe [120424 2017-03-21] (Lenovo -> Lenovo.)
Task: {AC467E91-A090-48E2-A9FA-1F4C4261DE50} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5207464 2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1EFBF0D-7FDB-4CD8-ADC4-6CB09D9AE40C} - System32\Tasks\Xerox\Xerox PowerENGAGE => C:\Program Files (x86)\Xerox PowerENGAGE\xeroxreg.exe [117984 2016-09-13] (Aviata Inc -> Aviata Inc)
Task: {BA43BE9B-2441-4846-A1E1-8FDD8C311545} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {C73DD919-FF74-49FD-9C5D-3096C69C027F} - System32\Tasks\Lenovo\Gesture Control => C:\Program Files (x86)\eyeSight\Gesture Control\GestureControl.exe [972408 2013-11-23] (eyeSight Mobile Technologies Ltd. -> Lenovo)
Task: {C85B2636-B97A-4159-A70E-5EF4D4E57D12} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {C9E9971E-5727-41C3-9EF6-A10F4D6A8D40} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {C9FDA486-7574-41E0-B25D-D1C9806AAC48} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5207464 2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CFE81841-0E10-4B02-8AEC-D54AC172529C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141160 2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D4599AE9-5E8B-4358-92D5-8228F83172DC} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {D4E7A05C-716E-40AD-B055-D1F94359D181} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {D4FD2967-605C-44C2-991B-6B1B22594BBF} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-06-02] (LENOVO -> Lenovo)
Task: {DA07D503-6706-4D7F-90CA-FCA896DC5FDE} - System32\Tasks\Opera scheduled Autoupdate 1493069008 => C:\Program Files\Opera developer\launcher.exe [2139800 2021-02-01] (Opera Software AS -> Opera Software) <==== ATTENTION
Task: {E8919890-E57F-47CC-8258-A412B02DB213} - System32\Tasks\update-S-1-5-21-1864349024-1291946563-1421522111-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {EF6C8811-0AFE-483A-AC83-32E0538FB98E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a73ab013-31ae-48bb-9220-71e175a96ff3 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [58176 2017-07-22] () [File not signed]
Task: {F024A8E9-73B3-45CD-8B75-EA2724A4A0EC} - System32\Tasks\Opera scheduled assistant Autoupdate 1582894829 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {F34D939A-8525-4D2F-9FF6-ECA4CD6269C1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-17] (Google Inc -> Google Inc.)
Task: {F6B56C82-36A4-4B82-8CFE-B5103F15DF7A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141160 2021-02-09] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Lenovo Active Protection System.job => C:\WINDOWS\system32\TpShUI.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1864349024-1291946563-1421522111-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{7f2a1657-b74e-42d2-8add-792f12380bce}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{b92ad113-ec50-48d8-b321-ade161312f68}: [NameServer] 192.168.0.254,8.8.8.8
Tcpip\..\Interfaces\{c3a1389c-bacc-423c-85d0-58889e326a7b}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Edge:
=======
DownloadDir: C:\Users\lenovo\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-13]
Edge HomePage: Default -> hxxp://www.google.com
Edge Extension: (LastPass: Free Password Manager) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-02-13]
Edge Extension: (Přihlášení do aplikace Partner24) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mcimcldmgjgkdhdgifbfiblffdhddbpa [2020-07-15]
Edge Extension: (True Key™ by McAfee) - C:\Users\lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nbeldjopgciegccabfohnefghfpinncn [2021-01-17]

FireFox:
========
FF DefaultProfile: g6d930ts.default
FF ProfilePath: C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\g6d930ts.default [2021-02-07]
FF Homepage: Mozilla\Firefox\Profiles\g6d930ts.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\g6d930ts.default -> about:newtab
FF Extension: (ZenMate Security, Privacy & Unblock VPN) - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\g6d930ts.default\Extensions\firefox@zenmate.com.xpi [2017-06-05] [Legacy]
FF Extension: (Avast Passwords) - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\g6d930ts.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2017-04-16] [Legacy]
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: csas.cz/Partner24 -> C:\Program Files (x86)\Partner24\npPartner24.dll [2016-11-14] (Ceska sporitelna, a.s.) [File not signed]
FF Plugin HKU\S-1-5-21-1864349024-1291946563-1421522111-1001: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [No File]
FF Plugin HKU\S-1-5-21-1864349024-1291946563-1421522111-1001: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default [2021-02-14]
CHR Notifications: Default -> hxxps://1xbet.com; hxxps://22bet.com; hxxps://betrally.webpu.sh; hxxps://betwinner.com; hxxps://cs.compbs.com; hxxps://dailypriceaction.com; hxxps://eir.cisco.com; hxxps://gcx.aliexpress.com; hxxps://jablickar.cz; hxxps://meet.google.com; hxxps://nd.push-free.com; hxxps://thehypenewz.com; hxxps://twitter.com; hxxps://www.1xbet.com; hxxps://www.24hbet.com; hxxps://www.alibaba.com; hxxps://www.aliexpress.com; hxxps://www.betrally.com; hxxps://www.bhphotovideo.com; hxxps://www.chance.cz; hxxps://www.facebook.com; hxxps://www.financnik.cz; hxxps://www.kemo.rocks; hxxps://www.letemsvetemapplem.eu; hxxps://www.reddit.com; hxxps://www.sejda.com; hxxps://www.slbet.com; hxxps://www.svetandroida.cz; hxxps://www.tipsport.cz; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Extension: (Adobe Acrobat) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-28]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-02-11]
CHR Extension: (Přihlášení do aplikace Partner24) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcimcldmgjgkdhdgifbfiblffdhddbpa [2019-09-25]
CHR Extension: (True Key™ by McAfee) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbeldjopgciegccabfohnefghfpinncn [2020-12-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Chrome Media Router) - C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-20]
CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-07]
CHR Profile: C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-07]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

Opera:
=======
OPR Profile: C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable [2021-02-13]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-01-19]
StartMenuInternet: (HKLM) Operadeveloper - C:\Program Files\Opera developer\Launcher.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [351848 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990088 2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-05-10] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-05-10] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed]
S2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [58176 2017-07-22] () [File not signed]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-19] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-11] (Lenovo(Japan)Ltd. -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892760 2018-12-25] (Lenovo -> Lenovo.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-06-02] (LENOVO -> Lenovo)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
R2 nsmService; C:\Program Files (x86)\NetSetMan\nsmservice.exe [1782976 2017-04-24] (NetSetMan GmbH -> NetSetMan GmbH)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [74712 2019-02-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [74712 2019-02-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 ovpnagent; C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe [900840 2017-08-14] (OpenVPN Technologies, Inc. -> )
R2 PDFsam Manager; C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe [1050224 2015-11-13] (ANDREA VACONDIO -> ANDREA VACONDIO)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
R2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-07-16] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [138232 2013-07-16] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
R2 Remote Assistant Service; C:\Program Files\Remote Assistant\CloudRaService.exe [72864 2020-02-28] (Trichilia Consultants Limited -> CloudBerry Lab)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\Dr.Fone for iOS\Library\DriverInstaller\DriverInstall.exe [119008 2017-06-28] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 XeroxProdRegManager; C:\Program Files (x86)\Xerox PowerENGAGE\EngageService.exe [293608 2016-09-13] (Aviata Inc -> Aviata, Inc.)
R2 xmengine service; C:\WINDOWS\SysWOW64\xmesrv.exe [34696 2009-09-25] (Monet+, a.s. -> Monet+, a.s.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36792 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2021-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522480 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2021-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [44640 2014-09-05] (AVAST Software a.s. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R3 BcmNfcIc; C:\WINDOWS\System32\drivers\BcmNfcIc.sys [77016 2015-10-27] (Broadcom Corporation -> Broadcom Corporation.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-14] (Microsoft Corporation) [File not signed]
R3 CM3218x; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 CPLMACPI; C:\WINDOWS\System32\drivers\CPLMACPI.sys [28136 2015-06-16] (Capella Microsystems Inc. -> Capella Microsystems, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [99384 2012-02-15] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R1 dvdfabio; C:\WINDOWS\system32\drivers\dvdfabio.sys [12704 2014-08-29] (Fengtao Software Inc. -> DVDFab Software)
S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [2116728 2017-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 LENOVODOCK; C:\WINDOWS\System32\drivers\LenovoDock.sys [572416 2013-10-29] (Microsoft Windows Hardware Compatibility Publisher -> C-Media Inc.)
S3 massfilter_hs; C:\WINDOWS\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (ZTE CORPORATION -> HandSet Incorporated)
R3 MbmUsbSerial; C:\WINDOWS\System32\Drivers\MbmUsbSerial.sys [81392 2015-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Ericsson AB)
R3 MkBusFilter; C:\WINDOWS\system32\DRIVERS\MbmDeviceFilter.sys [42208 2015-06-30] (Ericsson AB -> )
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2017-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44160 2018-12-25] (Lenovo -> Lenovo.)
R3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2016-06-15] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [203320 2012-02-15] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 STHFK; C:\WINDOWS\System32\Drivers\sthfk64.sys [46192 2016-02-29] (EuroCb (Phils) Inc. -> CSR plc.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-06-07] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapipvanish; C:\WINDOWS\System32\drivers\tapipvanish.sys [45552 2016-09-22] (IPVanish (Mudhook Marketing, Inc) -> The OpenVPN Project)
S3 tpnflhlp; C:\ProgramData\Lenovo\SystemUpdate\sessionSE\Repository\gruj32us\tpnflhlp.sys [26448 2016-07-07] (LENOVO -> Lenovo Group Limited)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-14] (Microsoft Corporation) [File not signed]
R3 vdrive; C:\WINDOWS\System32\drivers\vdrive.sys [44960 2014-08-29] (Fengtao Software Inc. -> DVDFab Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-17] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-14 22:07 - 2021-02-14 22:10 - 000053759 ____C C:\Users\lenovo\Desktop\FRST.txt
2021-02-14 22:07 - 2021-02-14 22:06 - 002297856 ____C (Farbar) C:\Users\lenovo\Desktop\FRST64.exe
2021-02-14 22:06 - 2021-02-14 22:06 - 002297856 _____ (Farbar) C:\Users\lenovo\Downloads\FRST64.exe
2021-02-14 22:02 - 2021-02-14 22:02 - 000007605 _____ C:\Users\lenovo\AppData\Local\Resmon.ResmonCfg
2021-02-12 19:52 - 2021-02-12 19:52 - 000824090 _____ C:\Users\lenovo\Downloads\2021-02-12 15-40.pdf
2021-02-12 19:16 - 2021-02-12 19:18 - 376388712 _____ (Lenovo ) C:\Users\lenovo\Downloads\SystemInterfaceFoundation.exe
2021-02-12 16:32 - 2021-02-12 16:32 - 000000000 ____D C:\Users\lenovo\.QtWebEngineProcess
2021-02-12 16:32 - 2021-02-12 16:32 - 000000000 ____D C:\Users\lenovo\.LSC
2021-02-12 15:15 - 2021-02-12 15:15 - 000000165 ____H C:\Users\lenovo\Downloads\~$Maruska_MK2020_vyúčtování_vypořádání_(1)-1.xlsx
2021-02-12 15:14 - 2021-02-12 15:14 - 000015582 _____ C:\Users\lenovo\Downloads\Maruska_MK2020_vyúčtování_vypořádání_(1)-1.xlsx
2021-02-11 21:52 - 2021-02-11 21:52 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-11 21:52 - 2021-02-11 21:52 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-02-11 21:52 - 2021-02-11 21:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-02-11 21:51 - 2021-02-11 21:51 - 000232752 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-11 09:11 - 2021-02-11 09:11 - 000069361 _____ C:\Users\lenovo\Downloads\seznam-clenu_neoverene_emaily.pdf
2021-02-11 09:08 - 2021-02-11 09:11 - 000072192 _____ C:\Users\lenovo\Downloads\seznam-clenu_neoverene_adresy.xls
2021-02-10 22:12 - 2021-02-11 01:10 - 000000000 ___DC C:\Users\lenovo\Desktop\BM_drahokoupil_
2021-02-10 20:25 - 2021-02-10 20:25 - 003725710 _____ C:\Users\lenovo\Downloads\drahokoupil.PDF
2021-02-10 13:27 - 2021-02-10 13:27 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe
2021-02-10 13:27 - 2021-02-10 13:27 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll
2021-02-10 13:22 - 2021-02-13 11:24 - 000002552 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2021-02-09 22:29 - 2021-02-09 22:29 - 003725710 _____ C:\Users\lenovo\Desktop\drahokoupil.PDF
2021-02-09 20:03 - 2021-02-09 20:03 - 000266987 _____ C:\Users\lenovo\Downloads\PU21-02031.pdf
2021-02-09 19:31 - 2021-02-09 19:31 - 000235687 _____ C:\Users\lenovo\Downloads\PojS_24_16_Příloha č. 5 - Plná moc k zastupování.pdf
2021-02-09 18:48 - 2021-02-09 18:48 - 000058206 _____ C:\Users\lenovo\Downloads\vypis-802689.pdf
2021-02-09 18:43 - 2021-02-09 18:43 - 000000000 ____D C:\ProgramData\Brother
2021-02-09 18:07 - 2021-02-09 18:07 - 000083591 _____ C:\Users\lenovo\Downloads\zadost_zrizeni_ds.zfo
2021-02-09 16:54 - 2021-02-11 15:43 - 000021634 _____ C:\Users\lenovo\Downloads\MK2020_vyúčtování_vypořádání (1).xlsx
2021-02-09 16:54 - 2021-02-09 16:54 - 002511981 _____ C:\Users\lenovo\Downloads\MUJ_KLUB_2020_manual vyuctovani a FV_fin.pdf
2021-02-08 20:48 - 2021-02-09 16:47 - 000000000 ____D C:\Users\lenovo\Downloads\la
2021-02-08 20:48 - 2020-08-24 10:24 - 000714349 _____ C:\Users\lenovo\Downloads\CS_3_17_13_Informační_dokument_o_pojistném_produktu_PPI.pdf
2021-02-08 20:47 - 2021-02-08 20:47 - 001668136 _____ C:\Users\lenovo\Downloads\CS_3_17_13_Pojištění_schopnosti_splácet_PPI.zip
2021-02-06 22:47 - 2021-02-06 22:47 - 000249061 _____ C:\Users\lenovo\Downloads\NAVOD-K-VYPLNENI-VYUCTOVANI.pdf
2021-02-06 22:47 - 2021-02-06 22:47 - 000221103 _____ C:\Users\lenovo\Downloads\POKYNY-K-VYUCTOVANI-DOTACE.pdf
2021-02-06 22:47 - 2021-02-06 22:47 - 000220748 _____ C:\Users\lenovo\Downloads\P1_VYUCTOVANI_DOTACE.xlsx
2021-02-06 17:36 - 2021-02-14 21:31 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Telegram Desktop
2021-02-06 17:36 - 2021-02-06 17:36 - 026974664 _____ (Telegram FZ-LLC ) C:\Users\lenovo\Downloads\tsetup.2.5.8.exe
2021-02-06 17:36 - 2021-02-06 17:36 - 000001086 ____C C:\Users\lenovo\Desktop\Telegram.lnk
2021-02-06 17:36 - 2021-02-06 17:36 - 000000000 ___DC C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2021-02-05 06:45 - 2021-02-05 06:45 - 000024592 _____ C:\Users\lenovo\Downloads\harmonogram skoleni.pdf
2021-02-05 06:44 - 2021-02-05 06:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-02-04 19:33 - 2021-02-04 19:33 - 001348877 _____ C:\Users\lenovo\Downloads\Drahokoupil daně.pdf
2021-02-04 09:02 - 2021-02-04 09:02 - 000000705 ____C C:\Users\lenovo\Desktop\SierraChart64.lnk
2021-02-04 09:00 - 2021-02-04 09:01 - 000000000 ___DC C:\Users\lenovo\Desktop\Denvel_SOFT
2021-02-03 22:18 - 2021-02-03 22:34 - 000021616 _____ C:\Users\lenovo\Downloads\MK2020_vyúčtování_vypořádání.xlsx
2021-02-03 21:28 - 2021-02-03 21:28 - 000989754 _____ C:\Users\lenovo\Downloads\JAN_NÝDRLE_Smlouva o HU.pdf
2021-02-03 21:09 - 2021-02-03 21:11 - 093291681 _____ C:\Users\lenovo\Downloads\com.android.chrome_v87.0.4280.141-428014110_Android-5.0.apk
2021-02-03 14:44 - 2021-02-03 14:44 - 002705408 _____ C:\Users\lenovo\Downloads\Nová schůzka v rámci kanálu-20210203_134342-Meeting Recording.mp4
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-02-01 21:19 - 2021-02-01 21:19 - 000070903 _____ C:\Users\lenovo\Downloads\Trading_log.xlsx
2021-01-29 16:17 - 2021-01-29 16:17 - 002089918 _____ C:\Users\lenovo\Downloads\přerušení.pdf
2021-01-29 16:17 - 2021-01-29 16:17 - 000120129 _____ C:\Users\lenovo\Downloads\rozpočet RD Drahokoupil.pdf
2021-01-29 08:19 - 2021-02-12 15:52 - 000002424 ____C C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-29 08:19 - 2021-02-12 15:52 - 000002416 ____C C:\Users\lenovo\Desktop\Microsoft Teams.lnk
2021-01-29 08:19 - 2021-01-29 08:19 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Teams
2021-01-28 15:31 - 2021-01-28 15:31 - 014779520 _____ (Zoom Video Communications, Inc.) C:\Users\lenovo\Downloads\ZoomInstaller.exe
2021-01-28 15:31 - 2021-01-28 15:31 - 000000000 ___DC C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-01-28 15:31 - 2021-01-28 15:31 - 000000000 ____D C:\Users\lenovo\AppData\Roaming\Zoom
2021-01-23 07:53 - 2021-02-13 11:24 - 000002688 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2021-01-23 07:53 - 2021-02-13 11:24 - 000002686 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2021-01-23 07:53 - 2021-02-13 11:24 - 000002686 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2021-01-23 07:53 - 2021-01-23 07:57 - 000000000 ____D C:\Users\lenovo\AppData\Local\WinZip
2021-01-23 07:53 - 2021-01-23 07:53 - 000002098 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk
2021-01-23 07:53 - 2021-01-23 07:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2021-01-23 07:52 - 2021-01-23 07:54 - 000000000 ____D C:\ProgramData\WinZip
2021-01-23 07:52 - 2021-01-23 07:52 - 000000000 ____D C:\Program Files\WinZip
2021-01-23 07:51 - 2021-01-23 07:51 - 000000000 ____D C:\ProgramData\UniqueId
2021-01-22 11:23 - 2021-01-22 11:23 - 000273870 ____C C:\Users\lenovo\Desktop\Tonar_vyber_conseq.pdf
2021-01-22 09:44 - 2021-01-22 09:59 - 000000000 ___DC C:\Users\lenovo\Desktop\FOTO_RD_STAS
2021-01-17 00:03 - 2021-01-17 00:03 - 000000000 ____D C:\WINDOWS\Panther

