Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
superjano
Návštěvník
Návštěvník
Příspěvky: 64
Registrován: 16 srp 2005 23:08

Prosim o kontrolu

#1 Příspěvek od superjano »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Ran by Vlado (administrator) on LAPTOP-DIN4F96T (LENOVO 81BG) (03-03-2021 17:25:46)
Running from C:\Users\Vlado\Desktop
Loaded Profiles: Vlado
Platform: Windows 10 Home Version 20H2 19042.804 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.2.1.0_x64__5grkq8ppsgwt4\VFS\ProgramFilesX64\Lenovo\LenovoUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Vlado\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2102.1001.17.0_x64__8wekyb3d8bbwe\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.50.5005.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.50.5005.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849920 2017-03-07] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-09-14] (Adobe Inc. -> )
HKU\S-1-5-21-220631949-4223932415-3592341702-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32721976 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-220631949-4223932415-3592341702-1001\...\Run: [9965A779B266783EACC8E14031BBCB690FA374DB._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8
HKU\S-1-5-21-220631949-4223932415-3592341702-1001\...\Run: [Opera Browser Assistant] => C:\Users\Vlado\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3366424 2020-12-08] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-26] (Google LLC -> Google LLC)
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03653869-8F79-4285-809E-4AA582D59647} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {11E8AB4C-83FF-4A6E-A156-247403C2326E} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {225755D8-CE51-4826-8C53-B7930411D40D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8e1e63a4-ff8d-46ed-b3a2-950850752c55 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84920 2021-02-23] (Lenovo -> Lenovo Group Ltd.)
Task: {22ACD00A-540E-4121-9692-1DFE941EA3CC} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3583264 2020-06-03] (Corel Corporation -> Corel Corporation)
Task: {2355F549-42C5-4823-B593-5D1BFD6941C2} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {27A88512-70C4-4D46-B6C6-932F50730D49} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {29762C25-6849-494A-A7BD-AE95DF2334A3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2F97AD35-4F14-4F5C-A407-5A510E905940} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {2FA0E8BB-54C2-4D2F-956C-A94E251933D9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {357E5966-F8EB-489B-94F3-EE551F0ED202} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3AA5FD1E-2072-40AD-9288-E80320ADF199} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {3BC9C7FE-6ECD-4E56-B5DE-7730A8D9901B} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {403A68A7-3332-488C-B9D8-C4352C511A07} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {597F4A1C-BF0C-4BA6-BE1B-98BB020AC2DE} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5BDE8D0E-A0EF-489C-AFBA-983BA6AFE5AF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {654EEBBE-5EE4-435A-80AA-9613B12431B3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6A78055D-C225-4049-978C-C3BD9C108CC1} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility://
Task: {6BF385F6-35C0-485F-8BC5-4DA470BDACF8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E3564F8-4A3D-42EA-9145-78E0C60BA5B5} - no filepath
Task: {72C89919-C7AD-4DD1-AB5B-D225E6E13C92} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\1997c013-73d4-4dbc-8c6a-f7469e1a3062 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84920 2021-02-23] (Lenovo -> Lenovo Group Ltd.)
Task: {737EB892-BFDB-48BF-B169-581B53CCFF74} - System32\Tasks\CorelUpdateHelperTask-3E50895B04942B164CD30B10CC2E4412 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3583264 2020-06-03] (Corel Corporation -> Corel Corporation)
Task: {82B0BEF7-C97E-413A-90E0-973B070DA4A7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {84678F72-0F6F-46B1-A95B-FEEE46635709} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {8739F8BC-1502-48CA-9546-41165C1C852D} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {8BB4183A-9851-4A2E-9EDD-84D344A0D5DE} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {959C18CD-10CF-47C1-B1ED-07C64C2013A1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-02-16] (Piriform Software Ltd -> Piriform)
Task: {A52F2B05-FFBB-4F6C-959D-0101EBB9F2C1} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [35464 2021-02-05] (HP Inc. -> HP Inc.)
Task: {AF9A1255-E3BE-447B-83DF-AE61C7CD9724} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B2E52AA0-B109-41FB-8393-AF31BEB4B2FC} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [35464 2021-02-05] (HP Inc. -> HP Inc.)
Task: {B467ED6C-F379-4070-A663-E59A6AEE79B7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5f622100-8136-4758-bbb8-252c36861fb8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84920 2021-02-23] (Lenovo -> Lenovo Group Ltd.)
Task: {B8509D4E-B853-4A0F-B110-AE41BF76CE76} - System32\Tasks\Opera scheduled assistant Autoupdate 1594985878 => C:\Users\Vlado\AppData\Local\Programs\Opera\launcher.exe [1793664 2021-02-26] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Vlado\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {BA368E17-9EDD-4F03-B73B-599DD82C3CEF} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe
Task: {C0AF79F4-C945-4F58-B49E-5082A1B26D98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {D433BB1A-6A2F-4858-8032-EE6B543872FE} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\ScheduleEventAction.exe [24368 2020-12-29] (Lenovo -> Lenovo Group Ltd.)
Task: {DA7281BB-44FF-4C91-8912-C477AA45B6C6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142152 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {DBCF2360-FEEF-42C9-8782-C4771812CE73} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142152 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE53AE13-5E6A-4823-957F-3093CF7C1729} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-18] (Google LLC -> Google LLC)
Task: {E582554C-B72E-4594-A9D8-ED47DA0FCAB1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-18] (Google LLC -> Google LLC)
Task: {E70FCA12-B5BD-4E4B-8E59-637E1B078700} - System32\Tasks\Opera scheduled Autoupdate 1594985873 => C:\Users\Vlado\AppData\Local\Programs\Opera\launcher.exe [1793664 2021-02-26] (Opera Software AS -> Opera Software)
Task: {E8D86510-0437-4D1B-8424-2DB47F3A13E9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC30A238-32AD-46A4-89F9-B1D762E316E9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\16090400-1c9f-4275-a172-3780fa67e68a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84920 2021-02-23] (Lenovo -> Lenovo Group Ltd.)
Task: {F8C63F19-058F-4F57-8A8B-AB8ACBA32564} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 217.23.254.124 217.23.254.125
Tcpip\..\Interfaces\{02eda104-230d-4e40-9271-6e1d632f3a84}: [DhcpNameServer] 217.23.254.124 217.23.254.125
Tcpip\..\Interfaces\{88fc4153-dfa3-494b-acb3-347b519b7008}: [DhcpNameServer] 217.23.254.124 217.23.254.125

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Vlado\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-03]

FireFox:
========
FF DefaultProfile: 53fr8wr1.default
FF ProfilePath: C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\53fr8wr1.default [2020-09-14]
FF ProfilePath: C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\rzw7vfrg.default-release-1580663982893 [2021-03-03]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\rzw7vfrg.default-release-1580663982893\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2020-10-09]
FF HKLM-x32\...\Firefox\Extensions: [helper-sig@savefrom.net] - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\53fr8wr1.default\extensions\staged\helper-sig@savefrom.net.xpi => not found
FF HKU\S-1-5-21-220631949-4223932415-3592341702-1001\...\Firefox\Extensions: [helper-sig@savefrom.net] - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\53fr8wr1.default\extensions\staged\helper-sig@savefrom.net.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-10-09]

Chrome:
=======
CHR Profile: C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default [2021-03-03]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (Prezentácie) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-18]
CHR Extension: (Dokumenty) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-18]
CHR Extension: (Disk Google) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-18]
CHR Extension: (YouTube) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-18]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29]
CHR Extension: (Tabuľky) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-18]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-18]
CHR Extension: (Chrome Media Router) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-25]
CHR HKU\S-1-5-21-220631949-4223932415-3592341702-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [moihledlmchhofenpacbhphnbnpakgmo]

Opera:
=======
OPR Profile: C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable [2021-03-03]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-03-02]