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-14 22:09 - 2019-04-28 20:57 - 000000000 ____D C:\FRST
2021-02-14 22:02 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-14 21:33 - 2019-09-11 19:05 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-14 21:33 - 2019-03-19 12:57 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-14 21:33 - 2019-03-19 12:57 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-14 21:33 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-02-14 21:30 - 2018-02-24 11:00 - 000000000 ____D C:\Program Files\CCleaner
2021-02-14 21:29 - 2019-09-11 19:06 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-14 21:28 - 2015-12-17 09:39 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-14 21:26 - 2019-09-11 19:06 - 000003700 _____ C:\WINDOWS\system32\Tasks\Lenovo Power Management Driver PnP Task
2021-02-14 21:26 - 2019-05-02 11:56 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-02-14 21:26 - 2018-03-19 14:48 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-14 21:26 - 2015-12-18 06:08 - 000000000 __SHD C:\Users\lenovo\IntelGraphicsProfiles
2021-02-14 21:25 - 2019-09-11 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-14 21:25 - 2019-09-11 18:58 - 000000000 ____D C:\Users\lenovo
2021-02-14 21:25 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-14 21:25 - 2017-11-18 01:22 - 000000000 ____D C:\ProgramData\Synaptics
2021-02-14 21:15 - 2019-09-11 18:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-14 11:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-14 00:26 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-13 11:56 - 2020-07-15 15:03 - 000002407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-13 11:49 - 2019-12-13 08:53 - 000000410 _____ C:\WINDOWS\Tasks\update-sys.job
2021-02-13 11:49 - 2019-12-13 08:53 - 000000410 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1864349024-1291946563-1421522111-1001.job
2021-02-13 11:49 - 2017-02-07 12:13 - 000000346 _____ C:\WINDOWS\Tasks\Lenovo Active Protection System.job
2021-02-13 11:49 - 2016-05-10 10:32 - 000000928 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-02-13 11:49 - 2016-05-10 10:32 - 000000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-02-13 11:24 - 2020-11-04 18:48 - 000003506 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582894829
2021-02-13 11:24 - 2020-09-02 18:48 - 000003546 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582647494
2021-02-13 11:24 - 2020-07-15 15:02 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-13 11:24 - 2020-07-15 15:02 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-13 11:24 - 2019-12-13 08:53 - 000003046 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-1864349024-1291946563-1421522111-1001
2021-02-13 11:24 - 2019-12-13 08:53 - 000002790 _____ C:\WINDOWS\system32\Tasks\update-sys
2021-02-13 11:24 - 2019-09-11 19:06 - 000003830 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2021-02-13 11:24 - 2019-09-11 19:06 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2021-02-13 11:24 - 2019-09-11 19:06 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-13 11:24 - 2019-09-11 19:06 - 000003442 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-02-13 11:24 - 2019-09-11 19:06 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-13 11:24 - 2019-09-11 19:06 - 000003344 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{203AD8B5-B1A9-434B-A23A-4D0D6EDE1F37}
2021-02-13 11:24 - 2019-09-11 19:06 - 000003314 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1493069008
2021-02-13 11:24 - 2019-09-11 19:06 - 000003294 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1493068622
2021-02-13 11:24 - 2019-09-11 19:06 - 000003218 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-02-13 11:24 - 2019-09-11 19:06 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-13 11:24 - 2019-09-11 19:06 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-13 11:24 - 2019-09-11 19:06 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1864349024-1291946563-1421522111-1001
2021-02-13 11:24 - 2019-09-11 19:06 - 000002306 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_Dolby
2021-02-13 11:24 - 2019-09-11 19:06 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2021-02-13 11:24 - 2019-09-11 19:06 - 000002274 _____ C:\WINDOWS\system32\Tasks\DolbySelectorTask
2021-02-13 11:24 - 2019-09-11 19:06 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-02-13 11:24 - 2019-09-11 19:06 - 000002138 _____ C:\WINDOWS\system32\Tasks\Lenovo Active Protection System
2021-02-13 11:24 - 2019-09-11 19:06 - 000002048 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2021-02-12 20:59 - 2019-09-11 19:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-02-12 15:15 - 2018-02-12 10:45 - 000000000 ___DC C:\Users\lenovo\AppData\Local\Packages
2021-02-12 15:10 - 2018-02-12 10:52 - 000000000 ___RD C:\Users\lenovo\3D Objects
2021-02-12 06:19 - 2015-12-18 11:01 - 000038831 _____ C:\WINDOWS\SysWOW64\QuickControlService.dmp
2021-02-12 04:02 - 2019-09-11 18:54 - 000760464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-12 04:01 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 03:45 - 2016-04-19 19:27 - 000000000 ___DC C:\Users\lenovo\AppData\Local\CrashDumps
2021-02-11 21:55 - 2019-03-19 12:59 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-02-11 21:55 - 2019-03-19 12:59 - 000019469 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-02-11 21:55 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-11 15:49 - 2018-09-09 07:06 - 000000000 ___DC C:\Users\lenovo\Documents\PDF files
2021-02-10 23:46 - 2015-12-17 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 23:38 - 2015-12-17 19:47 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-10 19:57 - 2017-04-24 22:23 - 000000000 ____D C:\Program Files\Opera developer
2021-02-10 19:57 - 2017-04-24 22:16 - 000000000 ____D C:\Program Files\Opera
2021-02-10 19:57 - 2016-01-20 10:43 - 000002107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-10 19:56 - 2015-12-17 09:01 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-10 13:34 - 2019-09-11 18:58 - 000002419 ____C C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-10 13:34 - 2015-12-18 06:10 - 000000000 ___RD C:\Users\lenovo\OneDrive
2021-02-09 05:40 - 2018-02-20 14:27 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-07 19:10 - 2018-07-18 21:54 - 000000000 ___DC C:\Users\lenovo\AppData\Local\D3DSCache
2021-02-05 06:44 - 2016-05-10 10:31 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-02-04 09:03 - 2018-01-11 18:01 - 000000000 ____D C:\SierraChart
2021-02-04 07:25 - 2019-03-03 21:55 - 000000000 ___DC C:\Users\lenovo\AppData\Local\myWAC
2021-02-04 07:25 - 2019-03-03 21:55 - 000000000 ____D C:\Program Files (x86)\myWAC
2021-02-02 19:25 - 2017-04-24 22:23 - 000001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera developer.lnk
2021-02-01 12:40 - 2018-02-12 10:54 - 000000000 ___DC C:\Users\lenovo\AppData\Local\PlaceholderTileLogoFolder
2021-01-29 08:19 - 2017-03-28 08:32 - 000000000 ___DC C:\Users\lenovo\AppData\Local\SquirrelTemp
2021-01-26 11:59 - 2018-07-11 00:17 - 000000000 ____D C:\ProgramData\Packages
2021-01-22 14:28 - 2018-03-19 10:09 - 000000000 ____D C:\Program Files (x86)\BOSSAFX
2021-01-22 14:18 - 2016-01-20 10:51 - 000000000 ___DC C:\Users\lenovo\AppData\Local\ČSOB_Pojišťovna,_a.s
2021-01-22 14:17 - 2016-06-28 11:14 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2021-01-22 14:17 - 2016-03-08 13:34 - 000000000 ___DC C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetLife
2021-01-22 14:15 - 2020-02-17 21:05 - 000000000 ____D C:\Users\lenovo\AppData\Local\TomTom
2021-01-22 14:14 - 2018-01-19 10:45 - 000000000 ____D C:\Program Files (x86)\NinjaTrader 8
2021-01-22 14:09 - 2019-10-21 18:11 - 000000000 ____D C:\Users\lenovo\AppData\Local\Deployment
2021-01-22 14:09 - 2018-05-12 07:01 - 000000000 ____D C:\Slavia
2021-01-22 14:04 - 2018-05-20 17:34 - 000000000 ___DC C:\Users\lenovo\AppData\Local\LogMeIn Hamachi
2021-01-22 14:04 - 2017-02-08 11:21 - 000000000 ___DC C:\Users\lenovo\AppData\Roaming\TeamViewer
2021-01-22 14:04 - 2016-10-28 21:53 - 000000000 ____D C:\ProgramData\LogMeIn
2021-01-22 14:04 - 2016-10-28 21:44 - 000000000 ___DC C:\Users\lenovo\AppData\Roaming\uTorrent
2021-01-22 14:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-22 12:44 - 2020-01-15 10:55 - 000000000 ___DC C:\Users\lenovo\Desktop\MYWAC_plocha
2021-01-18 19:47 - 2017-07-04 08:00 - 000001124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-01-17 00:01 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-17 00:01 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-17 00:01 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
2021-01-17 00:01 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender

==================== Files in the root of some directories ========

2015-10-27 16:58 - 2015-12-17 09:34 - 000002274 ____C () C:\Users\lenovo\AppData\Roaming\AbsoluteReminder.xml
2017-07-03 13:47 - 2017-05-02 22:44 - 000000011 ____C () C:\Users\lenovo\AppData\Roaming\pecodec.dll
2016-09-14 01:03 - 2016-09-14 01:03 - 000004096 ___HC () C:\Users\lenovo\AppData\Local\keyfile3.drm
2015-10-27 16:57 - 2015-10-27 16:57 - 000000193 ____C () C:\Users\lenovo\AppData\Local\RegisteredPackageInformation.xml
2021-02-14 22:02 - 2021-02-14 22:02 - 000007605 _____ () C:\Users\lenovo\AppData\Local\Resmon.ResmonCfg
2019-12-13 08:53 - 2019-12-13 08:53 - 000000003 _____ () C:\Users\lenovo\AppData\Local\updater.log
2019-12-13 08:53 - 2019-12-13 08:53 - 000000424 _____ () C:\Users\lenovo\AppData\Local\UserProducts.xml
2020-01-31 16:38 - 2020-01-31 16:38 - 000000000 _____ () C:\Users\lenovo\AppData\Local\{193C99F5-98C8-44CC-A7B5-0E9D4C6A8F97}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
_________________________________________________________________
RSIT | MWAV | CCleaner