Vivaldi:
=======
VIV Profile: C:\Users\Vlado\AppData\Local\Vivaldi\User Data\Default [2021-03-03]
VIV Extension: (MeddleMonkey) - C:\Users\Vlado\AppData\Local\Vivaldi\User Data\Default\Extensions\moihledlmchhofenpacbhphnbnpakgmo [2020-10-12]
VIV Extension: (Chrome Media Router) - C:\Users\Vlado\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-12]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-06] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-13] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [284808 2021-02-05] (HP Inc. -> HP Inc.)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2410672 2017-11-27] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84920 2021-02-23] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\LenovoVantageService.exe [29488 2020-12-29] (Lenovo -> Lenovo Group Ltd.)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2021-01-27] (Even Balance, Inc. -> )
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1631360 2021-01-01] (Rockstar Games, Inc. -> Rockstar Games)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2020\RpcAgentSrv.exe [135176 2020-06-25] (SiSoftware SPC -> SiSoftware) [File not signed]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-02-28] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Origin Client Service; "F:\Program Files (x86)\Origin\OriginClientService.exe" [X]
S2 Origin Web Helper Service; "F:\Program Files (x86)\Origin\OriginWebHelperService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 clwvd8; C:\WINDOWS\System32\drivers\clwvd8.sys [61056 2018-08-23] (CyberLink Corp. -> CyberLink Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2020\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware)
R3 SNP2UVCW10; C:\WINDOWS\system32\DRIVERS\snUVCg2.sys [1710128 2017-11-05] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166768 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49552 2021-03-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [419040 2021-03-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-03-03] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2020-08-09] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-03 17:25 - 2021-03-03 17:26 - 000028867 _____ C:\Users\Vlado\Desktop\FRST.txt
2021-03-03 17:25 - 2021-03-03 17:26 - 000000000 ____D C:\FRST
2021-03-03 17:25 - 2021-03-03 17:25 - 002301440 _____ (Farbar) C:\Users\Vlado\Desktop\FRST64.exe
2021-03-03 16:55 - 2021-03-03 16:55 - 008463216 _____ (Malwarebytes) C:\Users\Vlado\Downloads\adwcleaner_8.1.exe
2021-03-03 11:31 - 2021-03-03 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2021-03-03 11:31 - 2021-03-03 11:31 - 000000000 ____D C:\ProgramData\ESET
2021-03-03 11:31 - 2021-03-03 11:31 - 000000000 ____D C:\Program Files\ESET
2021-03-03 11:25 - 2021-03-03 11:25 - 006341552 _____ (ESET) C:\Users\Vlado\Downloads\eset_nod32_antivirus_live_installer (1).exe
2021-03-01 16:07 - 2021-03-01 16:55 - 1414741778 _____ C:\Users\Vlado\Downloads\Volanie divočiny (2020) CZ dabing 720p.avi
2021-02-21 13:32 - 2021-02-21 13:32 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-21 10:22 - 2021-02-21 20:26 - 008463216 _____ (Malwarebytes) C:\Users\Vlado\Desktop\adwcleaner_8.1.exe
2021-02-21 10:21 - 2021-02-21 10:21 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002410 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002400 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000002366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2021-02-21 10:21 - 2021-02-21 10:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje balíka Microsoft Office 2016
2021-02-18 09:49 - 2021-02-19 18:42 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\Messenger
2021-02-18 09:49 - 2021-02-19 18:42 - 000000000 ____D C:\Users\Vlado\AppData\Local\Messenger
2021-02-18 09:49 - 2021-02-18 09:49 - 000000000 ____D C:\Users\Vlado\AppData\LocalLow\Messenger
2021-02-18 09:49 - 2021-02-18 09:49 - 000000000 ____D C:\Users\Vlado\AppData\Local\messenger-updater
2021-02-18 09:39 - 2021-02-18 09:39 - 100870408 _____ (Facebook, Inc.) C:\Users\Vlado\Downloads\Messenger.91.5.119.exe
2021-02-15 12:14 - 2021-02-15 12:14 - 000000000 ____D C:\Users\Vlado\Documents\Adobe
2021-02-15 12:06 - 2021-02-15 12:06 - 000001031 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk
2021-02-15 12:05 - 2021-02-15 12:06 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-02-15 12:05 - 2021-02-15 12:05 - 000000000 ____D C:\Program Files\Adobe
2021-02-15 12:05 - 2021-02-15 12:05 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-02-15 12:04 - 2021-02-15 12:14 - 000000000 ____D C:\Users\Vlado\AppData\Local\Adobe
2021-02-15 12:04 - 2021-02-15 12:05 - 000000000 ____D C:\ProgramData\Adobe
2021-02-15 12:03 - 2021-02-15 12:04 - 000000000 ____D C:\Users\Vlado\Desktop\instal ap2021
2021-02-12 20:09 - 2021-02-12 20:09 - 008673152 _____ () C:\Users\Vlado\Downloads\XboxInstaller (1).exe
2021-02-12 16:13 - 2021-02-12 16:13 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-12 16:13 - 2021-02-12 16:13 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-06 14:13 - 2021-02-06 14:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-06 14:13 - 2021-02-06 14:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-06 14:13 - 2021-02-06 14:13 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-06 11:52 - 2021-02-06 11:52 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2021-02-04 19:15 - 2021-02-04 19:29 - 000000000 ____D C:\Users\Vlado\Desktop\ja2019
2021-02-01 12:59 - 2021-02-01 12:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts
2021-02-01 12:57 - 2021-02-01 12:57 - 000000000 ____D C:\Program Files (x86)\LucasArts