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#2 Příspěvek od dinospages »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-02-2021
Ran by lenovo (14-02-2021 22:14:12)
Running from C:\Users\lenovo\Desktop
Windows 10 Pro Version 1909 18363.1379 (X64) (2019-09-11 18:07:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1864349024-1291946563-1421522111-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1864349024-1291946563-1421522111-503 - Limited - Disabled)
Guest (S-1-5-21-1864349024-1291946563-1421522111-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1864349024-1291946563-1421522111-1003 - Limited - Enabled)
lenovo (S-1-5-21-1864349024-1291946563-1421522111-1001 - Administrator - Enabled) => C:\Users\lenovo
WDAGUtilityAccount (S-1-5-21-1864349024-1291946563-1421522111-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{0611B3CC-B5DB-4B93-ACE4-97B8F938E6B7}) (Version: 4.2.1 - Hewlett-Packard) Hidden
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20135 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.204 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.465 - Adobe)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{a2caa706-dce2-4c91-8d46-b52a3c260b20}) (Version: 21.10.1 - Intel Corporation)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
AXA Studio (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\1ec9ff54381d781f) (Version: 1.4.98.20454 - AXA Studio)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Balíček ovladače systému Windows - SuperTooth Hands Free Kit DFU driver (02/09/2016 2.4.0.7) (HKLM\...\2517ADEBF91C46544B723681D0D421F4712E905F) (Version: 02/09/2016 2.4.0.7 - SuperTooth)
Bandicam (HKLM-x32\...\Bandicam) (Version: 4.5.2.1602 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Barvy 4.1 (HKLM\...\Barvy_is1) (Version: - Vlastimil Burian)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BufferChm (HKLM-x32\...\{687FEF8A-8597-40b4-832C-297EA3F35817}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG3100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3100_series) (Version: - Canon Inc.)
Capella Micro CM3218x SPB Driver (HKLM-x32\...\CM3218x) (Version: 1.1.6.0 - Capella Microsystems, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
CPCSi_1_1_31_PPT (HKLM\...\{A3F9B37E-F67E-44B7-9F68-634376F3A600}) (Version: 1.1.31.16455 - Monet+, a.s.)
CustomerResearchQFolder (HKLM-x32\...\{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
ČSOBP Kalkulátory 1.27.0.x (HKLM-x32\...\Kalkulátory_is1) (Version: - )
DeviceDiscovery (HKLM-x32\...\{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}) (Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (HKLM-x32\...\{AB5D51AE-EBC3-438D-872C-705C7C2084B0}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7/8 (HKLM\...\DisableAMTPopup) (Version: 1.00 - )
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
dr.fone toolkit for iOS (Version 8.5.0) (HKLM-x32\...\{A26F8BBD-EC10-4bdc-8AD8-F146825A8A63}_is1) (Version: 8.5.0.54 - Wondershare Technology Co.,Ltd.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 115.4.601 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
DVDFab Virtual Drive (HKLM\...\DVDFab Virtual Drive_is1) (Version: 1.5.1.1 - Fengtao Software Inc.)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
eModel - MetLife (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\eModel) (Version: 2.2.0.3 - MetLife)
eModel - MetLife (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\W5070WG9.E3P) (Version: 2.2.0.0 - MetLife)
FLEXI SmartClient (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\6ed8a04184c5e4e7) (Version: 2.5.86.57576 - Kooperativa)
Generátor knihy jízd (HKLM-x32\...\Generátor knihy jízd) (Version: - )
Gesture Control (HKLM-x32\...\{5BD1491C-A955-44E1-ACC6-8AF7DFE41989}) (Version: 4.0.116.4 - Lenovo)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.1.47.5133 - Gretech Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.150 - Google LLC)
GoTo Opener (HKLM-x32\...\{1F803452-798F-49FB-A5DD-9F527F7017E4}) (Version: 1.0.473 - LogMeIn, Inc.)
HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
HP Color LaserJet CM2320 MFP Series 3.1 (HKLM\...\{ECF3E482-9188-4e29-9C31-E02FD8DC74C0}) (Version: 3.1 - HP)
HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
hppCLJCM2320 (HKLM-x32\...\{DD7D788B-D6C2-4CB1-AACC-8614D6C21D7C}) (Version: 003.001.00097 - Hewlett-Packard) Hidden
hppFaxDrvCM2320 (HKLM-x32\...\{B226235F-51A4-4090-B5DB-5482A28D1B0F}) (Version: 003.000.00001 - Hewlett-Packard) Hidden
hppFaxUtilityCM2320 (HKLM-x32\...\{511CA535-9CB1-4128-A30C-5F4C5D4AB848}) (Version: 003.001.00095 - Název společnosti:) Hidden
hppFonts (HKLM-x32\...\{995F2783-8311-49BF-833E-DB659774B4F6}) (Version: 001.001.00061 - Hewlett-Packard) Hidden
hppManualsCM2320 (HKLM-x32\...\{AE7C40B6-9C6D-4022-B017-A41A6B7FA4D3}) (Version: 003.001.00087 - Název společnosti:) Hidden
hppQFolderCM2320 (HKLM-x32\...\{FF841249-0D6B-41D7-8013-953EE3A33263}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
hppScanToCM2320 (HKLM-x32\...\{24495227-1B47-4D55-AC27-167B6BC3FF73}) (Version: 003.001.00090 - Název společnosti:) Hidden
hppSendFaxCM2320 (HKLM-x32\...\{99EE30D2-A7EA-486C-9AD4-57C8583375BF}) (Version: 003.000.00001 - Název společnosti:) Hidden
hppusgCM2320 (HKLM-x32\...\{77697747-7567-428D-8394-2287586F6974}) (Version: 1.1.0.1 - Hewlett-Packard) Hidden
iExplorer (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\2ee35ebaf226322a) (Version: 4.2.0.0 - Macroplant LLC)
iMazing HEIC Converter 1.0.10.0 (HKLM\...\{FA58AFA9-B210-409C-88F1-2A90D577C170}_is1) (Version: 1.0.10.0 - DigiDNA)
Inst5676 (HKLM\...\{878F6913-7421-4713-97F7-0A736EE2A188}) (Version: 8.00.55 - Softex Inc.) Hidden
Integrated Camera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10247 - Realtek Semiconductor Corp.)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1156 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.2 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.253.0 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
IPVanish (HKLM\...\{3CAA8FE3-47C3-48F3-B773-D4F81C1D88B7}) (Version: 3.2.5.1 - IPVanish) Hidden
IPVanish (HKLM-x32\...\IPVanish 3.2.5.1) (Version: 3.2.5.1 - IPVanish)
IQFeed Client 5.2.7.0 (HKLM-x32\...\IQFeed Client) (Version: 5.2.7.0 - DTN)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan)
iTunes (HKLM\...\{281A8A05-80EB-4B93-B825-C9FBEE17CE85}) (Version: 12.9.6.3 - Apple Inc.)
Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Kodi (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Kodi) (Version: - XBMC Foundation)
Kyocera Product Library (HKLM\...\Kyocera Product Library) (Version: 5.0.1120 - KYOCERA Document Solutions Inc.)
KYOCERA Status Monitor 5 (HKLM\...\{24EE7F6D-C648-463f-9E71-DC5FD2258D17}) (Version: 5.0.6015 - KYOCERA Document Solutions Inc.)
Kyocera TWAIN Driver (HKLM-x32\...\{4CC65EFD-0604-4978-B336-C43283645D58}) (Version: 2.0.1310 - KYOCERA Document Solutions Inc.) Hidden
Kyocera TWAIN Driver (HKLM-x32\...\InstallShield_{4CC65EFD-0604-4978-B336-C43283645D58}) (Version: 2.0.1310 - KYOCERA Document Solutions Inc.)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.14 - Lenovo) Hidden
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.05 - )
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Patch Utility (HKLM-x32\...\{E8F27ADF-B1ED-41AF-A7EF-D5E71778480C}) (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.16 - Lenovo) Hidden
Lenovo QuickControl (HKLM-x32\...\{4855C42F-5197-4AAD-A50D-5066D2CC4647}) (Version: 1.10 - Lenovo Group Limited)
Lenovo Solution Center (HKLM\...\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}) (Version: 3.3.003.00 - Lenovo)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.0.078.00 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0012.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Libertex MT4 (HKLM-x32\...\Libertex MT4) (Version: 4.00 - MetaQuotes Software Corp.)
LibreOffice 6.2.2.2 (HKLM\...\{7B486711-D8E3-41F4-A518-D709CD62C3D1}) (Version: 6.2.2.2 - The Document Foundation)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.8 - Thibaut Lauziere)
LockXLS Runtime (HKLM\...\{1140A38C-5598-4B57-A366-1C4CB996872E}) (Version: 6.1.7 - Spreadsheet Tools)
Manager (HKLM-x32\...\{3802F563-BAD7-47F3-AF91-ED1C9467B224}) (Version: 3.0.7.25771 - ANDREA VACONDIO) Hidden
MarketResearch (HKLM-x32\...\{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0008.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0011.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.13801.20084 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.13801.20084 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\OneDriveSetup.exe) (Version: 21.016.0124.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\Teams) (Version: 1.4.00.2879 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM\...\{053BB205-59BA-44E5-AD33-F5402494BAB7}) (Version: 8.2.5 - Lenovo) Hidden
Mobile Broadband Drivers (HKLM-x32\...\{68D0E8C7-E4F8-424E-A6D6-97A06A323FFE}) (Version: 8.1.0.7 - Ericsson AB)
Mobile Broadband Drivers v8.2.5 (HKLM-x32\...\{47786bea-6a7b-4d85-9b51-d1db1d022f0a}) (Version: 8.2.5 - Lenovo)
Mozilla Firefox 53.0.3 (x86 cs) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 cs)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
myWAC (HKLM-x32\...\{76608CC7-EFEB-4470-BE2E-C0096CD41AC7}) (Version: 5.1.159.592 - myWAC TECHNOLOGIES s.r.o.) Hidden
myWAC (HKLM-x32\...\myWAC 5.1.159.592) (Version: 5.1.159.592 - myWAC TECHNOLOGIES s.r.o.)
NAPS2 5.6.2 (HKLM-x32\...\NAPS2 (Not Another PDF Scanner 2)_is1) (Version: - Ben Olden-Cooligan)
NetSetMan 4.7.1 (HKLM-x32\...\NetSetMan_is1) (Version: 4.7.1 - NetSetMan GmbH)
Netview_X OCX (HKLM-x32\...\Netview_X OCX) (Version: 2.0.0.1 - )
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20084 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20084 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13801.20084 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.13801.20084 - Microsoft Corporation) Hidden
OpenVPN 2.4.7-I603 (HKLM\...\OpenVPN) (Version: 2.4.7-I603 - OpenVPN Technologies, Inc.)
Opera developer 75.0.3953.0 (HKLM-x32\...\Opera 75.0.3953.0) (Version: 75.0.3953.0 - Opera Software)
Opera Stable 73.0.3856.344 (HKLM-x32\...\Opera 73.0.3856.344) (Version: 73.0.3856.344 - Opera Software)
Partner24 (HKLM-x32\...\Partner24) (Version: 1.7.1 - Česká Spořitelna a.s.)
PČS SmartClient (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\ee485056d1c5a354) (Version: 2.2.10.40 - Pojišťovna České spořitelny)
PDF Compressor (HKLM-x32\...\{74CB4E29-732C-47A6-B9C6-790EC768FCBA}) (Version: 2.7.0.0 - iWesoft)
PDF Eraser V1.8 (HKLM-x32\...\PDF Eraser_is1) (Version: - hxxp://www.PDFEraser.net)
pdfFactory Pro (HKLM\...\pdfFactory Pro) (Version: 6.05 - FinePrint Software, LLC)
PDFsam Basic (HKLM-x32\...\{2613AD46-FB81-46DC-9001-E1BA183F9520}) (Version: 3.0.30.0 - Andrea Vacondio)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{5C028510-A6A1-409A-A2BF-4DCB43B21EF9}) (Version: 7.6 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{5C7D4FCF-80C5-4520-9934-D50532AAC59C}) (Version: 7.6 - Apple Inc.)
PrivateTunnel (HKLM-x32\...\PrivateTunnel) (Version: 2.8.4.0 - OpenVPN Technologies)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Remote Assistant 2.3 (HKLM\...\Remote Assistant) (Version: 2.3 - CloudBerryLab)
Skype verze 8.25 (HKLM-x32\...\Skype_is1) (Version: 8.25 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\slack) (Version: 3.3.7 - Slack Technologies)
Software602 Form Filler (HKLM-x32\...\{00160B3F-653A-4EA7-947E-4000D3551E9E}) (Version: 4.60 - Software602 a.s.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.135 - Synaptics Incorporated)
Synaptics WBF DDK 5011 (Advanced) (HKLM\...\{87E2D28A-EEE2-4C3C-B0C1-CDA986B3C42E}) (Version: 4.5.503.0 - Synaptics)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.14.5 - TeamViewer)
Telegram Desktop version 2.5.8 (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.5.8 - Telegram FZ-LLC)
ThinkPad OneLink Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.08.24 - Lenovo)
ThinkPad Settings Dependency (HKLM\...\{08515684-CE49-47EF-B509-326A2E91BC5C}_is1) (Version: 3.0.1.29 - Lenovo) Hidden
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
TrayApp (HKLM-x32\...\{5ACE69F0-A3E8-44eb-88C1-0A841E700180}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
USB Disk Storage Format Tool 5.1 (HKLM\...\USB Disk Storage Format Tool_is1) (Version: - Authorsoft Corporation)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VueScan x64 (HKLM\...\VueScan x64) (Version: - )
WebReg (HKLM-x32\...\{CCB9B81A-167F-4832-B305-D2A0430840B3}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Intel (e1dexpress) Net (07/02/2013 12.9.16.0) (HKLM\...\023677FE062B918F6118988706661111844C0205) (Version: 07/02/2013 12.9.16.0 - Intel)
Windows Driver Package - Intel Corporation (iaStorA) HDC (08/01/2013 12.8.0.1016) (HKLM\...\C8A921233C0C441A4E4EAABC2AB08C872FD77A6E) (Version: 08/01/2013 12.8.0.1016 - Intel Corporation)
Windows Driver Package - Lenovo 1.67.04.04 (11/07/2013 1.67.04.04) (HKLM\...\70FB73D983446AEE2932B0ED51A770D1BD1348DA) (Version: 11/07/2013 1.67.04.04 - Lenovo)
Windows Driver Package - Synaptics (SmbDrv) System (10/23/2013 17.0.12.52) (HKLM\...\546FF7E8ABB3021DB74C663BFEAB0780589F2990) (Version: 10/23/2013 17.0.12.52 - Synaptics)
Windows Driver Package - Synaptics (SynTP) Mouse (10/23/2013 17.0.12.52) (HKLM\...\D4AF752691BC44E5CA6E33BDDD57F0845B4AEBFE) (Version: 10/23/2013 17.0.12.52 - Synaptics)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinZip 25.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2412F}) (Version: 25.0.14273 - Corel Corporation)
Wondershare Dr.Fone for Android(Build 5.5.0.6) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 5.5.0.6 - Wondershare Software Co.,Ltd.)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
Wondershare MobileTrans ( Version 7.9.9 ) (HKLM-x32\...\{18CDCEAA-A9E4-4A4C-AC0E-C15E87C30EA5}_is1) (Version: 7.9.9 - Wondershare)
Xerox PowerENGAGE (HKLM-x32\...\{171BF116-713F-43AA-B236-D6188522E609}) (Version: 2.52.0016 - Xerox Inc.)
Zoom (HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)

Packages:
=========
AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-04-07] (AccuWeather) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-09] (Autodesk Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-09] (Canon Inc.)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-09-16] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.7.6.0_x86__q4d96b2w5wcc2 [2021-02-06] (Evernote)
Hightail for Lenovo -> C:\Program Files\WindowsApps\YouSendIt.HighTailForLenovo_1.3.0.1278_neutral__069rkrpjefrbc [2015-12-18] (Hightail)
HP Scan and Capture -> C:\Program Files\WindowsApps\AD2F1837.HPScanandCapture_40.0.245.0_x64__v10z8vjag6ke6 [2016-04-13] (Hewlett-Packard Company)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.2.834.0_x64__v10z8vjag6ke6 [2021-02-12] (HP Inc.)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-12-18] (AMZN Mobile LLC)
Lenovo QuickCast -> C:\Program Files\WindowsApps\E046963F.LenovoQuickCast_2.5.11.0_x86__k1h2ywk1493x8 [2015-12-18] (Lenovo, INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2017-12-19] (LENOVO INCORPORATED.)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-12-18] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2101.29.0_x64__k1h2ywk1493x8 [2021-02-06] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-02] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-18] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-18] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-18] (Microsoft Corporation) [MS Ad]
Norton Studio -> C:\Program Files\WindowsApps\SymantecCorporation.NortonStudio_2.2.0.0_x86__v68kp9n051hdp [2018-04-20] (Symantec Corporation)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2021-02-01] (Samsung Electronics Co. Ltd.)
Skitch Touch -> C:\Program Files\WindowsApps\Evernote.Skitch_2.4.2000.1918_neutral__q4d96b2w5wcc2 [2015-12-18] (Evernote)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0 [2021-02-07] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
Xerox Print and Scan Experience -> C:\Program Files\WindowsApps\XeroxCorp.PrintExperience_7.192.8.0_x64__f7egpvdyrs2a8 [2020-11-21] (Xerox Corp)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2015-12-18] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1864349024-1291946563-1421522111-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\lenovo\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1864349024-1291946563-1421522111-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
CustomCLSID: HKU\S-1-5-21-1864349024-1291946563-1421522111-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\lenovo\Dropbox [2016-05-10 10:34]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-04] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-04] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-05-17] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-04] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DVDFABVirtualDrive] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C05} => C:\Program Files\DVDFab Virtual Drive\vdrive.dll [2014-08-29] (Fengtao Software Inc. -> DVDFab Software)
ContextMenuHandlers1-x32: [DVDFABVirtualDrive32] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C04} => C:\Program Files\DVDFab Virtual Drive\vdrive32.dll [2014-08-29] (Fengtao Software Inc. -> DVDFab Software)
ContextMenuHandlers1: [PDFConv] -> {919CF7F5-9A8E-40B9-9588-2BECA5927D98} => C:\Program Files (x86)\Software602\602XML\xmlcore\CtxSign64.dll [2013-07-16] (Software602 a. s. -> Software602)
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => -> No File
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-09-28] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers2: [DVDFABVirtualDrive] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C05} => C:\Program Files\DVDFab Virtual Drive\vdrive.dll [2014-08-29] (Fengtao Software Inc. -> DVDFab Software)
ContextMenuHandlers2-x32: [DVDFABVirtualDrive32] -> {71343FFB-3ECB-4FA7-BAAC-8DB614DE3C04} => C:\Program Files\DVDFab Virtual Drive\vdrive32.dll [2014-08-29] (Fengtao Software Inc. -> DVDFab Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-04] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => -> No File
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-09-28] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-04] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-09-28] (Corel Corporation -> WinZip Computing)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\msaud32_divx.acm [186368 2003-02-03] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDF Compressor\PDF Compressor Website.lnk -> hxxp://www.pdfcompressor.org
ShortcutWithArgument: C:\Users\lenovo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2016-01-22 12:55 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2008-03-03 13:35 - 2008-03-03 13:35 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2008-03-03 13:36 - 2008-03-03 13:36 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2005-04-08 01:27 - 2005-04-08 01:27 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2007-10-14 19:38 - 2007-10-14 19:38 - 000159744 _____ (Hewlett-Packard Co.) [File not signed] [File is in use] C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll
2008-01-03 19:24 - 2008-01-03 19:24 - 000077824 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll
2007-11-06 20:16 - 2007-11-06 20:16 - 000217088 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll
2007-11-06 20:16 - 2007-11-06 20:16 - 000184320 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqddcmn.dll
2007-11-06 20:16 - 2007-11-06 20:16 - 000139264 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll
2007-11-06 20:16 - 2007-11-06 20:16 - 000061440 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll
2007-10-14 19:43 - 2007-10-14 19:43 - 000303104 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll
2007-10-14 19:38 - 2007-10-14 19:38 - 000098304 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll
2007-10-14 19:38 - 2007-10-14 19:38 - 000047616 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc
2007-10-14 19:43 - 2007-10-14 19:43 - 000405504 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll
2016-03-01 14:37 - 2009-09-22 19:44 - 000022016 _____ (Hewlett-Packard Company) [File not signed] C:\WINDOWS\System32\hppfaxprintermon5.dll
2009-05-14 16:49 - 2009-05-14 16:49 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2009-05-14 16:49 - 2009-05-14 16:49 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2003-03-18 22:23 - 2003-03-18 22:23 - 000024576 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\1029\mdmui.dll
2006-10-26 13:40 - 2006-10-26 13:40 - 000192512 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll
2008-03-03 13:36 - 2008-03-03 13:36 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
2019-09-11 19:43 - 2019-09-11 19:43 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2016-04-15 12:54 - 2014-02-05 12:51 - 000036864 _____ (Windows (R) Win 7 DDK provider) [File not signed] C:\WINDOWS\System32\602localmon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
SearchScopes: HKU\S-1-5-21-1864349024-1291946563-1421522111-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1864349024-1291946563-1421522111-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-04-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-09] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2019-05-03 10:26 - 000000841 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

2018-10-20 08:02 - 2018-11-02 03:46 - 000000439 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\Lenovo\Fingerprint Manager Pro\;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin;C:\Users\lenovo\AppData\Local\Microsoft\WindowsApps;C:\adb;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lenovo\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "ThinkPad OneLink Dock Management.lnk"
HKLM\...\StartupApproved\StartupFolder: => "avast! SecureLine.lnk"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack"
HKU\S-1-5-21-1864349024-1291946563-1421522111-1001\...\StartupApproved\Run: => "Skype for Desktop"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{63B77F8A-F701-45FA-AFC8-959E55080618}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B07761DF-4F84-4264-9ECA-30775FB79C65}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{87B32E2D-3421-439A-97EE-9574D3B81D13}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{3CE470B2-8D30-42EF-A4EF-841FB3B796DA}] => (Allow) LPort=9444
FirewallRules: [{3742DE7F-8389-48C8-A30F-7C3C12D22705}] => (Allow) LPort=9244
FirewallRules: [{71CF06C8-1A8B-4B77-9328-A6B4B3923224}] => (Allow) LPort=3702
FirewallRules: [{39ECE275-EE11-4A95-80A3-0D0E3E5CA6F7}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{63BC9CE9-B523-45FE-B3FC-851DA6915390}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{28035F09-D9F0-4F23-B413-7D11CB3C0F98}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E3147213-1C54-4773-A790-23FB1B76DDDB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0185EF25-2B82-4AE0-850B-054467FC21CB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7D4F16AF-117E-4DED-AB9B-8BD764014EDB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3DFBE411-3800-4C0C-9BF8-98E9E14320FC}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3A9920BA-A28E-4CDF-B800-405ED01C51FC}] => (Allow) LPort=9247
FirewallRules: [{0D30167E-A428-4465-BE02-768C620476A0}] => (Allow) LPort=9246
FirewallRules: [{A9AE438F-7C8A-4AFC-B933-EE0BF849078E}] => (Allow) LPort=9245
FirewallRules: [{7C680511-A13B-4FA6-87F6-52BBB24C2319}] => (Allow) LPort=9422
FirewallRules: [{410E9794-7140-415F-824C-DEFC52191EBE}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software -> Hamrick Software)
FirewallRules: [{3B5CA37F-08EB-40EE-A34E-1C844130D518}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software -> Hamrick Software)
FirewallRules: [{C41F91A1-0CB1-4D8B-B04C-D0081A297F29}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{15BC1244-4FEB-4B00-B230-7649DC7DBFF8}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{887B2B59-30BB-432D-A0E1-2B9B0EAFB83E}] => (Allow) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
FirewallRules: [{1CE21B52-6AA9-4F59-BC0B-F42CC3484A6F}] => (Allow) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe (LENOVO(JAPAN)LTD. -> Lenovo Group Limited)
FirewallRules: [{BAD5002C-B00D-4385-90DA-8D433843F892}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{035BBD4E-090E-498E-9E88-C93766A331C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7CB92141-D609-431D-8CE4-26372E1B080C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4F77EEEE-81E6-4CF4-9DF8-8C3E6B00181D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{C6E52831-CB8F-43C4-BC9E-65D104024159}C:\ingapps\nn_ekalkulacka_nn_cz\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\ingapps\nn_ekalkulacka_nn_cz\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{4028E688-885D-418F-82B7-081ECED943E0}C:\ingapps\nn_ekalkulacka_nn_cz\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\ingapps\nn_ekalkulacka_nn_cz\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{33F44F99-5703-41BB-8D86-6A72AAE2F7F5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F7F8F28F-9E6E-437F-A372-71A7D1B1C75C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{60F98C6B-49B2-4A79-831C-E90E761AA7C2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DA382CE0-8502-4085-AD22-527AA2C5EC3B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B2011582-103A-4A9D-BBBF-F17009E34982}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [TCP Query User{B05A0C50-3792-41E7-978B-220A7E5FA629}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (C. Ghisler & Co. -> C. Ghisler & Co.)
FirewallRules: [UDP Query User{038F1FBB-6E15-4688-A3A0-8CC72053F2ED}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (C. Ghisler & Co. -> C. Ghisler & Co.)
FirewallRules: [{5521EFDB-C57A-43CE-9E1C-9DA9DB623DDF}] => (Block) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare software CO., LIMITED -> Wondershare)
FirewallRules: [TCP Query User{A30E7107-ACF9-4109-8586-A8A28DB239EF}C:\sierrachart\sierrachart_64.exe] => (Allow) C:\sierrachart\sierrachart_64.exe () [File not signed]
FirewallRules: [UDP Query User{0390CFE1-F6E2-47DD-82F2-1F0D7F563C85}C:\sierrachart\sierrachart_64.exe] => (Allow) C:\sierrachart\sierrachart_64.exe () [File not signed]
FirewallRules: [{47ECE554-4BC9-4AD6-802A-FA4F953979DF}] => (Allow) C:\Program Files\Opera\73.0.3856.329\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{A5B141DD-7146-49BB-B3FB-1DE2E27B963F}] => (Allow) C:\Program Files\Opera\73.0.3856.344\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{43F7B09D-D2BA-48A1-B43B-5679D04AF189}] => (Allow) C:\Program Files\Opera developer\75.0.3939.0\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{BB86CAA8-55D6-441C-83FC-F8EDFF4D3C26}] => (Allow) C:\Users\lenovo\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{139A2DE1-AA4D-4194-B1E5-74CF4F0E2E2A}] => (Allow) C:\Users\lenovo\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{67597C72-DEFF-44D6-8BE0-F3FEE3A71F49}] => (Allow) C:\Users\lenovo\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{939A4A82-4B31-4818-96C9-07CA4471E606}C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D4905361-AEEF-4F1C-AC6D-29E41B4520C6}C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B0C7006D-20FF-4018-AB66-256B87EC2E45}] => (Allow) LPort=9422
FirewallRules: [{9129618C-74C0-4892-BF72-AF90E97E8C20}] => (Allow) LPort=9245
FirewallRules: [{5365E859-0A5E-43AD-9EC7-EA97021AAD83}] => (Allow) LPort=9246
FirewallRules: [{CF2824E9-145E-4CC8-88B3-C3D2459A6B54}] => (Allow) LPort=9247
FirewallRules: [TCP Query User{45F4F26F-2DC6-4B09-ABF3-E1F54FA16E80}C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{B660BA34-E8CF-41B5-8888-39D5594819C9}C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\lenovo\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{60347D23-ADF8-4F71-9B3F-63E9DB4ACF19}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{664F2CFC-E07E-4C5E-99C5-75FC8BB8F62E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{86B6318A-ACF3-4F85-A98C-F4E2727B5AC5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D78F6FA5-0499-4A25-AC13-7C48C5C4E0AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C9B1E40-32B6-4F8A-AF5E-A6C9150C113E}] => (Allow) C:\Program Files\Opera developer\75.0.3953.0\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{DE6E3961-D1A5-4B66-BB5F-BCE78E83F46A}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{3230F547-46FB-4302-8939-94C784DD6381}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4B8DF844-E46E-4DE9-B122-9C49A55E1713}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6A86D59A-878C-49D7-AFBD-414B37B5B53E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{655C2C53-7A5B-4740-A6D8-B334F06458EA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A3ECC4CA-C62A-4310-ACD3-5F223D353802}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{24FEFDF6-14DF-4F0F-8016-624E9AFF50F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AA22BDD1-98D6-498E-ADEC-14B7A4B8361C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{58056720-4832-43D5-84DD-1B03060CD539}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E771BF6B-C453-4FD9-AACC-C7C597B40702}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CAD542AF-878D-4866-9381-F5E73A4409F2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{52A3418F-8FB4-4B30-A275-216BBDECB518}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D6CD348C-A915-4E46-BAC6-87318B5EB474}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AA89027D-AD2E-4D79-A169-E611F4A0E679}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{40069F29-80C4-4750-B78A-B0931A7CAB2B}] => (Allow) C:\Program Files\Remote Assistant\Remote Assistant.exe (Trichilia Consultants Limited -> CloudBerry Lab)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:113.11 GB) (Free:43.65 GB) (39%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/14/2021 10:02:20 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6744,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/14/2021 09:37:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4840,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/14/2021 09:33:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: VpnUpdate.exe, verze: 5.2.429.0, časové razítko: 0x5c628c6f
Název chybujícího modulu: VpnUpdate.exe, verze: 5.2.429.0, časové razítko: 0x5c628c6f
Kód výjimky: 0xc0000409
Posun chyby: 0x000dacad
ID chybujícího procesu: 0xa00
Čas spuštění chybující aplikace: 0x01d70310b8adccea
Cesta k chybující aplikaci: C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe
Cesta k chybujícímu modulu: C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe
ID zprávy: 180c800e-cb29-4639-a9b6-8a296e89f1e5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/14/2021 09:27:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ZeroConfigService.exe, verze: 21.10.1.0, časové razítko: 0x5cbdd040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000000000
ID chybujícího procesu: 0x2278
Čas spuštění chybující aplikace: 0x01d7030fb34e8fec
Cesta k chybující aplikaci: C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 4e20a25f-41a0-420e-8a66-64ba099130a6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/14/2021 12:32:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16752,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/14/2021 11:54:42 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10448,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/14/2021 11:46:29 AM) (Source: NfcwEventProvider) (EventID: 259) (User: )
Description: Event-ID 259

Error: (02/14/2021 11:46:23 AM) (Source: NfcwEventProvider) (EventID: 259) (User: )
Description: Event-ID 259


System errors:
=============
Error: (02/14/2021 09:41:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Soubor nebo adresář je porušen a není čitelný.

Error: (02/14/2021 09:28:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet/Wireless Zero Configuration Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/14/2021 09:27:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Soubor nebo adresář je porušen a není čitelný.

Error: (02/14/2021 09:26:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba ImControllerService neuspěla při spuštění v důsledku následující chyby:
Soubor nebo adresář je porušen a není čitelný.

Error: (02/14/2021 09:26:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba MessagingService_2e0b3 byla ukončena s následující chybou:
Služba nebyla spuštěna.

Error: (02/14/2021 09:25:48 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: not terminated, too long or invalid number of separators

Error: (02/14/2021 09:18:49 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače ARCHER_C5,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{C3A1389C-BACC-423C-85D0-58889E326A7B}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (02/13/2021 12:05:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba System Interface Foundation Service neuspěla při spuštění v důsledku následující chyby:
Soubor nebo adresář je porušen a není čitelný.