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-03 17:25 - 2019-09-05 23:46 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-03 17:24 - 2020-05-28 10:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-03-03 17:24 - 2019-09-09 17:28 - 000000000 ____D C:\Program Files\CCleaner
2021-03-03 17:24 - 2019-09-05 14:57 - 000000000 ___RD C:\Users\Vlado\OneDrive
2021-03-03 17:23 - 2019-09-05 14:55 - 000000000 __SHD C:\Users\Vlado\IntelGraphicsProfiles
2021-03-03 17:04 - 2020-05-28 10:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-03 17:04 - 2020-05-28 10:16 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-03 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-03-03 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-03 17:04 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-03-03 17:04 - 2019-09-06 00:19 - 000000000 ____D C:\ProgramData\Lenovo
2021-03-03 17:02 - 2019-09-05 14:55 - 000000000 ____D C:\Users\Vlado\AppData\Local\VirtualStore
2021-03-03 16:52 - 2019-09-05 15:00 - 000000000 ____D C:\Users\Vlado\AppData\Local\Lenovo
2021-03-03 16:32 - 2020-05-28 10:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-03 16:32 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-03 16:12 - 2019-09-05 15:00 - 000004091 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-03-03 16:11 - 2020-05-28 09:55 - 000000000 ____D C:\WINDOWS\Lenovo
2021-03-03 16:11 - 2019-09-06 00:19 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-03-03 11:47 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-03 11:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-03 11:34 - 2020-05-28 10:19 - 000904218 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-03 11:34 - 2020-03-20 15:38 - 000065100 _____ C:\WINDOWS\system32\perfh01B.dat
2021-03-03 11:34 - 2020-03-20 15:38 - 000016828 _____ C:\WINDOWS\system32\perfc01B.dat
2021-03-03 11:31 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-03 11:28 - 2019-09-05 17:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-03-03 11:27 - 2020-07-14 17:08 - 000000000 ____D C:\ProgramData\Avast Software
2021-03-02 17:10 - 2020-09-30 13:59 - 000003336 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-3E50895B04942B164CD30B10CC2E4412
2021-03-02 15:43 - 2020-07-24 06:59 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\XnViewMP
2021-03-01 16:33 - 2019-09-05 18:25 - 000000000 ____D C:\Users\Vlado\AppData\Local\D3DSCache
2021-03-01 11:06 - 2020-07-17 12:37 - 000004218 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1594985873
2021-03-01 11:06 - 2020-07-17 12:37 - 000001412 _____ C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2021-02-27 15:08 - 2020-05-31 09:00 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-27 15:08 - 2020-05-31 09:00 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-02-27 15:08 - 2020-05-31 09:00 - 000002289 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-02-26 10:57 - 2020-11-18 09:59 - 000002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-26 10:57 - 2020-11-18 09:59 - 000002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-02-26 10:57 - 2020-11-18 09:59 - 000002185 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-26 10:57 - 2020-05-31 09:00 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-26 10:57 - 2020-05-31 09:00 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-23 18:24 - 2020-09-24 23:19 - 000107936 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\WudfUpdate_02000.dll
2021-02-23 18:24 - 2020-09-24 23:19 - 000062368 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.InfInstaller.exe
2021-02-23 18:24 - 2019-08-29 19:34 - 000107936 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.CoInstaller.dll
2021-02-23 18:23 - 2020-03-12 12:39 - 000429936 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll
2021-02-21 15:08 - 2019-09-05 15:42 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\Origin
2021-02-21 15:08 - 2019-09-05 15:42 - 000000000 ____D C:\ProgramData\Origin
2021-02-21 14:59 - 2020-09-17 16:23 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-02-21 14:58 - 2019-09-05 15:42 - 000000000 ____D C:\Users\Vlado\AppData\Local\Origin
2021-02-21 10:41 - 2019-09-19 09:54 - 000000000 ____D C:\Users\Vlado\AppData\Local\CrashDumps
2021-02-21 10:23 - 2020-12-14 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2021-02-21 10:23 - 2020-12-14 13:28 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\Samsung