Windows Defender:
================
Date: 2019-09-16 17:18:41.517
Description:
Prohled�v�n� Antivirov� ochrana v programu Windows Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {BA0F583B-B13F-4B2A-8616-925A4063055D}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM

Date: 2019-09-23 05:55:12.310
Description:
Antivirov� ochrana v programu Windows Defender narazil na chybu p�i pokusu o aktualizaci bezpe�nostn�ch informac�.
Nov� verze bezpe�nostn�ch informac�:
P�edchoz� verze bezpe�nostn�ch informac�: 1.301.1645.0
Zdroj aktualizace: Centrum spole�nosti Microsoft pro ochranu p�ed �kodliv�m softwarem
Typ bezpe�nostn�ch informac�: Antivirov� program
Typ aktualizace: �pln�
U�ivatel: NT AUTHORITY\NETWORK SERVICE
Aktu�ln� verze modulu:
P�edchoz� verze modulu: 1.1.16300.1
K�d chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat n�zev nebo adresu serveru.

Date: 2019-09-23 05:55:12.309
Description:
Antivirov� ochrana v programu Windows Defender narazil na chybu p�i pokusu o aktualizaci bezpe�nostn�ch informac�.
Nov� verze bezpe�nostn�ch informac�:
P�edchoz� verze bezpe�nostn�ch informac�: 1.301.1645.0
Zdroj aktualizace: Centrum spole�nosti Microsoft pro ochranu p�ed �kodliv�m softwarem
Typ bezpe�nostn�ch informac�: Antispywarov� program
Typ aktualizace: �pln�
U�ivatel: NT AUTHORITY\NETWORK SERVICE
Aktu�ln� verze modulu:
P�edchoz� verze modulu: 1.1.16300.1
K�d chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat n�zev nebo adresu serveru.

Date: 2019-09-23 05:55:12.308
Description:
Antivirov� ochrana v programu Windows Defender narazil na chybu p�i pokusu o aktualizaci bezpe�nostn�ch informac�.
Nov� verze bezpe�nostn�ch informac�:
P�edchoz� verze bezpe�nostn�ch informac�: 1.301.1645.0
Zdroj aktualizace: Centrum spole�nosti Microsoft pro ochranu p�ed �kodliv�m softwarem
Typ bezpe�nostn�ch informac�: Antivirov� program
Typ aktualizace: �pln�
U�ivatel: NT AUTHORITY\NETWORK SERVICE
Aktu�ln� verze modulu:
P�edchoz� verze modulu: 1.1.16300.1
K�d chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat n�zev nebo adresu serveru.

Date: 2019-09-23 05:55:12.268
Description:
Antivirov� ochrana v programu Windows Defender narazil na chybu p�i pokusu o aktualizaci bezpe�nostn�ch informac�.
Nov� verze bezpe�nostn�ch informac�:
P�edchoz� verze bezpe�nostn�ch informac�: 1.301.1645.0
Zdroj aktualizace: Centrum spole�nosti Microsoft pro ochranu p�ed �kodliv�m softwarem
Typ bezpe�nostn�ch informac�: Antivirov� program
Typ aktualizace: �pln�
U�ivatel: NT AUTHORITY\NETWORK SERVICE
Aktu�ln� verze modulu:
P�edchoz� verze modulu: 1.1.16300.1
K�d chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat n�zev nebo adresu serveru.

Date: 2019-09-23 05:55:12.266
Description:
Antivirov� ochrana v programu Windows Defender narazil na chybu p�i pokusu o aktualizaci bezpe�nostn�ch informac�.
Nov� verze bezpe�nostn�ch informac�:
P�edchoz� verze bezpe�nostn�ch informac�: 1.301.1645.0
Zdroj aktualizace: Centrum spole�nosti Microsoft pro ochranu p�ed �kodliv�m softwarem
Typ bezpe�nostn�ch informac�: Antispywarov� program
Typ aktualizace: �pln�
U�ivatel: NT AUTHORITY\NETWORK SERVICE
Aktu�ln� verze modulu:
P�edchoz� verze modulu: 1.1.16300.1
K�d chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat n�zev nebo adresu serveru.

Date: 2019-09-23 05:55:12.266
Description:
Antivirov� ochrana v programu Windows Defender narazil na chybu p�i pokusu o aktualizaci bezpe�nostn�ch informac�.
Nov� verze bezpe�nostn�ch informac�:
P�edchoz� verze bezpe�nostn�ch informac�: 1.301.1645.0
Zdroj aktualizace: Centrum spole�nosti Microsoft pro ochranu p�ed �kodliv�m softwarem
Typ bezpe�nostn�ch informac�: Antivirov� program
Typ aktualizace: �pln�
U�ivatel: NT AUTHORITY\NETWORK SERVICE
Aktu�ln� verze modulu:
P�edchoz� verze modulu: 1.1.16300.1
K�d chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat n�zev nebo adresu serveru.

Date: 2019-09-23 05:55:11.778
Description:
Antivirov� ochrana v programu Windows Defender narazil na chybu p�i pokusu o aktualizaci bezpe�nostn�ch informac�.
Nov� verze bezpe�nostn�ch informac�:
P�edchoz� verze bezpe�nostn�ch informac�: 1.301.1645.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpe�nostn�ch informac�: Antivirov� program
Typ aktualizace: �pln�
U�ivatel: NT AUTHORITY\SYSTEM
Aktu�ln� verze modulu:
P�edchoz� verze modulu: 1.1.16300.1
K�d chyby: 0x8024402c
Popis chyby: P�i zji��ov�n� aktualizac� do�lo k neo�ek�van�m pot��m. Informace o instalaci nebo �e�en� pot�� s aktualizacemi naleznete v n�pov�d� a podpo�e.

==================== Memory info ===========================

BIOS: LENOVO GRET45WW (1.22 ) 08/31/2015
Motherboard: LENOVO 20A7003UMC
Processor: Intel(R) Core(TM) i7-4550U CPU @ 1.50GHz
Percentage of memory in use: 49%
Total physical RAM: 8087.78 MB
Available physical RAM: 4114.61 MB
Total Virtual: 10263.78 MB
Available Virtual: 5605.52 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:113.11 GB) (Free:43.65 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (data) (Fixed) (Total:105.26 GB) (Free:27.81 GB) NTFS

\\?\Volume{5e7663c8-828b-4aa3-a9b8-9e38811d4849}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.64 GB) NTFS
\\?\Volume{e4c96c1c-45aa-4d3c-8ecf-5eb33417e3cf}\ (Lenovo_Recovery) (Fixed) (Total:11.75 GB) (Free:4.6 GB) NTFS
\\?\Volume{50943a13-e6cc-4287-98e2-760f273f40ad}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 56C5CA45)

Partition: GPT.

==================== End of Addition.txt =======================
_________________________________________________________________
RSIT | MWAV | CCleaner

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#3 Příspěvek od dinospages »

RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by lenovo at 2021-02-14 22:24:35
Microsoft Windows 10 Pro
System drive C: has 45 GB (39%) free of 116 GB
Total RAM: 8088 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:24:43, on 14. 2. 2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal

Running processes:
C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe
C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe
C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe
C:\Users\lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\lenovo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13-comm.msn.com/?pc=LNJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: ::1 localhost
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.68\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [Opera Browser Assistant] C:\Program Files\Opera\assistant\browser_assistant.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [com.squirrel.slack.slack] "C:\Users\lenovo\AppData\Local\slack\Update.exe" --processStart "slack.exe" --process-start-args "--startup"
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKCU\..\Run: [OPENVPN-GUI] C:\Program Files\OpenVPN\bin\openvpn-gui.exe
O4 - HKCU\..\Run: [DVDFab VDrive] "C:\Program Files\DVDFab Virtual Drive\vdrive.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\lenovo\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Poslat do aplikace OneNote.lnk = C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: ThinkPad OneLink Dock Management.lnk = ?
O4 - Global Startup: WinZip Preloader.lnk = C:\Program Files\WinZip\WzPreloader.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.onlineregister.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{b92ad113-ec50-48d8-b321-ade161312f68}: NameServer = 192.168.0.254,8.8.8.8
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_2e0b3 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\WINDOWS\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem18.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\System32\ibmpmsvc.exe (file missing)
O23 - Service: @oem111.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: System Interface Foundation Service (ImControllerService) - Unknown owner - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @oem18.inf,%Lenovo.svcDesc1%;Lenovo Platform Service (LPlatSvc) - Unknown owner - C:\WINDOWS\System32\LPlatSvc.exe (file missing)
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NSM Service (nsmService) - NetSetMan GmbH - C:\Program Files (x86)\NetSetMan\nsmservice.exe
O23 - Service: OpenVPNService - - C:\Program Files\OpenVPN\bin\openvpnserv2.exe
O23 - Service: OpenVPN Interactive Service (OpenVPNServiceInteractive) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: OpenVPN Legacy Service (OpenVPNServiceLegacy) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: OpenVPN Agent (ovpnagent) - Unknown owner - C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe
O23 - Service: PDFsam Manager - ANDREA VACONDIO - C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Lenovo QuickControl Master Service (QuickControlMasterSvc) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Remote Assistant Service - CloudBerry Lab - C:\Program Files\Remote Assistant\CloudRaService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer - TeamViewer Germany GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\WINDOWS\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: @oem5.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @oem5.inf,%BioSyncService_SvcDesc%;BiometricSensorDataSynchronization (valWbioSyncSvc) - Unknown owner - C:\WINDOWS\system32\valWbioSyncSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
O23 - Service: Wondershare Driver Install Service (WsDrvInst) - Wondershare - C:\Program Files (x86)\Wondershare\Dr.Fone for iOS\Library\DriverInstaller\DriverInstall.exe
O23 - Service: PowerENGAGE Maintenance Service (XeroxProdRegManager) - Aviata, Inc. - C:\Program Files (x86)\Xerox PowerENGAGE\EngageService.exe
O23 - Service: CryptoPlus XME Engine Service (xmengine service) - Monet+, a.s. - C:\WINDOWS\SysWOW64\xmesrv.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 18475 bytes

======Listing Processes======









C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a0bbebdf-5f45-468f-a764-716177767ec3 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-0c75a78d-7ff4-4d08-9de8-43495285a975 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-41fd9557-f143-4257-8130-345dccfe3186 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-70739374-a0fc-458d-a82e-68887b6481a7 -LifetimeId:99791a0c-3d41-4cfa-a75a-3767a510b580 -DeviceGroupId: -HostArg:0
winlogon.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7de5228d-94ac-4a51-ad33-76bbcd6b8124 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-d41a9c20-a714-435b-b15e-239d9e5ed10d -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7c6c1028-ef7d-430c-b486-9c9a3fe8a4d4 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4e2840e6-02e6-4815-bbd9-6a6917fe8644 -LifetimeId:f90bd13e-0d33-482f-89b9-8569e9f96bcb -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-caf64dae-1bad-4990-8be5-4c6217a3de53 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-55d05695-47a8-46d4-9a28-cc474c896ad0 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f8234941-9e8b-4463-9824-85c1fb8bb5d7 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-30116173-180a-45e5-8415-970a32143a94 -LifetimeId:6c7aa91f-5a4e-4703-a9a6-70551327c294 -DeviceGroupId: -HostArg:0
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-47e84c70-13ed-4fca-8b11-d733bfeba5c7 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-7a574806-22f2-49f0-a656-98d5dff121cf -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b07dd6fc-9957-4b30-ad09-c24f9fb19ab5 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1cc53d14-4e71-43fb-8449-81f4fab37905 -LifetimeId:3ee12001-85e2-4178-90b3-82bdc427221d -DeviceGroupId: -HostArg:0
C:\WINDOWS\System32\ibmpmsvc.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog

C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe" /c
C:\WINDOWS\System32\TpShocks.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s WwanSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
igfxEM.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
igfxHK.exe
igfxTray.exe
C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2222405238272
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup -s WbioSrvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="7B2005BE-20ED-98FA-6E8F-E27D1EFAE38D" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Browser
dashost.exe {5bc073ce-cc67-40ac-9815172d4d5cc612}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV

"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
dashost.exe {dcd433cc-9e52-4999-9119d6390a90089a}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\DbxSvc.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\WINDOWS\SysWOW64\svchost.exe -k hpdevmgmt -s hpqddsvc
C:\WINDOWS\system32\ibtsiva
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NetSetMan\nsmservice.exe"
"C:\Program Files\OpenVPN\bin\openvpnserv.exe"
"C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe"
"C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe"
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Remote Assistant\CloudRaService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s SmsRouter
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\valWBFPolicyService.exe
C:\WINDOWS\system32\valWbioSyncSvc.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\SysWOW64\xmesrv.exe
"C:\Program Files (x86)\Wondershare\Dr.Fone for iOS\Library\DriverInstaller\DriverInstall.exe"
"C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynFp\Shared\SensorDBSynch.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\SysWOW64\svchost.exe -k hpdevmgmt -s hpqcxs08
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe"
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"ctfmon.exe"
/QuitInfo:00000000000002AC;00000000000002B0;
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
C:\PROGRA~1\Lenovo\HOTKEY\DFRCTL.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.SmartInk
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21011.127.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\RtsCM64.exe"
"C:\Program Files (x86)\HP\HP Color LaserJet CM2320 MFP Series\hppfaxprintersrv.exe" "HP Color LaserJet CM2320 MFP Series Fax"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe"
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe" -default
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4

"C:\Program Files\WinZip\FAHWindow64.exe" register
"C:\Program Files\OpenVPN\bin\openvpn-gui.exe
"C:\Program Files\DVDFab Virtual Drive\vdrive.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\WinZip\WzPreloader.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer15_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer15_Logfile.log
AvastUI.exe /nogui
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --no-upload-gzip --no-rate-limit --capture-python --no-identify-client-via-url --database=C:\Users\lenovo\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0x23,0xf2,0xed,0xff,0x3e,0xde,0x90,0x25,0x9a,0x9e,0x30,0xf4,0xa,0xf8,0xf9,0x12,0xa5,0xe5,0xb3,0x69,0x4e,0x69,0x38,0x44,0x3,0x41,0xf6,0x6,0xe,0x1,0x4f,0xfa --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xfe,0xa2,0xb7,0xd6,0x45,0xfb,0xa7,0x3d,0x75,0x3c,0x1e,0xc9,0xa7,0x87,0xc,0x40,0xe1,0xf7,0xb0,0xc5,0x61,0xe9,0x27,0xb9,0x85,0xbf,0x71,0x18,0x66,0xe3,0x6f,0x22 --https-pin=0x76,0xee,0x85,0x90,0x37,0x4c,0x71,0x54,0x37,0xbb,0xca,0x6b,0xba,0x60,0x28,0xea,0xdd,0xe2,0xdc,0x6d,0xbb,0xb8,0xc3,0xf6,0x10,0xe8,0x51,0xf1,0x1d,0x1a,0xb7,0xf5 --https-pin=0x6d,0xbf,0xae,0x0,0xd3,0x7b,0x9c,0xd7,0x3f,0x8f,0xb4,0x7d,0xe6,0x59,0x17,0xaf,0x0,0xe0,0xdd,0xdf,0x42,0xdb,0xce,0xac,0x20,0xc1,0x7c,0x2,0x75,0xee,0x20,0x95 --https-pin=0x1e,0xa3,0xc5,0xe4,0x3e,0xd6,0x6c,0x2d,0xa2,0x98,0x3a,0x42,0xa4,0xa7,0x9b,0x1e,0x90,0x67,0x86,0xce,0x9f,0x1b,0x58,0x62,0x14,0x19,0xa0,0x4,0x63,0xa8,0x7d,0x38 --https-pin=0x87,0xaf,0x34,0xd6,0x6f,0xb3,0xf2,0xfd,0xf3,0x6e,0x9,0x11,0x1e,0x9a,0xba,0x2f,0x6f,0x44,0xb2,0x7,0xf3,0x86,0x3f,0x3d,0xb,0x54,0xb2,0x50,0x23,0x90,0x9a,0xa5 --https-pin=0xbc,0xfb,0x44,0xaa,0xb9,0xad,0x2,0x10,0x15,0x70,0x6b,0x41,0x21,0xea,0x76,0x1c,0x81,0xc9,0xe8,0x89,0x67,0x59,0xf,0x6f,0x94,0xae,0x74,0x4d,0xc8,0x8b,0x78,0xfb --https-pin=0xab,0x98,0x49,0x52,0x76,0xad,0xf1,0xec,0xaf,0xf2,0x8f,0x35,0xc5,0x30,0x48,0x78,0x1e,0x5c,0x17,0x18,0xda,0xb9,0xc8,0xe6,0x7a,0x50,0x4f,0x4f,0x6a,0x51,0x32,0x8f --https-pin=0x49,0x5,0x46,0x66,0x23,0xab,0x41,0x78,0xbe,0x92,0xac,0x5c,0xbd,0x65,0x84,0xf7,0xa1,0xe1,0x7f,0x27,0x65,0x2d,0x5a,0x85,0xaf,0x89,0x50,0x4e,0xa2,0x39,0xaa,0xaa --https-pin=0x56,0x32,0xd9,0x7b,0xfa,0x77,0x5b,0xf3,0xc9,0x9d,0xde,0xa5,0x2f,0xc2,0x55,0x34,0x10,0x86,0x40,0x16,0x72,0x9c,0x52,0xdd,0x65,0x24,0xc8,0xa9,0xc3,0xb4,0x48,0x9f --https-pin=0x2a,0x8f,0x2d,0x8a,0xf0,0xeb,0x12,0x38,0x98,0xf7,0x4c,0x86,0x6a,0xc3,0xfa,0x66,0x90,0x54,0xe2,0x3c,0x17,0xbc,0x7a,0x95,0xbd,0x2,0x34,0x19,0x2d,0xc6,0x35,0xd0 --https-pin=0x32,0xb6,0x4b,0x66,0x72,0x7a,0x20,0x63,0xe4,0x6,0x6f,0x3b,0x95,0x8c,0xb0,0xaa,0xee,0x57,0x6a,0x5e,0xce,0xfd,0x95,0x33,0x99,0xbb,0x88,0x74,0x73,0x1d,0x95,0x87 --https-pin=0xf5,0x3c,0x22,0x5,0x98,0x17,0xdd,0x96,0xf4,0x0,0x65,0x16,0x39,0xd2,0xf8,0x57,0xe2,0x10,0x70,0xa5,0x9a,0xbe,0xd9,0x7,0x94,0x0,0xd9,0xf6,0x95,0x50,0x69,0x0 --https-pin=0x67,0xdc,0x4f,0x32,0xfa,0x10,0xe7,0xd0,0x1a,0x79,0xa0,0x73,0xaa,0xc,0x9e,0x2,0x12,0xec,0x2f,0xfc,0x3d,0x77,0x9e,0xa,0xa7,0xf9,0xc0,0xf0,0xe1,0xc2,0xc8,0x93 --https-pin=0x19,0x6,0xc6,0x12,0x4d,0xbb,0x43,0x85,0x78,0xd0,0xe,0x6,0x6d,0x50,0x54,0xc6,0xc3,0x7f,0xf,0xa6,0x2,0x8c,0x5,0x54,0x5e,0x9,0x94,0xed,0xda,0xec,0x86,0x29 --https-pin=0x1d,0x75,0xd0,0x83,0x1b,0x9e,0x8,0x85,0x39,0x4d,0x32,0xc7,0xa1,0xbf,0xdb,0x3d,0xbc,0x1c,0x28,0xe2,0xb0,0xe8,0x39,0x1f,0xb1,0x35,0x98,0x1d,0xbc,0x5b,0xa9,0x36 --annotation=host_int_account1_boot=5302961117 --annotation=machine_id=db8158a2-1e19-48e5-baf6-3cdac97159ae --annotation=platform=win "--annotation=platform_version=10 1909" --initial-client-data=0x2ac,0x2b0,0x2b4,0x2a8,0x2b8,0x6b5c75e8,0x6b5c7610,0x6b5c75f8
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -method:collectupload -session-token:d0f8c023-61af-4e81-832d-0dcdb0cd3aa7 -target-handle:704 -target-shutdown-event:696 -target-restart-event:724 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -python-version:3.7.9 -handler-pipe:\\.\pipe\crashpad_13096_JFKHGTVXVMOWDPST
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=10664,16502039980896785055,12357837769358383002,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\lenovo\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\lenovo\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=10740 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=10664,16502039980896785055,12357837769358383002,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\lenovo\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\lenovo\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=11168 /prefetch:8
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe" --type=renderer --disable-gpu-memory-buffer-video-frames --enable-threaded-compositing --use-gl=egl --enable-features=AllowContentInitiatedDataUrlNavigations --disable-features=BackgroundFetch,MojoVideoCapture,SurfaceSynchronization,UsePdfCompositorServiceForPrint,UserActivationV2,VizDisplayCompositor --disable-databases --service-pipe-token=17507131060215906749 --lang=cs --webengine-schemes=dbx-local:hs;qrc:sLV --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17507131060215906749 --renderer-client-id=3 --mojo-platform-channel-handle=6256 /prefetch:1
"C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe" --type=renderer --disable-gpu-memory-buffer-video-frames --enable-threaded-compositing --use-gl=egl --enable-features=AllowContentInitiatedDataUrlNavigations --disable-features=BackgroundFetch,MojoVideoCapture,SurfaceSynchronization,UsePdfCompositorServiceForPrint,UserActivationV2,VizDisplayCompositor --disable-databases --service-pipe-token=15854676570741641046 --lang=cs --webengine-schemes=dbx-local:hs;qrc:sLV --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=15854676570741641046 --renderer-client-id=4 --mojo-platform-channel-handle=7984 /prefetch:1

C:\Windows\System32\SecurityHealthHost.exe {08728914-3F57-4D52-9E31-49DAECA5A80A} -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe" --type=renderer --disable-gpu-memory-buffer-video-frames --enable-threaded-compositing --use-gl=egl --enable-features=AllowContentInitiatedDataUrlNavigations --disable-features=BackgroundFetch,MojoVideoCapture,SurfaceSynchronization,UsePdfCompositorServiceForPrint,UserActivationV2,VizDisplayCompositor --disable-databases --service-pipe-token=8517057953813701090 --lang=cs --webengine-schemes=dbx-local:hs;qrc:sLV --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8517057953813701090 --renderer-client-id=5 --mojo-platform-channel-handle=17224 /prefetch:1
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2012.21.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s QWAVE
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20112.10111.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --profile-directory=Default
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\lenovo\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\lenovo\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\lenovo\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=88.0.4324.150 --initial-client-data=0xe4,0xe8,0xec,0xc0,0xf0,0x7ffc1faf9e90,0x7ffc1faf9ea0,0x7ffc1faf9eb0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --gpu-preferences=OAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAABQAAABAAAAAAAAAAAAAAAAYAAAAQAAAAAAAAAAEAAAAFAAAAEAAAAAAAAAABAAAABgAAAA== --mojo-platform-channel-handle=1724 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --service-sandbox-type=network --mojo-platform-channel-handle=1936 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --service-sandbox-type=utility --mojo-platform-channel-handle=2280 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --extension-process --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3680 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --extension-process --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3912 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --extension-process --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4060 /prefetch:1

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --service-sandbox-type=audio --mojo-platform-channel-handle=5404 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3004 /prefetch:1
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20110.11001.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
taskhostw.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s wlpasvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1864349024-1291946563-1421522111-10019_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1864349024-1291946563-1421522111-10019 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 784 788 796 8192 792
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=81 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4492 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1668,11313386089557860050,5871443417026823336,131072 --lang=cs --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1.75 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2300 /prefetch:1
"C:\totalcmd\TOTALCMD.EXE"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe10_ Global\UsGthrCtrlFltPipeMssGthrPipe10 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\AUDIODG.EXE 0x408
"C:\Users\lenovo\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Lenovo Active Protection System.job - C:\WINDOWS\system32\TpShUI.exe t
C:\WINDOWS\tasks\update-S-1-5-21-1864349024-1291946563-1421522111-1001.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\tasks\update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate

=========Mozilla firefox=========

ProfilePath - C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\g6d930ts.default

prefs.js - "browser.startup.homepage" - "about:home"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\csas.cz/Partner24]
"Description"=
"Path"=C:\Program Files (x86)\Partner24\npPartner24.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.211.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.211.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.68\BHO\ie_to_edge_bho_64.dll [2021-02-13 548256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-04-18 582008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-18 245112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.68\BHO\ie_to_edge_bho.dll [2021-02-13 416152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-02-09 151872]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2020-02-13 84992]
"RtsCM"=C:\WINDOWS\RTSCM64.EXE [2013-09-19 151768]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2016-11-23 410608]
"HP Color LaserJet CM2320 MFP Series Fax"=C:\Program Files (x86)\HP\HP Color LaserJet CM2320 MFP Series\hppfaxprintersrv.exe [2009-09-22 3700736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2021-01-04 117352]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2019-07-19 302904]
"WinZip UN"=C:\Program Files\WinZip\WZUpdateNotifier.exe [2020-09-28 2859928]
"WinZip FAH"=C:\Program Files\WinZip\FAHConsole.exe [2020-09-28 436704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2021-02-10 1942384]
"com.squirrel.slack.slack"=C:\Users\lenovo\AppData\Local\slack\Update.exe [2019-01-26 1559056]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2018-06-26 49654728]
"OPENVPN-GUI"=C:\Program Files\OpenVPN\bin\openvpn-gui.exe [2019-02-21 698328]
"DVDFab VDrive"=C:\Program Files\DVDFab Virtual Drive\vdrive.exe [2014-08-29 621472]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2021-01-06 32440376]
"com.squirrel.Teams.Teams"=C:\Users\lenovo\AppData\Local\Microsoft\Teams\Update.exe [2021-02-12 2453656]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2021-02-03 7992336]
"Opera Browser Assistant"=C:\Program Files\Opera\assistant\browser_assistant.exe [2020-11-25 3154456]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
ThinkPad OneLink Dock Management.lnk - C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe
WinZip Preloader.lnk - C:\Program Files\WinZip\WzPreloader.exe

C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Poslat do aplikace OneNote.lnk - C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2021-02-14 22:24:35 ----D---- C:\rsit
2021-02-14 22:24:35 ----D---- C:\Program Files\trend micro
2021-02-11 21:52:47 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\FXSUNATD.exe
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\FXSSVC.exe
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\FXSROUTE.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\FXSMON.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\FXSEVENT.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\fvewiz.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\fveui.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\fvecpl.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2021-02-11 21:52:47 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2021-02-11 21:52:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.XamlHost.dll
2021-02-11 21:52:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2021-02-11 21:52:46 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2021-02-11 21:52:46 ----A---- C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2021-02-11 21:52:46 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2021-02-11 21:52:46 ----A---- C:\WINDOWS\system32\cdp.dll
2021-02-11 21:52:46 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2021-02-11 21:52:42 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2021-02-11 21:52:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2021-02-11 21:52:41 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2021-02-11 21:52:41 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2021-02-11 21:52:41 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2021-02-11 21:52:41 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2021-02-11 21:52:41 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2021-02-11 21:52:41 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2021-02-11 21:52:39 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-02-11 21:52:39 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-02-11 21:52:39 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2021-02-11 21:52:39 ----A---- C:\WINDOWS\system32\mfps.dll
2021-02-11 21:52:39 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2021-02-11 21:52:38 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-02-11 21:52:38 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-02-11 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2021-02-11 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2013CustomActions.dll
2021-02-11 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2010CustomActions.dll
2021-02-11 21:52:37 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.AppAgent.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\hvsigpext.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\hvsievaluator.exe
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\assignedaccessmanagersvc.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\AssignedAccessManager.dll
2021-02-11 21:52:36 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\cryptuiwizard.dll
2021-02-11 21:52:35 ----A---- C:\WINDOWS\SYSWOW64\CertPKICmdlet.dll
2021-02-11 21:52:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2021-02-11 21:52:33 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2021-02-11 21:52:33 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2021-02-11 21:52:32 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2021-02-11 21:52:32 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2021-02-11 21:52:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhlisten.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-02-11 21:52:30 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\TieringEngineService.exe
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\nltest.exe
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\nettrace.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\msi.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\cryptuiwizard.dll
2021-02-11 21:52:29 ----A---- C:\WINDOWS\system32\CertPKICmdlet.dll
2021-02-11 21:52:28 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-02-11 21:52:28 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-02-11 21:52:28 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-02-11 21:52:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-02-11 21:52:27 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-02-11 21:52:26 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\werui.dll
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\edpcsp.dll
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\EDPCleanup.exe
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\computecore.dll
2021-02-11 21:52:25 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2021-02-11 21:52:23 ----A---- C:\WINDOWS\system32\tcbloader.dll
2021-02-11 21:52:23 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2021-02-11 21:52:23 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2021-02-11 21:52:23 ----A---- C:\WINDOWS\system32\fsutil.exe
2021-02-11 21:52:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\system32\hvloader.dll
2021-02-11 21:52:22 ----A---- C:\WINDOWS\system32\hvix64.exe
2021-02-11 21:52:22 ----A---- C:\WINDOWS\system32\hvax64.exe
2021-02-11 21:52:22 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2021-02-11 21:52:22 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2021-02-11 21:52:21 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2021-02-11 21:52:20 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2021-02-11 21:52:20 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2021-02-11 21:52:20 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2021-02-11 21:52:20 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\mdmlocalmanagement.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\dmpushproxy.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\DMAppsRes.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\AtBroker.exe
2021-02-11 21:52:19 ----A---- C:\WINDOWS\SYSWOW64\adsldpc.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\directml.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\D3D12Core.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2021-02-11 21:52:18 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2021-02-11 21:52:17 ----A---- C:\WINDOWS\SYSWOW64\DiagnosticInvoker.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2021-02-11 21:52:16 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2021-02-11 21:52:15 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2021-02-11 21:52:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2021-02-11 21:52:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2021-02-11 21:52:15 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2021-02-11 21:52:15 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2021-02-11 21:52:14 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2021-02-11 21:52:13 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2021-02-11 21:52:13 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2021-02-11 21:52:13 ----A---- C:\WINDOWS\system32\vbscript.dll
2021-02-11 21:52:13 ----A---- C:\WINDOWS\system32\shdocvw.dll
2021-02-11 21:52:13 ----A---- C:\WINDOWS\system32\pku2u.dll
2021-02-11 21:52:13 ----A---- C:\WINDOWS\system32\LsaIso.exe
2021-02-11 21:52:13 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2021-02-11 21:52:13 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-02-11 21:52:12 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-02-11 21:52:12 ----A---- C:\WINDOWS\system32\rasmans.dll
2021-02-11 21:52:12 ----A---- C:\WINDOWS\system32\rascustom.dll
2021-02-11 21:52:12 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2021-02-11 21:52:12 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\profsvcext.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\msIso.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\DismApi.dll
2021-02-11 21:52:10 ----A---- C:\WINDOWS\system32\Dism.exe
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\tdh.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\efsext.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\efscore.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\edptask.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\dmpushproxy.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\DMAppsRes.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\d3d9.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\coredpus.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\configmanager2.dll
2021-02-11 21:52:09 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2021-02-11 21:52:08 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\ntlanman.dll
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\netlogon.dll
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\lpk.dll
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\KernelBase.dll
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\fontsub.dll
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2021-02-11 21:52:03 ----A---- C:\WINDOWS\system32\dciman32.dll
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\WerFault.exe
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\hal.dll
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\Faultrep.dll
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2021-02-11 21:52:02 ----A---- C:\WINDOWS\system32\dbgcore.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\ubpm.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\tzres.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\twinui.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\sppobjs.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\schannel.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\profsvc.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\oleaut32.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\msctf.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\dbghelp.dll
2021-02-11 21:52:01 ----A---- C:\WINDOWS\system32\crypt32.dll
2021-02-11 21:52:00 ----A---- C:\WINDOWS\system32\sppsvc.exe
2021-02-11 21:52:00 ----A---- C:\WINDOWS\system32\sppcext.dll
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\zipfldr.dll
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\shell32.dll
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\CaptureService.dll
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\AtBroker.exe
2021-02-11 21:51:59 ----A---- C:\WINDOWS\system32\adsldpc.dll
2021-02-11 21:51:58 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2021-02-11 21:51:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\UsoClient.exe
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\usoapi.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\updatecsp.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-02-11 21:51:57 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\win32k.sys
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\wevtapi.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\wcimage.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\wci.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\wc_storage.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\drivers\condrv.sys
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\container.dll
2021-02-11 21:51:56 ----A---- C:\WINDOWS\system32\bindflt.dll
2021-02-11 21:51:54 ----A---- C:\WINDOWS\system32\wintrust.dll
2021-02-11 21:51:54 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-02-11 21:51:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2021-02-11 21:51:54 ----A---- C:\WINDOWS\system32\win32u.dll
2021-02-11 21:51:54 ----A---- C:\WINDOWS\system32\kerberos.dll
2021-02-11 21:51:54 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\WaaSAssessment.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\tquery.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\mssprxy.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\mssph.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\ISM.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-02-11 21:51:53 ----A---- C:\WINDOWS\system32\esent.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\mssitlb.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\msscntrs.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\FntCache.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\DWrite.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\D3D12Core.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\D3D12.dll
2021-02-11 21:51:52 ----A---- C:\WINDOWS\system32\cdd.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\directml.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2021-02-11 21:51:51 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\ShareHost.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\cdprt.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2021-02-11 21:51:50 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2021-02-11 21:51:49 ----A---- C:\WINDOWS\system32\WWAHost.exe
2021-02-11 21:51:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2021-02-11 21:51:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2021-02-11 21:51:49 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-02-11 21:51:49 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-02-11 21:51:49 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-02-11 21:51:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-02-11 21:51:48 ----A---- C:\WINDOWS\system32\kernel32.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\WpcMon.exe
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\localspl.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\dot3svc.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\dot3msm.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\dot3api.dll
2021-02-11 21:51:47 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2021-02-11 21:51:47 ----A---- C:\WINDOWS\explorer.exe
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\xboxgipsvc.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\vac.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\AudioSes.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\AudioEng.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\audiodg.exe
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-02-11 21:51:46 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-02-11 21:51:43 ----A---- C:\WINDOWS\system32\vmbuspipe.dll
2021-02-11 21:51:43 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2021-02-11 21:51:43 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2021-02-11 21:51:43 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2021-02-11 21:51:42 ----A---- C:\WINDOWS\system32\iscsilog.dll
2021-02-11 21:51:42 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2021-02-11 21:51:42 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2021-02-11 21:51:42 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2021-02-11 21:51:42 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2021-02-11 21:51:42 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2021-02-11 21:51:42 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2021-02-11 21:40:42 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2021-02-11 21:40:42 ----A---- C:\WINDOWS\system32\poqexec.exe
2021-02-10 13:27:59 ----A---- C:\WINDOWS\SECOH-QAD.exe
2021-02-10 13:27:59 ----A---- C:\WINDOWS\SECOH-QAD.dll
2021-02-09 18:43:02 ----D---- C:\ProgramData\Brother
2021-02-06 17:36:38 ----D---- C:\Users\lenovo\AppData\Roaming\Telegram Desktop
2021-02-03 12:50:02 ----A---- C:\WINDOWS\system32\drivers\dbx-stable.sys
2021-02-03 12:50:02 ----A---- C:\WINDOWS\system32\drivers\dbx-dev.sys
2021-02-03 12:50:02 ----A---- C:\WINDOWS\system32\drivers\dbx-canary.sys
2021-02-03 12:50:02 ----A---- C:\WINDOWS\system32\DbxSvc.exe
2021-01-29 08:19:48 ----D---- C:\Users\lenovo\AppData\Roaming\Teams
2021-01-28 15:31:29 ----D---- C:\Users\lenovo\AppData\Roaming\Zoom
2021-01-23 07:52:45 ----D---- C:\ProgramData\WinZip
2021-01-23 07:52:34 ----D---- C:\Program Files\WinZip
2021-01-23 07:51:44 ----D---- C:\ProgramData\UniqueId
2021-01-17 00:03:04 ----D---- C:\WINDOWS\Panther

======List of files/folders modified in the last 1 month======

2021-02-14 22:24:35 ----RD---- C:\Program Files
2021-02-14 22:14:12 ----D---- C:\FRST
2021-02-14 22:09:09 ----SHD---- C:\System Volume Information
2021-02-14 22:07:43 ----D---- C:\WINDOWS\Temp
2021-02-14 22:07:43 ----D---- C:\WINDOWS\Prefetch
2021-02-14 22:02:59 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-02-14 21:33:02 ----D---- C:\WINDOWS\System32
2021-02-14 21:33:02 ----D---- C:\WINDOWS\INF
2021-02-14 21:33:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-14 21:30:43 ----D---- C:\Program Files\CCleaner
2021-02-14 21:28:49 ----D---- C:\ProgramData\AVAST Software
2021-02-14 21:26:46 ----D---- C:\Program Files (x86)\TeamViewer
2021-02-14 21:26:07 ----D---- C:\WINDOWS\system32\Tasks
2021-02-14 21:26:06 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-02-14 21:25:54 ----D---- C:\ProgramData\Synaptics
2021-02-14 21:25:28 ----D---- C:\WINDOWS\system32\sru
2021-02-14 21:25:25 ----D---- C:\WINDOWS\system32\catroot2
2021-02-14 21:15:32 ----D---- C:\WINDOWS\system32\SleepStudy
2021-02-14 11:47:12 ----D---- C:\WINDOWS\AppReadiness
2021-02-14 00:26:12 ----HD---- C:\Program Files\WindowsApps
2021-02-13 23:07:17 ----RD---- C:\WINDOWS\Microsoft.NET
2021-02-12 15:15:20 ----D---- C:\WINDOWS\system32\config
2021-02-12 04:02:46 ----D---- C:\WINDOWS\WinSxS
2021-02-12 04:02:34 ----D---- C:\WINDOWS\system32\DriverStore
2021-02-12 04:02:27 ----D---- C:\WINDOWS\Tasks
2021-02-12 04:01:25 ----D---- C:\WINDOWS\SYSWOW64\migration
2021-02-12 04:01:25 ----D---- C:\WINDOWS\SYSWOW64\en-US
2021-02-12 04:01:25 ----D---- C:\WINDOWS\SYSWOW64\Dism
2021-02-12 04:01:25 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2021-02-12 04:01:25 ----D---- C:\WINDOWS\SysWOW64
2021-02-12 04:01:24 ----D---- C:\WINDOWS\SystemResources
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\zh-TW
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\zh-CN
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\ru-RU
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\ro-RO
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\pt-PT
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\pt-BR
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\pl-PL
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\oobe
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\nl-NL
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\migration
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\ko-KR
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\ja-jp
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\it-IT
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\fr-FR
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\fr-CA
2021-02-12 04:01:24 ----D---- C:\WINDOWS\system32\es-MX
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\es-ES
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\en-US
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\en-GB
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\el-GR
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\drivers\en-US
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\drivers
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\Dism
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\de-DE
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\cs-CZ
2021-02-12 04:01:23 ----D---- C:\WINDOWS\system32\ar-SA
2021-02-12 04:01:22 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-02-12 04:01:22 ----D---- C:\WINDOWS\ShellExperiences
2021-02-12 04:01:22 ----D---- C:\WINDOWS\PolicyDefinitions
2021-02-12 04:01:22 ----D---- C:\WINDOWS\bcastdvr
2021-02-12 04:01:22 ----D---- C:\Windows
2021-02-12 04:01:22 ----D---- C:\Program Files\Windows Mail
2021-02-12 04:01:22 ----D---- C:\Program Files\Common Files\System
2021-02-12 04:01:22 ----D---- C:\Program Files (x86)\Windows Mail
2021-02-11 21:55:20 ----D---- C:\WINDOWS\CbsTemp
2021-02-11 21:55:10 ----A---- C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-02-10 23:46:11 ----D---- C:\WINDOWS\system32\MRT
2021-02-10 23:38:56 ----D---- C:\WINDOWS\debug
2021-02-10 23:38:51 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-02-10 19:58:29 ----SHDC---- C:\WINDOWS\Installer
2021-02-10 19:57:13 ----AD---- C:\Program Files\Opera
2021-02-10 19:57:12 ----AD---- C:\Program Files\Opera developer
2021-02-09 18:43:02 ----HD---- C:\ProgramData
2021-02-09 05:40:59 ----D---- C:\Program Files\Microsoft Office
2021-02-07 19:13:42 ----D---- C:\WINDOWS\SoftwareDistribution
2021-02-05 12:50:02 ----D---- C:\WINDOWS\system32\LogFiles
2021-02-05 06:44:15 ----D---- C:\Program Files (x86)\Dropbox
2021-02-04 09:03:13 ----D---- C:\SierraChart
2021-02-04 07:25:27 ----D---- C:\Program Files (x86)\myWAC
2021-01-29 08:19:39 ----SD---- C:\Users\lenovo\AppData\Roaming\Microsoft
2021-01-29 06:28:11 ----RD---- C:\Users
2021-01-29 06:26:55 ----SHD---- C:\$RECYCLE.BIN
2021-01-26 11:59:29 ----D---- C:\ProgramData\Packages
2021-01-23 09:06:56 ----D---- C:\WINDOWS\Logs
2021-01-22 14:28:10 ----D---- C:\Program Files (x86)\BOSSAFX
2021-01-22 14:28:01 ----D---- C:\Program Files (x86)
2021-01-22 14:17:07 ----D---- C:\WINDOWS\system32\appmgmt
2021-01-22 14:14:09 ----AD---- C:\Program Files (x86)\NinjaTrader 8
2021-01-22 14:09:57 ----D---- C:\Slavia
2021-01-22 14:04:29 ----DC---- C:\Users\lenovo\AppData\Roaming\uTorrent
2021-01-22 14:04:29 ----DC---- C:\Users\lenovo\AppData\Roaming\TeamViewer
2021-01-22 14:04:29 ----D---- C:\ProgramData\LogMeIn
2021-01-22 14:03:01 ----D---- C:\WINDOWS\LiveKernelReports
2021-01-17 00:01:27 ----SD---- C:\WINDOWS\SYSWOW64\F12
2021-01-17 00:01:27 ----D---- C:\WINDOWS\SYSWOW64\wbem
2021-01-17 00:01:27 ----D---- C:\WINDOWS\SYSWOW64\setup
2021-01-17 00:01:27 ----D---- C:\WINDOWS\SYSWOW64\PerceptionSimulation
2021-01-17 00:01:26 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2021-01-17 00:01:26 ----D---- C:\WINDOWS\SYSWOW64\Com
2021-01-17 00:01:26 ----D---- C:\WINDOWS\SYSWOW64\AdvancedInstallers
2021-01-17 00:01:21 ----SD---- C:\WINDOWS\system32\UNP
2021-01-17 00:01:21 ----SD---- C:\WINDOWS\system32\F12
2021-01-17 00:01:21 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2021-01-17 00:01:21 ----D---- C:\WINDOWS\system32\wbem
2021-01-17 00:01:21 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2021-01-17 00:01:21 ----D---- C:\WINDOWS\system32\setup
2021-01-17 00:01:21 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2021-01-17 00:01:21 ----D---- C:\WINDOWS\system32\migwiz
2021-01-17 00:01:20 ----SD---- C:\WINDOWS\system32\DiagSvcs
2021-01-17 00:01:20 ----D---- C:\WINDOWS\system32\drivers\UMDF
2021-01-17 00:01:20 ----D---- C:\WINDOWS\system32\Com
2021-01-17 00:01:20 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2021-01-17 00:01:12 ----RD---- C:\WINDOWS\PrintDialog
2021-01-17 00:01:12 ----D---- C:\WINDOWS\ShellComponents
2021-01-17 00:01:12 ----D---- C:\WINDOWS\Provisioning
2021-01-17 00:01:12 ----D---- C:\WINDOWS\IME
2021-01-17 00:01:12 ----D---- C:\Program Files\Windows Photo Viewer
2021-01-17 00:01:12 ----D---- C:\Program Files\Windows Media Player
2021-01-17 00:01:12 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-17 00:01:12 ----D---- C:\Program Files\Windows Defender
2021-01-17 00:01:12 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2021-01-17 00:01:12 ----D---- C:\Program Files (x86)\Windows Media Player

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2021-01-04 36792]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2021-01-04 247888]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2021-01-04 97360]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2021-01-04 16832]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2021-01-04 84496]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2021-01-07 324904]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-02 644968]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2020-08-13 275256]
R0 PMDRVS;PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [2018-12-25 44160]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-08-13 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2021-01-04 208672]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2021-01-04 332880]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2021-01-04 42424]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2021-01-04 176384]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2021-01-04 522480]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2021-01-04 108928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2021-01-04 851256]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2021-01-08 468888]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 dvdfabio;dvdfabio; \??\C:\WINDOWS\system32\drivers\dvdfabio.sys [2014-08-29 12704]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R1 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2015-10-13 11552]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2021-01-07 214808]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-02-11 457728]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys [2015-06-15 72216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R3 BcmNfcIc;@oem75.inf,%BcmNfcIc.SVCDESC%;NFC I2C Service; C:\WINDOWS\System32\drivers\BcmNfcIc.sys [2015-10-27 77016]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-01-14 99328]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
R3 CM3218x;@oem97.inf,%CM3218xDisplayName%;CM3218x SPB Driver; C:\WINDOWS\System32\drivers\WUDFRd.sys [2019-03-19 297984]
R3 CPLMACPI;@oem97.inf,%CPLMACPI.SvcDesc%;Capella Micro CPLMACPI Sensor Filter; C:\WINDOWS\System32\drivers\CPLMACPI.sys [2015-06-16 28136]
R3 cxwmbclass;@netwmbclass.inf,%wmbclass.Service.DispName%;USB Mobile Broadband Adapter Driver; C:\WINDOWS\System32\drivers\cxwmbclass.sys [2020-03-11 130048]
R3 e1dexpress;@oem33.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\WINDOWS\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_9b04ae4c30c0d829\e1d68x64.sys [2019-09-10 606688]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\System32\drivers\ibmpmdrv.sys [2018-12-25 87680]
R3 ibtusb;@oem111.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2018-05-15 136720]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-11-23 7974896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2020-04-08 7326304]
R3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-17 359424]
R3 MbmUsbSerial;MBM USB Generic Serial Driver svc; C:\WINDOWS\System32\Drivers\MbmUsbSerial.sys [2015-06-30 81392]
R3 MEIx64;@oem124.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-10-17 206496]
R3 MkBusFilter;@oem9.inf,%MkFilterSvc%;MbmFilter Service; C:\WINDOWS\system32\DRIVERS\MbmDeviceFilter.sys [2015-06-30 42208]
R3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
R3 NETwNb64;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 8.1 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [2019-04-30 3521016]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2020-03-11 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 AppleKmdfFilter;@oem130.inf,%AppleKmdfFilterDisplayName%;Apple KMDF Filter Driver; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [2018-05-10 20640]
S3 AppleLowerFilter;@oem130.inf,%AppleLowerFilterDisplayName%;Apple Lower Filter Driver; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [2018-05-10 35560]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-14 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2020-02-13 138040]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2020-02-13 174392]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2020-02-13 153912]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2014-09-05 44640]
S3 AX88179;@netax88179_178a.inf,%AX88179.DeviceDesc%;ASIX AX88179 USB 3.0 to Gigabit Ethernet Adapter; C:\WINDOWS\System32\drivers\ax88179_178a.sys [2019-03-19 74240]
S3 AX88772;@netax88772.inf,%AX88772.DeviceDesc%;ASIX AX88772 USB2.0 to Fast Ethernet Adapter; C:\WINDOWS\System32\drivers\ax88772.sys [2019-03-19 111616]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2021-02-11 117048]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-09-14 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-01-14 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-01-14 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2021-01-14 1433088]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 dg_ssudbus;@oem69.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2012-02-15 99384]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-09-14 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2020-10-14 64512]
S3 HPFXBULK;HPFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [2007-07-16 20504]
S3 HPFXFAX;HPFXFAX; C:\WINDOWS\system32\drivers\hpfx64fax.sys [2007-07-16 23064]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2021-02-11 84280]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-08-22 39320]
S3 IntcDAud;@oem17.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\drivers\IntcDAud.sys [2016-05-12 481768]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 ksaud;@oem126.inf,%KSAUD.SvcDesc%;Creative USB Audio Driver; C:\WINDOWS\system32\drivers\ksaud.sys [2017-07-05 2116728]
S3 LENOVODOCK;@oem120.inf,%LENOVODOCK.DeviceDesc%;Lenovo ThinkPad OneLink Pro Dock; C:\WINDOWS\System32\drivers\LenovoDock.sys [2013-10-29 572416]
S3 massfilter_hs;HS HandSet Mass Storage Filter Driver; \??\C:\WINDOWS\system32\drivers\massfilter_hs.sys [2012-06-20 20232]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 Netaapl;@oem77.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2017-09-07 23040]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2020-11-12 97088]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 pmxdrv;pmxdrv; \??\C:\WINDOWS\system32\drivers\pmxdrv.sys [2019-10-11 31152]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2021-01-25 169672]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2019-04-29 96056]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2021-01-04 621728]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2021-01-04 351848]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2021-01-04 58048]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_2e0b3;CDPUserSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2021-02-09 8990088]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DbxSvc;DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [2021-02-03 44064]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2019-04-22 689952]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\syswow64\svchost.exe [2019-03-19 45448]
R2 IBMPMSVC;@oem18.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\System32\ibmpmsvc.exe [2018-12-25 851800]
R2 ibtsiva;@oem111.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-23 382456]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-19 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-07 223008]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2017-06-01 117320]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-07-07 415520]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 nsmService;NSM Service; C:\Program Files (x86)\NetSetMan\nsmservice.exe [2017-04-24 1782976]
R2 OneSyncSvc_2e0b3;OneSyncSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 OpenVPNServiceInteractive;OpenVPN Interactive Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2019-02-21 74712]
R2 ovpnagent;OpenVPN Agent; C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe [2017-08-14 900840]
R2 PDFsam Manager;PDFsam Manager; C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe [2015-11-13 1050224]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_2e0b3;cbdhsvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-09-11 43704]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2019-03-19 45448]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_2e0b3;PimIndexMaintenanceSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-05-10 143144]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-07-15 224160]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-17 144200]
S2 ImControllerService;System Interface Foundation Service; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2017-07-22 58176]
S2 LPlatSvc;@oem18.inf,%Lenovo.svcDesc1%;Lenovo Platform Service; C:\WINDOWS\System32\LPlatSvc.exe [2018-12-25 892760]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 MessagingService_2e0b3;MessagingService_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_2e0b3;AarSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-12-08 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2021-01-04 8477080]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_2e0b3;BcastDVRUserService_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_2e0b3;BluetoothUserService_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_2e0b3;CaptureService_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2019-09-11 67272]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_2e0b3;ConsentUxUserSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-11-23 310264]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-11 382688]
S3 CredentialEnrollmentManagerUserSvc_2e0b3;CredentialEnrollmentManagerUserSvc_2e0b3; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-11 382688]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-05-10 143144]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_2e0b3;DeviceAssociationBrokerSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_2e0b3;DevicePickerUserSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_2e0b3;DevicesFlowUserSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-01-14 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-07-15 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\elevation_service.exe [2021-02-04 1434224]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-17 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-07-19 658232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-06-02 273232]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.68\elevation_service.exe [2021-02-13 1523584]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-06-05 173512]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2019-04-22 311584]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 OpenVPNService;OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [2018-03-06 24192]
S3 OpenVPNServiceLegacy;OpenVPN Legacy Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2019-02-21 74712]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 263488]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-14 103936]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_2e0b3;PrintWorkflowUserSvc_2e0b3; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2021-01-14 828240]

-----------------EOF-----------------
_________________________________________________________________
RSIT | MWAV | CCleaner

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: zpomalené browsery

#4 Příspěvek od JaRon »

ahoj,
nabudúce podla moznosti vkladaj len jeden príspevok, ked vlozis viac je to lahko prehliadnutelne ako príspevok s odpovedou :!:
Vycisti PC s MBAM a ADWCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#5 Příspěvek od dinospages »

Ahoj díky, vím že je to nepřehledné ale když jste chtěl oba logy poslal jsem to na 2x,

zde zasílám log z MBAM, bohuzel jsem nenainstaloval free verzi ale premium, o posutupu co máte u podpisu mi to nenačítá ani jeden obrázek v návodu, snad jsem to provedl správně, až odpovíte udělám adwcleaner:

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 01.03.21
Čas skenování: 8:43
Logovací soubor: d0858862-7a61-11eb-9b43-54ee757ac743.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1173
Aktualizovat verzi balíku komponent: 1.0.37611
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 18363.1379)
CPU: x64
Systém souborů: NTFS
Uživatel: Lenovo-PC\lenovo

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 844883
Zjištěné hrozby: 14
Hrozby umístěné do karantény: 0
Uplynulý čas: 10 hod, 2 min, 36 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 3
AutoKMS.HackTool.Patcher.DDS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\AutoPico Daily Restart, Žádná uživatelská akce, 1000002, 0, , , , , ,
AutoKMS.HackTool.Patcher.DDS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{28F4E00B-8302-4638-B899-7A224B796F42}, Žádná uživatelská akce, 1000002, 0, , , , , ,
AutoKMS.HackTool.Patcher.DDS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{28F4E00B-8302-4638-B899-7A224B796F42}, Žádná uživatelská akce, 1000002, 0, , , , , ,

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 11
AutoKMS.HackTool.Patcher.DDS, C:\WINDOWS\SYSTEM32\TASKS\AutoPico Daily Restart, Žádná uživatelská akce, 1000002, 0, , , , , CEE66026CF1488C1C24BF892043FCF3C, 14F18FC85423761E1D59FA052D714852482FD03EDFAAD01C62C02AC6281A12E5
AutoKMS.HackTool.Patcher.DDS, D:\INSTALL\CRACK_ALL_WIN\PORTABLE\AUTOPICO.EXE, Žádná uživatelská akce, 1000002, 0, 1.0.37611, 1275B8BDCDC439CEF6B63A22, dds, 01137993, A69ACB01B99959EFEC7C0A2A8CAA7545, 470A75FE3DA2DDF9D27FB3F9C96E6C665506EA7BA26AB89F0C89606F678AE4A2
AutoKMS.HackTool.Patcher.DDS, C:\USERS\LENOVO\DROPBOX\.DROPBOX.CACHE\2019-04-17\AKTIVACE (DELETED 97DE33B00C71D9E1509624ECE35ED0F4).ZIP, Žádná uživatelská akce, 1000002, 0, 1.0.37611, 7717A26488FFBDFD4E3C3098, dds, 01137993, 192B84653423AEA77BE0C05F7F433415, 16FDA513E835003EAAB8EABC5B466C0B49EA7E16174EF8855715126298783AB1
HackTool.Agent.KMS, D:\$RECYCLE.BIN\S-1-5-21-1864349024-1291946563-1421522111-1001\$R8FM9OY.EXE, Žádná uživatelská akce, 3428, 700614, 1.0.37611, C2B18A501C26B60273D5EF5B, dds, 01137993, EA4137F439C07464C8094C90FCE47084, 91539A89FB6531AD4E52E8B19BFE02EC4CBB22393BC0058CC15F56D926017AC7
Generic.Trojan.Stealer.DDS, D:\INSTALL\CRACK_ALL_WIN\KMSPICO 10.1.8 FINAL + PORTABLE (OFFICE AND WINDOWS 10 ACTIVATOR) [TECHTOOLS.NET].RAR, Žádná uživatelská akce, 1000002, 0, 1.0.37611, 9C1059F3C12F3626C58FA4F4, dds, 01137993, 5469FEAAEE3ADDDBA4A9806F64488E87, 3C1AB7B8AA8E51A04A06037A75DACE1A37F24B423C25191FFA89A98AF02E5719
Malware.AI.4167950705, D:\INSTALL\AKTIVATOR-WIN7EXE(CHOZE).ZIP, Žádná uživatelská akce, 1000000, 0, 1.0.37611, 34FB7A101FF67F7BF86DE171, dds, 01137993, 71B9F9771FDEDD39C9A97F1C8229DF2C, DBA868A59CF7B27DF633CFAE7E00CDAF882D73EF1138F140A02EF39489499E89
HackTool.Agent.KMS, D:\INSTALL\CRACK_ALL_WIN\PORTABLE\KMSELDI.EXE, Žádná uživatelská akce, 3428, 700614, 1.0.37611, C2B18A501C26B60273D5EF5B, dds, 01137993, EA4137F439C07464C8094C90FCE47084, 91539A89FB6531AD4E52E8B19BFE02EC4CBB22393BC0058CC15F56D926017AC7
Generic.Trojan.Stealer.DDS, D:\INSTALL\KMSPICO 10.1.8 FINAL + PORTABLE (OFFICE AND WINDOWS 10 ACTIVATOR) [TECHTOOLS.NET].RAR, Žádná uživatelská akce, 1000002, 0, 1.0.37611, 9C1059F3C12F3626C58FA4F4, dds, 01137993, 5469FEAAEE3ADDDBA4A9806F64488E87, 3C1AB7B8AA8E51A04A06037A75DACE1A37F24B423C25191FFA89A98AF02E5719
RiskWare.KMS, D:\INSTALL\WINDOWS 10 ACTIVATOR FOR ALL VERSIONS.EXE, Žádná uživatelská akce, 10859, 880224, 1.0.37611, 3DA06B36D793EE5CFBB66CB6, dds, 01137993, E67EDA69E8174A8F2DE0296A89BE78FF, A879287959C9B8A7BBD3DD7AE0CC002C60B94B2E80A06F499F8AD46262544340
RiskWare.Tool.CK, D:\INSTALL\FINEPRINT + PDFFACTORY PRO 400.CZ.RAR, Žádná uživatelská akce, 11, 133374, 1.0.37611, 0000000000000000000003EB, dds, 01137993, 7BF8F1E4C83D80242DF850E907815831, 0CE774EDBFD396C3AA7DB455270EAD421C5950E57D1E6C943FA5E4A3CA8BE1D9
RiskWare.KMS, D:\INSTALL\WINDOWS 10 ACTIVATOR FOR ALL VERSIONS.ZIP, Žádná uživatelská akce, 10859, 880224, 1.0.37611, 3DA06B36D793EE5CFBB66CB6, dds, 01137993, 4166B257EF9F33771F138F60F4BF15D5, E55D35F6F6BBAB8FE49DB0A47C01E58F70EDE158A5F30075306C463AE0053DAA

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)
Přílohy
vir_forum.JPG
vir_forum.JPG (47.53 KiB) Zobrazeno 4223 x
_________________________________________________________________
RSIT | MWAV | CCleaner

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: zpomalené browsery

#6 Příspěvek od JaRon »

po zmazani najdeneho mozes pokracovat s ADWCleanerom :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#7 Příspěvek od dinospages »

budete sem chtit nejaky log z adwCleaneru: C00 S00 S01 S02 ?

po kliknutí na ADW jsem přesměrován ihned na stáhnutí z bleeping.... , nevidím návod na ADW tudíž nevím co po scanu zaslat,

a jeste otazka ohledne té přílohy (obrazku) který jsem zaslal v minulém příspěvku, po nainstalovani MBAM když jdu na viry.cz pripadne forum,viry.cz tak to hlásí trojského koně na webu, to je v pořádku?
_________________________________________________________________
RSIT | MWAV | CCleaner

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: zpomalené browsery

#8 Příspěvek od JaRon »

mozes vlozit log ADW C00
stranka viry je OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#9 Příspěvek od dinospages »

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-30-2019
# Duration: 00:00:12
# OS: Windows 10 Pro
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Windows\ServiceProfiles\LocalService\AppData\Local\Pokki
Deleted C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Pokki

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1408 octets] - [30/04/2019 12:01:27]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
_________________________________________________________________
RSIT | MWAV | CCleaner

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: zpomalené browsery

#10 Příspěvek od JaRon »

FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#11 Příspěvek od dinospages »

1. kdyz stahnu pise mi to chyba v komprimovanem souboru

2. nikde nevidím odkaz na stazeni na té stránce
_________________________________________________________________
RSIT | MWAV | CCleaner

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: zpomalené browsery

#12 Příspěvek od JaRon »

1. mne to fungovalo
dal som na http://leteckaposta.cz/189384512
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#13 Příspěvek od dinospages »

nevím co dělám špatně ale nejde mi to stáhnou ani z letecké pošty, když na to kliknu levým tlačítkem myši tak se nic nestane a když chci přes pravé tlačítko tak je v nabídce jen uložit odkaz jako a to tahá html
_________________________________________________________________
RSIT | MWAV | CCleaner

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: zpomalené browsery

#14 Příspěvek od JaRon »

mas Chrome - FF - Edge - MSIE
neverim, ze ani v jednom z nich to nejde stiahnut
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

dinospages
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 240
Registrován: 20 črc 2006 11:33

Re: zpomalené browsery

#15 Příspěvek od dinospages »

chcete soubor zoek-results.log?

je to moc znaků zasílám v příloze zasílám rar
Přílohy
zoek-results.rar
(43.24 KiB) Staženo 114 x
_________________________________________________________________
RSIT | MWAV | CCleaner

Zamčeno