2021-02-21 10:23 - 2020-12-14 13:27 - 000000000 ____D C:\Program Files (x86)\Samsung
2021-02-21 10:21 - 2020-09-17 08:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-02-21 10:20 - 2019-09-19 09:52 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-19 18:35 - 2020-05-28 10:24 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-17 14:11 - 2019-09-05 19:28 - 000000000 ____D C:\Stahujem
2021-02-16 12:34 - 2020-05-28 09:56 - 000000000 ____D C:\Users\Vlado
2021-02-15 13:47 - 2019-09-05 14:55 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\Adobe
2021-02-15 12:05 - 2019-08-29 19:30 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-13 15:58 - 2020-05-28 10:24 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2020-05-28 10:24 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-13 15:58 - 2019-09-05 23:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-02-13 15:58 - 2019-09-05 23:46 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-02-13 15:58 - 2019-09-05 23:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-02-13 15:58 - 2019-09-05 15:32 - 000001410 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-02-13 15:58 - 2019-09-05 15:32 - 000001410 _____ C:\ProgramData\Desktop\GeForce Experience.lnk
2021-02-13 14:30 - 2020-07-24 11:12 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-220631949-4223932415-3592341702-1001
2021-02-13 14:30 - 2020-05-28 09:56 - 000002358 _____ C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-12 20:09 - 2019-09-05 15:13 - 000000000 ____D C:\Users\Vlado\AppData\Local\PlaceholderTileLogoFolder
2021-02-12 20:09 - 2019-09-05 14:55 - 000000000 ____D C:\Users\Vlado\AppData\Local\Packages
2021-02-12 16:46 - 2020-05-28 10:16 - 000589304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-12 16:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-12 16:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-12 16:46 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 16:14 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-12 16:07 - 2019-09-05 15:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-12 16:05 - 2019-09-05 15:54 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-11 19:29 - 2019-09-13 20:14 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-02-11 13:06 - 2021-01-22 18:38 - 000348360 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2021-02-11 13:06 - 2021-01-22 18:38 - 000000000 ____D C:\ProgramData\EA Logs
2021-02-11 13:06 - 2021-01-22 18:37 - 000348360 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2021-02-11 13:06 - 2021-01-22 18:37 - 000280904 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2021-02-11 10:07 - 2020-07-04 12:43 - 001615824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-02-11 10:07 - 2020-07-04 12:43 - 000198088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-02-11 10:07 - 2020-07-04 12:43 - 000167368 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-02-11 10:07 - 2020-07-04 12:43 - 000159176 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-02-11 10:07 - 2020-07-04 12:43 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-02-11 10:07 - 2020-07-04 12:43 - 000038352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-02-09 15:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-02-08 19:10 - 2019-09-08 14:26 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\WhatsApp
2021-02-08 19:05 - 2019-09-08 14:26 - 000000000 ____D C:\Users\Vlado\AppData\Local\WhatsApp
2021-02-06 14:25 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-06 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-06 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-06 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-06 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-06 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-06 14:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-06 11:53 - 2020-11-18 09:59 - 000003456 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-06 11:53 - 2020-11-18 09:59 - 000003332 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-06 11:52 - 2020-12-17 17:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-02-04 11:55 - 2020-10-11 19:12 - 000000200 _____ C:\Users\Vlado\Desktop\praca.txt
2021-02-01 13:05 - 2019-09-14 15:30 - 000000000 ____D C:\Users\Vlado\Desktop\dristy
2021-02-01 13:02 - 2019-09-05 15:33 - 000000000 ____D C:\Users\Vlado\AppData\Local\NVIDIA
2021-02-01 12:57 - 2020-12-14 13:27 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

==================== Files in the root of some directories ========

2020-07-14 16:15 - 2020-07-14 16:15 - 547845842 _____ () C:\Users\Vlado\AppData\Roaming\.minecraft.rar
2020-09-17 16:37 - 2020-06-25 17:27 - 018178048 _____ () C:\Users\Vlado\AppData\Roaming\Sandra.mdb

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosim o kontrolu

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Spustit skenovani a pockaj na dokoncenie
  • V pripade nalezov nechaj vsetky nalezy oznacene a klikni na Karantena (ak nie su ziadne nalezy, tak na Spustit zakladni opravu)
  • V pripade, ze sa detekuje aj "predinstalovany software", tieto programy mozes, ale nemusis zmazat (toto nie su skodlive programy, ale iba zbytocnosti)
  • Potvrd vyzvu, pockaj na dokoncenie a potvrd restartovanie PC
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah skopiruj a vloz do dalsej odpovede
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

superjano
Návštěvník
Návštěvník
Příspěvky: 64
Registrován: 16 srp 2005 23:08

Re: Prosim o kontrolu

#3 Příspěvek od superjano »

# -------------------------------
# Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build: 02-15-2021
# Database: 2021-03-03.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-04-2021
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 3
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1406 octets] - [09/10/2020 11:08:19]
AdwCleaner[S01].txt - [1922 octets] - [22/11/2020 16:15:26]
AdwCleaner[C01].txt - [2175 octets] - [22/11/2020 16:15:52]
AdwCleaner[S02].txt - [2581 octets] - [03/01/2021 15:50:03]
AdwCleaner[C02].txt - [2853 octets] - [03/01/2021 15:50:38]
AdwCleaner[S03].txt - [3022 octets] - [21/02/2021 10:23:14]
AdwCleaner[C03].txt - [3609 octets] - [21/02/2021 10:23:38]
AdwCleaner[S04].txt - [2049 octets] - [21/02/2021 10:31:22]
AdwCleaner[C04].txt - [2451 octets] - [21/02/2021 10:31:47]
AdwCleaner[S05].txt - [2077 octets] - [21/02/2021 10:34:19]
AdwCleaner[C05].txt - [2466 octets] - [21/02/2021 10:34:50]
AdwCleaner[S06].txt - [2199 octets] - [21/02/2021 10:40:35]
AdwCleaner[C06].txt - [2588 octets] - [21/02/2021 10:40:57]
AdwCleaner[S07].txt - [2321 octets] - [21/02/2021 10:44:49]
AdwCleaner[C07].txt - [2710 octets] - [21/02/2021 10:45:10]
AdwCleaner[S08].txt - [2443 octets] - [21/02/2021 10:47:25]
AdwCleaner[S09].txt - [2504 octets] - [21/02/2021 20:27:15]
AdwCleaner[C09].txt - [2893 octets] - [21/02/2021 20:27:33]
AdwCleaner[S10].txt - [2626 octets] - [03/03/2021 11:25:08]
AdwCleaner[S11].txt - [2687 octets] - [03/03/2021 16:10:22]
AdwCleaner[C11].txt - [2902 octets] - [03/03/2021 16:10:43]
AdwCleaner[S12].txt - [3141 octets] - [03/03/2021 16:52:16]
AdwCleaner[C12].txt - [3569 octets] - [03/03/2021 16:52:50]
AdwCleaner[S13].txt - [2931 octets] - [03/03/2021 16:56:09]
AdwCleaner[C13].txt - [3320 octets] - [03/03/2021 16:56:30]
AdwCleaner[S14].txt - [3053 octets] - [03/03/2021 17:00:26]
AdwCleaner[S15].txt - [3233 octets] - [03/03/2021 17:02:40]
AdwCleaner[C15].txt - [3635 octets] - [03/03/2021 17:03:53]
AdwCleaner[S16].txt - [3327 octets] - [04/03/2021 08:29:19]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C16].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Prosim o kontrolu

#4 Příspěvek od Conder »

Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět