Pomalý PC, prosím o kontrolu logu

[Kenamor]

Dobrý den,
prosím o kontrolu logu. Počítač je zpomalený a po startu vyskakují 2 chybové hlášky. Děkuji.
David R.

Log z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2020
Ran by Hana (administrator) on IDEA-PC (LENOVO 10102) (06-12-2020 22:08:02)
Running from C:\Users\Hana\Downloads
Loaded Profiles: Hana
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Default browser: IE
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Beijing Heegle Technology Co., Ltd. -> Microsoft) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxTray.exe
(Intel® Trusted Connect Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\Pub\PubMonitor.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(LENOVO -> LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <11>
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\WindowsMobile\wmdc.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe
(Primax Electronics Ltd.) [File not signed] C:\Program Files\Lenovo\Lenovo Black Silk USB Keyboard\Pelico.exe
(PS Media s.r.o. -> PS Media s.r.o.) C:\Program Files (x86)\StartMenu\StartMenu.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(TPV-INVENTA TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\TNIOSDVolumeSync\TNISrvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2360-05-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2359-04-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2359-04-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Lenovo Black Silk Input Device Main Program] => C:\Program Files\Lenovo\Lenovo Black Silk USB Keyboard\Pelico.exe [118272 2011-04-19] (Primax Electronics Ltd.) [File not signed]
HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [TNIOSDVolumeSync(x64)] => C:\Program Files (x86)\TNIOSDVolumeSync\TNIExec.exe [9728 2012-08-30] (TPV-INVENTA TECHNOLOGY CO., LTD.) [File not signed]
HKLM-x32\...\Run: [TNIOSDVolumeSync(x86)] => C:\Program Files\TNIOSDVolumeSync\TNIExec.exe
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-05] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [Lenovo Dynamic Brightness System] => C:\Program Files\Lenovo\Lenovo Brightness System\RunLDBS.exe [1752408 2012-07-10] (Lenovo -> TODO: <公司名>)
HKLM-x32\...\Run: [LVT] => C:\Program Files\Lenovo\LVT\LJYZ.exe [886112 2011-11-24] (Lenovo (Beijing) Limited -> Lenovo)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Run: [StartMenu] => C:\Program Files (x86)\StartMenu\StartMenu.exe [3359872 2015-02-09] (PS Media s.r.o. -> PS Media s.r.o.)
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Run: [ShowDesktopAsRun] => C:\Program Files (x86)\StartMenu\desktop.scf [81 2014-01-11] () [File not signed]
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\MountPoints2: {8256d7d1-9eda-11e7-8202-0025ab4410bc} - "E:\Lenovo_Suite.exe"
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\WINDOWS\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [32608 2012-07-25] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {09B484CE-0C99-443A-98A4-F6F4A4800576} - System32\Tasks\{8A34AF5B-D740-43B9-9C8D-72EE68EAB51F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\FreeRide Games\Uninstall.exe"
Task: {0B4A0A07-FBE8-49E4-AE0C-5D81F3D00C9F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {358AF9D7-1529-41E2-9DB7-4067695CC4F9} - System32\Tasks\DesktopAtStartup => C:\Program Files (x86)\StartMenu\desktop.scf [81 2014-01-11] () [File not signed]
Task: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {843E8180-B0CA-49FE-B62B-C1C9EFCC9A53} - \Lenovo\Lenovo-2857 -> No File <==== ATTENTION
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {BF80FD7F-0A70-43D4-900F-B5A8D7338271} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [133736600 2020-11-13] (Microsoft Windows -> Microsoft Corporation)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CD32576E-EBB0-4C0A-AF1A-4939229ED426} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [133 2012-03-08] () [File not signed] <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E4A38106-BCF7-4821-8E8E-118851C0DE72} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [35584 2014-07-30] (LENOVO -> )
Task: {FFF78DE5-CC98-4652-AFFF-C9DDCECFDE02} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink -> CyberLink)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{864498DA-696D-44B4-B023-43098BC39EC2}: [DhcpNameServer] 192.168.0.1

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Hana\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-06]
Edge HomePage: Default -> hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Firefox\Extensions: [freegames4357@BestOffers] - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\freegames4357@BestOffers
FF Extension: (Free Games 111) - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\freegames4357@BestOffers [2014-01-15] [Legacy] [not signed]
FF HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Firefox\Extensions: [speedtest4354@BestOffers] - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\speedtest4354@BestOffers
FF Extension: (Speed Test 127) - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\speedtest4354@BestOffers [2014-01-15] [Legacy] [not signed]
FF Plugin-x32: @exent.com/npExentControl,version=7.1.0.1 -> C:\Program Files (x86)\FreeRide Games\npExentControl.dll [2010-10-19] (Exent Technologies Ltd. -> Exent Technologies Ltd.) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: www.exent.com/GameTreatWidget -> C:\Program Files (x86)\FreeRide Games\NPGameTreatPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-1029540593-1802358105-2366784415-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [No File]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [jljheddigenhleadfofeccneimcmlefp] - C:\Users\Hana\AppData\Roaming\speedtest4354\speedtest4354.crx [2013-12-19]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 Dashboard Service; C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe [24880 2013-01-15] (Beijing Heegle Technology Co., Ltd. -> Microsoft) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 IdeaTouch.LocalDataServer.Education; C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe [7680 2012-05-17] (Microsoft) [File not signed]
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-07-30] (LENOVO -> LENOVO INCORPORATED.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1694992 2020-11-17] (Solitea, a.s. -> Solitea Česká republika, a.s.)
R2 RapiMgr; C:\WINDOWS\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2013-05-14] (CyberLink -> )
R2 TNISrvc; C:\Program Files (x86)\TNIOSDVolumeSync\TNISrvc.exe [53760 2012-08-30] (TPV-INVENTA TECHNOLOGY CO., LTD.) [File not signed]
R2 WcesComm; C:\WINDOWS\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-11-17] (CPUID -> CPUID)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-07-26] (Martin Malik - REALiX -> REALiX(tm))
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [25992 2019-07-30] (IObit CO., LTD -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19280 2019-07-30] (IObit CO., LTD -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [31648 2019-07-30] (IObit CO., LTD -> IObit)
S3 LEMo602D; C:\WINDOWS\system32\DRIVERS\LEMo602D.sys [24064 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.)
S3 LEub602D; C:\WINDOWS\system32\DRIVERS\LEub602D.sys [18944 2011-05-17] (Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [301784 2015-08-30] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 VMC412; C:\WINDOWS\System32\Drivers\VMC412.sys [232832 2020-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
R3 vmuacflt; C:\WINDOWS\System32\Drivers\vmuacflt.sys [13696 2012-05-02] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2016-08-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R0 WinI2C-DDC; C:\WINDOWS\System32\drivers\DDCDrv.sys [20832 2008-04-08] (PC Micro Systems Inc. -> Nicomsoft Ltd.)
R0 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [15712 2010-03-23] (Lenovo (Beijing) Limited -> Nicomsoft Ltd.)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
R2 X5XSEx_Pr148; C:\Program Files (x86)\FreeRide Games\X5XSEx_Pr148.Sys [56136 2012-08-02] (Exent Technologies Ltd. -> Exent Technologies Ltd.)
S3 Imf8HpRegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpRegFilter.sys [X]
S3 ImfHpFileFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpFileFilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2099-12-02 10:40 - 2363-12-02 10:40 - 000064624 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\HECIx64.sys
2099-07-26 18:11 - 2358-07-26 18:11 - 000099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2099-06-07 12:11 - 2351-06-07 12:11 - 000182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3345.dll
2099-06-07 12:11 - 2015-08-30 19:00 - 000110592 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2099-05-19 05:27 - 2350-05-19 05:27 - 002384896 _____ C:\WINDOWS\system32\GfxRes.dll
2099-05-19 05:27 - 2350-05-19 05:27 - 000001806 _____ C:\WINDOWS\system32\GfxUIEx.exe.config
2099-05-19 05:27 - 2015-08-30 19:00 - 009007616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 038385664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2099-05-08 07:40 - 2360-05-08 07:40 - 007164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 002743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 002587864 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 002036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001662024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2099-05-08 07:40 - 2360-05-08 07:40 - 001486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001286360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001012992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 014152960 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 006217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 005681192 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2099-04-20 00:57 - 2359-04-20 00:57 - 003707864 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2099-04-20 00:57 - 2359-04-20 00:57 - 002810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 002103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001921792 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000681905 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2099-04-20 00:57 - 2359-04-20 00:57 - 000617176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000378000 _____ (Realtek Semiconductor) C:\WINDOWS\system32\RtkGuiCompLib.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-12-06 22:08 - 2020-12-06 22:08 - 000020067 _____ C:\Users\Hana\Downloads\FRST.txt
2020-12-06 22:07 - 2020-12-06 22:08 - 000000000 ____D C:\FRST
2020-12-06 21:54 - 2020-12-06 21:55 - 002288640 _____ (Farbar) C:\Users\Hana\Downloads\FRST64.exe
2020-12-06 19:25 - 2020-12-06 19:25 - 000003096 _____ C:\WINDOWS\system32\Tasks\{8A34AF5B-D740-43B9-9C8D-72EE68EAB51F}
2020-12-06 19:01 - 2020-12-06 19:01 - 000001970 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2020-12-06 19:01 - 2020-12-06 19:01 - 000001970 _____ C:\ProgramData\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2020-12-06 18:56 - 2020-12-06 18:56 - 000000000 ____D C:\Users\Hana\AppData\Local\ESET
2020-12-06 18:54 - 2020-12-06 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2020-12-06 18:54 - 2020-12-06 18:54 - 000000000 ____D C:\ProgramData\ESET
2020-12-06 18:54 - 2020-12-06 18:54 - 000000000 ____D C:\Program Files\ESET
2020-12-06 18:34 - 2020-12-06 18:34 - 006341552 _____ (ESET) C:\Users\Hana\Downloads\eset_internet_security_live_installer.exe
2020-11-17 19:25 - 2020-11-17 19:25 - 597622657 _____ C:\WINDOWS\MEMORY.DMP
2020-11-17 19:25 - 2020-11-17 19:25 - 000285416 _____ C:\WINDOWS\Minidump\111720-47578-01.dmp
2020-11-17 19:25 - 2020-11-17 19:25 - 000000000 ____D C:\WINDOWS\Minidump
2020-11-17 18:27 - 2020-11-17 18:56 - 000000000 ____D C:\Users\Hana\Documents\upgrate 17.11.2020 záloha před
2020-11-17 18:21 - 2020-11-17 21:18 - 000000000 ____D C:\Users\Hana\Documents\testy 17.11.2020
2020-11-17 12:57 - 2020-11-17 12:57 - 000000000 ____D C:\ProgramData\DPMigrateTool
2020-11-11 20:33 - 2020-11-11 20:33 - 022903696 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 017847184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 011896000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 011048792 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 010575912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 008522640 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 006508944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 004391264 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 004387680 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 004024192 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 003814240 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2020-11-11 20:33 - 2020-11-11 20:33 - 003692592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 002505992 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 002035592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001995144 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001793928 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001766792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001469824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001155896 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001151744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000968032 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000872320 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000659328 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000617872 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000616832 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000554336 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000553824 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000467600 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000442208 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000408416 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000407904 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000397664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000385416 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000379784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000379240 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000374672 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000357760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000330128 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000295304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000264584 _____ C:\WINDOWS\system32\igfxCPL.cpl
2020-11-11 20:33 - 2020-11-11 20:33 - 000262496 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000229776 _____ C:\WINDOWS\system32\igdde64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000229560 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000226184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v5161.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000223616 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000217992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000203104 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000198992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000194264 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000193416 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000191476 _____ C:\WINDOWS\system32\resTHA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000191376 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000190848 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000184036 _____ C:\WINDOWS\system32\resELL.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000179828 _____ C:\WINDOWS\system32\resRUS.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000170896 _____ C:\WINDOWS\system32\igdail64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000169272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000165460 _____ C:\WINDOWS\system32\resARA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000164948 _____ C:\WINDOWS\system32\resJPN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000164884 _____ C:\WINDOWS\system32\resHEB.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000163720 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000160260 _____ C:\WINDOWS\system32\resHUN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000160196 _____ C:\WINDOWS\system32\resFRA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158532 _____ C:\WINDOWS\system32\resKOR.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158388 _____ C:\WINDOWS\system32\resDEU.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158356 _____ C:\WINDOWS\system32\resITA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158148 _____ C:\WINDOWS\system32\resROM.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158052 _____ C:\WINDOWS\system32\resESN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000157652 _____ C:\WINDOWS\system32\resPLK.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000157492 _____ C:\WINDOWS\system32\resSKY.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000157332 _____ C:\WINDOWS\system32\resNLD.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156708 _____ C:\WINDOWS\system32\resPTB.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156628 _____ C:\WINDOWS\system32\resCSY.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156596 _____ C:\WINDOWS\system32\resTRK.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156420 _____ C:\WINDOWS\system32\resPTG.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000155972 _____ C:\WINDOWS\system32\resFIN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000155540 _____ C:\WINDOWS\system32\resHRV.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000155124 _____ C:\WINDOWS\system32\resSVE.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000154964 _____ C:\WINDOWS\system32\resSLV.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000154004 _____ C:\WINDOWS\system32\resNOR.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000153508 _____ C:\WINDOWS\system32\resDAN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000152464 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000152164 _____ C:\WINDOWS\system32\resENU.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000150404 _____ C:\WINDOWS\system32\resCHT.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000149524 _____ C:\WINDOWS\system32\resCHS.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000141696 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000107392 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000102800 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000095112 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000078216 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000072592 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000069008 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000068488 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000040616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000039304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000019336 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000019336 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000018824 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000018824 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000013704 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000013704 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000002572 _____ C:\WINDOWS\system32\iglhxs64.vp
2020-11-11 20:28 - 2020-11-11 20:28 - 000232832 _____ (Vimicro Corporation) C:\WINDOWS\system32\Drivers\vmc412.sys
2020-11-11 06:05 - 2020-10-13 05:31 - 002132992 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-11-11 06:05 - 2020-10-13 05:09 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-11-11 05:29 - 2020-11-11 20:35 - 000000000 ____D C:\Users\Hana\AppData\Roaming\instinfo
2020-11-11 05:29 - 2020-11-11 05:29 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-06 21:47 - 2013-09-15 01:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-12-06 21:46 - 2013-12-16 23:10 - 000003598 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1029540593-1802358105-2366784415-1001
2020-12-06 21:43 - 2013-11-14 13:40 - 001739092 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-06 21:43 - 2013-11-14 13:24 - 000721362 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-06 21:43 - 2013-11-14 13:24 - 000144712 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-06 21:43 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2020-12-06 21:41 - 2015-09-16 10:53 - 000000000 __SHD C:\Users\Hana\IntelGraphicsProfiles
2020-12-06 21:38 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-06 21:37 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2020-12-06 21:35 - 2014-01-15 18:28 - 000000000 ____D C:\Users\Hana\AppData\Roaming\speedtest4354
2020-12-06 21:35 - 2014-01-15 18:28 - 000000000 ____D C:\Users\Hana\AppData\Roaming\freegames111
2020-12-06 21:32 - 2013-09-15 01:26 - 000000000 ____D C:\Program Files (x86)\FreeRide Games
2020-12-06 19:22 - 2013-12-16 23:43 - 000000000 ____D C:\Program Files (x86)\IObit
2020-12-06 19:16 - 2016-09-19 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2020-12-06 19:13 - 2014-12-17 19:34 - 000000000 ____D C:\ProgramData\ProductData
2020-12-06 19:13 - 2013-12-16 23:43 - 000000000 ____D C:\Users\Hana\AppData\Roaming\IObit
2020-12-06 18:55 - 2012-07-26 09:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-06 18:53 - 2020-07-22 14:56 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-06 18:53 - 2020-07-22 14:56 - 000002211 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-12-06 18:53 - 2020-07-22 14:56 - 000002211 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-12-06 18:35 - 2013-12-16 11:13 - 000003818 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{5A930A5B-D37D-4402-A355-E18F8E34A411}
2020-11-30 14:15 - 2020-07-22 14:56 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 14:15 - 2020-07-22 14:56 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-29 07:40 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-11-29 07:06 - 2013-12-16 23:43 - 000000000 ____D C:\ProgramData\IObit
2020-11-24 18:18 - 2020-06-07 18:51 - 000000000 ____D C:\Users\Hana\Documents\záloha Imfsoft 2020
2020-11-24 18:12 - 2020-02-24 20:15 - 000000000 ____D C:\Users\Hana\Documents\DPH, SH, KH Imfsoft 2020
2020-11-24 17:00 - 2015-07-21 16:27 - 000004476 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-24 16:59 - 2017-04-23 07:23 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-21 15:51 - 2016-02-02 20:46 - 000000000 ____D C:\Users\Hana\Documents\Imfsoft 2016
2020-11-17 21:29 - 2013-12-16 10:51 - 000000000 ____D C:\Users\Hana
2020-11-17 18:06 - 2020-01-06 16:40 - 000000000 ____D C:\Users\Hana\AppData\LocalLow\Mozilla
2020-11-17 17:56 - 2020-02-12 19:49 - 000000000 ____D C:\Users\Hana\Documents\IMFsoft odvody 2020
2020-11-17 12:46 - 2015-09-16 10:52 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-11-17 12:38 - 2013-08-22 15:44 - 000404024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-17 12:25 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2020-11-17 12:25 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-13 06:14 - 2013-12-16 23:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-11-13 06:11 - 2013-12-16 23:45 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-13 06:11 - 2012-07-26 08:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-11 20:35 - 2013-12-16 10:46 - 000000000 ____D C:\Program Files\Intel
2020-11-11 20:35 - 2013-09-15 01:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-11-11 20:33 - 2015-08-30 19:00 - 000381280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2020-11-11 20:33 - 2015-08-27 17:20 - 012326232 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 004660944 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000680328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000538464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2020-11-11 20:33 - 2015-08-27 17:20 - 000327008 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2020-11-11 20:33 - 2015-08-27 17:20 - 000293256 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000261000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000257888 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2020-11-11 20:33 - 2013-12-16 10:47 - 000072592 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2020-11-11 20:33 - 2013-12-16 10:47 - 000069008 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

==================== Files in the root of some directories ========

2013-12-16 11:26 - 2014-06-05 18:03 - 000000369 _____ () C:\Users\Hana\AppData\Local\RegisteredPackageInformation.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2016-05-15 16:33
==================== End of FRST.txt ========================




******************************************
LOG z Add.:
******************************************
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-12-2020
Ran by Hana (06-12-2020 22:09:48)
Running from C:\Users\Hana\Downloads
Windows 8.1 (Update) (X64) (2013-12-16 10:03:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1029540593-1802358105-2366784415-500 - Administrator - Disabled)
Guest (S-1-5-21-1029540593-1802358105-2366784415-501 - Limited - Enabled)
Hana (S-1-5-21-1029540593-1802358105-2366784415-1001 - Administrator - Enabled) => C:\Users\Hana

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Disabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Security (Disabled - Up to date) {32D4BD20-1EBB-773C-2B52-7CE89BB0522B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Disabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20066 - Adobe Systems Incorporated)
Aktualizace ovladače pro aplikaci Centrum zařízení Windows Mobile (HKLM\...\{92DBCA36-9B41-4DD1-941A-AED149DD37F0}) (Version: 6.1.6965.0 - Microsoft Corporation)
Brother MFL-Pro Suite DCP-1610W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Comparing (HKLM-x32\...\{FA26CEFD-E3BE-46EC-AEE0-95BF8F5CF307}) (Version: 1.00.2012.0829 - Tong child Research & Planning Co.,Ltd) Hidden
Comparing (HKLM-x32\...\InstallShield_{FA26CEFD-E3BE-46EC-AEE0-95BF8F5CF307}) (Version: 1.00.2012.0829 - Tong child Research & Planning Co.,Ltd)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4030 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.26.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM-x32\...\{1D2682EA-75DD-44B6-BF2D-CD3C49EAD012}) (Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{3117B53D-A409-4D99-A0DE-11A1A40696FA}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4430150F-61B3-4142-BE04-EAC68C8DDA18}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4ABFEC28-1554-493D-A84D-BEA21D8E6D6F}) (Version: 1.6.25.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4AF6C9BC-D8DB-4286-94D9-474CE54ADAA2}) (Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{503B47A9-E34A-4841-ADD7-417191D5DB5E}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{546FF45D-2467-4950-AAFB-0A06ACBB6B2C}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5B2190E9-199D-450A-94B3-4D6826C770C2}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5BEFE1E1-F597-4B79-913B-15FFDB25B744}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{63DE35C9-B080-4D03-B110-99E14FD35BCE}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{65316098-0220-4D5C-B37A-6136083A0897}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{E966DBE4-5075-465E-BA81-BC9A3A3204B3}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
DPMigrateTool (HKLM-x32\...\{2C866457-B8BE-49CF-B261-60C6722E91BE}) (Version: 1.0.0.1 - lenovo)
Driver & Application Installation (HKLM-x32\...\{BFECCF2A-F094-4066-8BFA-29CCBB7F6602}) (Version: 6.13.0423 - Lenovo)
EducationPortal (HKLM-x32\...\{65487538-FF20-421B-91DB-F6634B8D264C}) (Version: 5.00.012.0617 - Lenovo)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 20.902 (20201105_15) - Solitea Česká republika, a.s.)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Find the Differences (HKLM-x32\...\{65F9B587-24A7-466A-999A-9C5F9D452400}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Find the Differences (HKLM-x32\...\InstallShield_{65F9B587-24A7-466A-999A-9C5F9D452400}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
Finding the Letters (HKLM-x32\...\{535FB733-FFCF-4460-8694-664A2F6C53B4}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Finding the Letters (HKLM-x32\...\InstallShield_{535FB733-FFCF-4460-8694-664A2F6C53B4}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
FreeRide Games (HKLM-x32\...\{6C26A305-4549-4A8A-9F03-25719C03B0FB}) (Version: 07.05.83.01 - Exent Technologies)
Fruits (HKLM-x32\...\{AA39BFDE-71E5-46A6-A10B-44C2F45A341E}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd) Hidden
Fruits (HKLM-x32\...\InstallShield_{AA39BFDE-71E5-46A6-A10B-44C2F45A341E}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5161 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.0.2.38 - IObit)
Lenovo Assistant (HKLM-x32\...\{B2DE4F30-B8C7-49C0-85B9-2F37A5290F00}) (Version: 2.0.0.27 - Lenovo)
Lenovo Dashboard (HKLM-x32\...\{FEF1833C-244C-4DF2-AB67-1E1D26921ED8}) (Version: 2.0.0.9 - Lenovo)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.26.00 - Lenovo Group Limited)
Lenovo Dynamic Brightness System (HKLM-x32\...\{D9ED6D06-6002-495E-A7BC-46E6AE386996}) (Version: 4.0.01.42160 - Lenovo)
Lenovo Eye Distance System (HKLM-x32\...\{5183D7AB-D09B-411F-A74E-BBAEA61C6505}) (Version: 4.0.01.42160 - Lenovo)
Lenovo Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.6418 - CyberLink Corp.) Hidden
Lenovo Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.6418 - CyberLink Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.)
Lenovo Rescue System (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.0822 - CyberLink Corp.) Hidden
Lenovo Rescue System (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.0822 - CyberLink Corp.)
Lenovo USB2.0 UVC Camera (HKLM-x32\...\{70D2C5B8-EB22-45B1-9EAA-5E8C1C408A3B}) (Version: 1.00.0000 - Vimicro Corporation)
Lenovo YouCam (HKLM-x32\...\{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.) Hidden
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.)
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
LVT (HKLM-x32\...\{9E3469A6-443A-452C-BF44-8D7CE3A9A7E2}) (Version: 5.00.0914 - Lenovo)
Mammals (HKLM-x32\...\{ACA58CEB-2F74-4095-ADB6-4C1BFB170F64}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd) Hidden
Mammals (HKLM-x32\...\InstallShield_{ACA58CEB-2F74-4095-ADB6-4C1BFB170F64}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd)
Matching Roles (HKLM-x32\...\{92736E44-7608-4D80-9333-E40C82B7E8B3}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Matching Roles (HKLM-x32\...\InstallShield_{92736E44-7608-4D80-9333-E40C82B7E8B3}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.55 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.3.1 - Mozilla)
Mozilla Thunderbird 68.12.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 68.12.0 (x64 cs)) (Version: 68.12.0 - Mozilla)
Puzzle (HKLM-x32\...\{6EB7ECE3-E3BE-481D-821B-F1AFFA244D64}) (Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd) Hidden
Puzzle (HKLM-x32\...\InstallShield_{6EB7ECE3-E3BE-481D-821B-F1AFFA244D64}) (Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.8400.29025 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Software602 Form Filler (HKLM-x32\...\{DE3B6562-0A58-49E0-836F-B895F3985958}) (Version: 4.52 - Software602 a.s.)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
timer (HKLM-x32\...\{9CC4B8EE-A96B-4800-B674-0CF8B4560F45}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
timer (HKLM-x32\...\InstallShield_{9CC4B8EE-A96B-4800-B674-0CF8B4560F45}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
TNIOSDVolumeSync (HKLM-x32\...\{86B9BBB1-B06B-4B31-9D0A-634B41598251}) (Version: 1.0.0.3 - TPV-INVENTA TECHNOLOGY CO., LTD.) Hidden
TNIOSDVolumeSync (HKLM-x32\...\InstallShield_{86B9BBB1-B06B-4B31-9D0A-634B41598251}) (Version: 1.0.0.3 - TPV-INVENTA TECHNOLOGY CO., LTD.)
Windows 8 Start menu 1.4 (HKLM-x32\...\Windows 8 Start menu_is1) (Version: - PS Media s.r.o.)

Packages:
=========
Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_2.2.26.0_x86__k1h2ywk1493x8 [2016-05-08] (LENOVO INC.)
FreeRide Games for Lenovo -> C:\Program Files\WindowsApps\Exent.FreeRideGamesforLenovo_1.0.0.0_x64__fq5x03g7fwkgm [2013-12-16] (Exent Technologies LTD) [MS Ad]
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2013-12-16] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-15] (Microsoft Corporation) [MS Ad]
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2013-12-16] (Rozšíření Microsoft Platform)
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-23] (Lenovo, INC.)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2013-12-16] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2013-12-16] (Microsoft Corporation)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions)
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-27] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2014-02-20] (CYBERLINK COM CORPORATION)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-06-21] (Skype) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-06] (Microsoft Corporation) [MS Ad]
YouCam for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.YouCamforLenovoIdea_1.0.3624.30505_x86__hgg5mn3xps74a [2015-01-02] (CYBERLINK COM CORPORATION)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-04-19] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [PDFConv] -> {919CF7F5-9A8E-40B9-9588-2BECA5927D98} => C:\Program Files (x86)\Software602\602XML\xmlcore\CtxSign64.dll [2013-07-16] (Software602 a. s. -> Software602)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-04-19] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2016-10-03 17:44 - 2009-02-27 15:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2016-10-03 17:44 - 2008-08-18 17:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2016-10-03 17:44 - 2013-06-12 18:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2016-10-03 17:44 - 2011-02-28 10:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2016-10-03 17:44 - 2013-10-10 20:55 - 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2016-10-03 17:44 - 2014-05-22 18:12 - 000137728 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2016-10-03 17:44 - 2014-02-06 20:13 - 000083968 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2016-10-03 17:44 - 2014-02-06 20:13 - 017904640 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2016-10-03 17:44 - 2014-01-09 16:36 - 000082944 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS:nlsPreferences [386]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> DefaultScope {B29D9ECB-704B-4CB4-917B-11411F2494FA} URL =
SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> {3C13311A-3C74-4F35-9D35-6F0D878C8DAF} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> {B29D9ECB-704B-4CB4-917B-11411F2494FA} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
IE Session Restore: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> is enabled.
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hana\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "CLMLServer"
HKLM\...\StartupApproved\Run32: => "YouCam Tray"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "Lenovo Dynamic Brightness System"
HKLM\...\StartupApproved\Run32: => "YouCam Mirage"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\StartupApproved\Run: => "BrowserChoice"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5B5AF185-7CE7-4301-AFFB-DFEEA8D8A61B}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{D12D18C6-3E35-4C4C-8058-43FA2A627A05}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe => No File
FirewallRules: [{0CAE13F1-A8EF-4532-B9FA-8FCB25B1947F}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe => No File
FirewallRules: [{CA942BF9-656D-4ABE-9850-FD309A884B56}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B1300396-7D56-4A5F-AF60-0EBA8786E747}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{51F31A31-CEFC-4893-877C-1886700A5CF2}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe => No File
FirewallRules: [UDP Query User{FA8368A8-A615-4058-9D43-7CBAB7056D39}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe => No File
FirewallRules: [TCP Query User{ADE1136F-23FC-48AB-9389-D74A6E251F5D}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{DF9B0D00-BBDA-47A6-8044-9BC8F73A5AA1}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8E542F39-02E8-4616-A5ED-0691F1709A51}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{83CEC381-DD06-4288-9777-7C68AD142059}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [TCP Query User{AA74A064-FCCA-42B5-9A3B-32048CCF44DF}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [UDP Query User{C356D685-4009-4C3B-B004-8F094D7C1C2A}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [{5C855CCB-D9DD-447A-B861-970AF11806B6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe => No File
FirewallRules: [{FC58DC93-B30C-4185-980A-F30DA1D73912}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe => No File
FirewallRules: [{77258C04-F9CE-415C-B589-42A9072D3856}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe => No File
FirewallRules: [{3CC9751F-6051-4CE1-8BE8-554B79773219}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe => No File
FirewallRules: [{C4067CD9-666A-4545-8444-8D8D72BAC3CF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe => No File
FirewallRules: [{A2C4C2A3-A91E-4366-B708-D3F8552F6B74}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe => No File

==================== Restore Points =========================

Check "VSS" service


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/06/2020 09:43:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Název chybujícího modulu: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Kód výjimky: 0xc0000005
Posun chyby: 0x000024b7
ID chybujícího procesu: 0xe6c
Čas spuštění chybující aplikace: 0x01d6cc10444aeab4
Cesta k chybující aplikaci: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
ID zprávy: be00ac51-3803-11eb-82ca-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/06/2020 09:43:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: idea-PC)
Description: Aplikaci Microsoft.WindowsAlarms_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (12/06/2020 09:26:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: idea-PC)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (12/06/2020 09:26:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program wwahost.exe verze 6.3.9600.17415 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 84c

Čas spuštění: 01d6cc0df98bc2a8

Čas ukončení: 4294967295

Cesta k aplikaci: C:\WINDOWS\system32\wwahost.exe

ID hlášení: 4149bc10-3801-11eb-82c9-0025ab4410bc

Úplný název chybujícího balíčku: Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: AppexNews

Error: (12/06/2020 09:26:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: idea-PC)
Description: Aplikace Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe+AppexNews se nespustila ve stanovenou dobu.

Error: (12/06/2020 07:36:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Název chybujícího modulu: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Kód výjimky: 0xc0000005
Posun chyby: 0x000024b7
ID chybujícího procesu: 0xd80
Čas spuštění chybující aplikace: 0x01d6cbfe7b8a6c40
Cesta k chybující aplikaci: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
ID zprávy: 05c84bf9-37f2-11eb-82c9-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/06/2020 07:25:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.3.9600.18460, časové razítko: 0x57c1b573
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x6fef4220
ID chybujícího procesu: 0x5b8
Čas spuštění chybující aplikace: 0x01d6cbfd2b9fe26d
Cesta k chybující aplikaci: C:\WINDOWS\SysWOW64\explorer.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 697e8040-37f0-11eb-82c8-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/06/2020 06:50:27 PM) (Source: Windows Search Service) (EventID: 3079) (User: )
Description: Oznámení pro svazek C:\ nejsou aktivní.

Kontext: aplikace Windows

Podrobnosti:
Deník změn svazku je odstraňován. (HRESULT : 0x8007049a) (0x8007049a)


System errors:
=============
Error: (12/06/2020 09:53:04 PM) (Source: DCOM) (EventID: 10001) (User: idea-PC)
Description: Nelze spustit server DCOM: App.AppX2tphb21dp9jkkycchwvscnrxk12cys3z.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
31
při provádění příkazu:
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppX4325622ft6437f3xfywcfxgbedfvpn0x.mca

Error: (12/06/2020 09:28:12 PM) (Source: DCOM) (EventID: 10016) (User: idea-PC)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
a APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
uživateli idea-PC\Hana (SID: S-1-5-21-1029540593-1802358105-2366784415-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe – SID (S-1-15-2-508114518-3340871649-811464485-526616082-4258465299-1774086546-1865468257). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/06/2020 07:34:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/06/2020 07:34:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (12/06/2020 07:22:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba SMService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/06/2020 06:55:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba ESET Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/06/2020 06:55:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby ESET Service bylo dosaženo časového limitu (30000 ms).

Error: (12/06/2020 06:51:01 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Služba inteligentního přenosu na pozadí přestala během spouštění reagovat.


Windows Defender:
===================================
Date: 2019-11-18 19:57:06.299
Description:
Prohledávání Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... terprise=0
Název: Trojan:HTML/CoinMiner
ID: 2147743857
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Program Files (x86)\IObit\Surfing Protection\Database\ASCSpecialUrl.db;file:_C:\PROGRA~2\IObit\SURFIN~1\Database\ASCSpecialUrl.db
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: idea-PC\Hana
Název procesu: C:\Program Files (x86)\Internet Explorer\iexplore.exe
Verze podpisu: AV: 1.305.2357.0, AS: 1.305.2357.0, NIS: 119.0.0.0
Verze modulu: AM: 1.1.16500.1, NIS: 2.1.14600.4

Date: 2019-11-18 19:57:01.654
Description:
Prohledávání Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... terprise=0
Název: Trojan:HTML/CoinMiner
ID: 2147743857
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\PROGRA~2\IObit\SURFIN~1\Database\ASCSpecialUrl.db
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: idea-PC\Hana
Název procesu: C:\Program Files (x86)\Internet Explorer\iexplore.exe
Verze podpisu: AV: 1.305.2357.0, AS: 1.305.2357.0, NIS: 119.0.0.0
Verze modulu: AM: 1.1.16500.1, NIS: 2.1.14600.4

Date: 2020-12-06 18:09:56.373
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 119.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Systém kontroly sítě
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 2.1.14600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-12-06 18:09:56.357
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1890.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-12-06 18:09:56.357
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1890.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-12-06 18:09:55.842
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1890.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x8024402c
Popis chyby ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-11-29 07:20:44.527
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1481.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x80070652
Popis chyby :Momentálně je spuštěna jiná instalace. Před spuštěním nové instalace nejdříve dokončete spuštěnou instalaci.

==================== Memory info ===========================

BIOS: LENOVO ELKT32AUS 06/17/2013
Motherboard: LENOVO MAHOBAY
Processor: Intel(R) Celeron(R) CPU G1610 @ 2.60GHz
Percentage of memory in use: 42%
Total physical RAM: 6032.46 MB
Available physical RAM: 3490.93 MB
Total Virtual: 12176.46 MB
Available Virtual: 9826.3 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:439.06 GB) (Free:182.99 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{ded5366a-ce97-472b-a96e-d6e4281c1b14}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.67 GB) NTFS
\\?\Volume{dd4b2a8a-31e2-48b3-99a7-ddb9c72c28d2}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{32481a13-3f91-4096-ac86-6d3dbabc3534}\ (PBR_DRV) (Fixed) (Total:24.41 GB) (Free:9.68 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CB482A87)

Partition: GPT.

==================== End of Addition.txt =======================

[Conder]

Ahoj

O ake chybove hlasky ide?

Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/

• Uloz na plochu a ukonci vsetky programy
• Spusti AdwCleaner ako spravca
• Odsuhlas licencne podmienky
• Klikni na Spustit skenovani a pockaj na dokoncenie
• V pripade nalezov nechaj vsetky nalezy oznacene a klikni na Karantena (ak nie su ziadne nalezy, tak na Spustit zakladni opravu)
• V pripade, ze sa detekuje aj "predinstalovany software", tieto programy mozes, ale nemusis zmazat (toto nie su skodlive programy, ale iba zbytocnosti)
• Potvrd vyzvu, pockaj na dokoncenie a potvrd restartovanie PC
• Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
• Otvori sa log, jeho obsah skopiruj a vloz do dalsej odpovede

[Kenamor]

Zdravím,
jde o hlášky:

1. Call complete. hResult = 0x80041010
a
2. ExecNotificationQueryAsync failed with = 0x80041010

Log z AwdCleaner níže. Děkuji za revizi.
D.


# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-11-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-08-2020
# Duration: 00:00:09
# OS: Windows 8.1
# Cleaned: 133
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Amazon\ABB
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare V8
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\MyPC Backup
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\ProgramData\IObit\Advanced SystemCare V7
Deleted C:\ProgramData\IObit\Advanced SystemCare V8
Deleted C:\Users\Hana\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\Hana\AppData\LocalLow\IObit\Advanced SystemCare V8
Deleted C:\Users\Hana\AppData\Local\Temp\Surfing Protection
Deleted C:\Users\Hana\AppData\Roaming\FREEGAMES111
Deleted C:\Users\Hana\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Users\Hana\AppData\Roaming\IObit\Advanced SystemCare V8
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare V8
Deleted C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

Deleted C:\Users\Hana\Desktop\Speed Test.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C45EC9F0-8333-465D-9728-074BD41985C9}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C45EC9F0-8333-465D-9728-074BD41985C9}
Deleted HKLM\SOFTWARE\Classes\AppID\AddonsFramework.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\ScriptHost.DLL
Deleted HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION|BackgroundHost64.exe
Deleted HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD|BackgroundHost64.exe
Deleted HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Deleted HKLM\Software\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
Deleted HKLM\Software\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
Deleted HKLM\Software\Classes\CLSID\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}
Deleted HKLM\Software\Classes\CLSID\{75CC1BBE-D96F-45DF-A622-D60BFA8AF49E}
Deleted HKLM\Software\Classes\CLSID\{C099CD7B-A94C-4229-B6F7-76D3494C88D8}
Deleted HKLM\Software\Classes\CLSID\{C45EC9F0-8333-465D-9728-074BD41985C9}
Deleted HKLM\Software\Classes\CLSID\{FB61B649-3FC8-4754-89A2-501456130AB5}
Deleted HKLM\Software\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
Deleted HKLM\Software\Classes\Interface\{3061B3C3-8B7F-4DBD-82DF-0B6CE9AA60E8}
Deleted HKLM\Software\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
Deleted HKLM\Software\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
Deleted HKLM\Software\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
Deleted HKLM\Software\Classes\Interface\{458BD324-E5D0-412C-954D-EDFD69A59ED9}
Deleted HKLM\Software\Classes\Interface\{806ED5AF-3ED0-454C-BE4E-6644DD7BEDD1}
Deleted HKLM\Software\Classes\Interface\{9275FE6D-8F84-4CA5-97E7-DD3AFD5E4BDE}
Deleted HKLM\Software\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
Deleted HKLM\Software\Classes\Interface\{9ADA5C62-B227-45A9-9D77-E5609A43E943}
Deleted HKLM\Software\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
Deleted HKLM\Software\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
Deleted HKLM\Software\Classes\Interface\{A37DD83A-DABA-4EF0-98AA-CDDA88839172}
Deleted HKLM\Software\Classes\Interface\{A70CA55D-8EE5-4997-8BC3-B341E36ACBBA}
Deleted HKLM\Software\Classes\Interface\{B5445928-B77D-474B-84F6-6F1323CA5701}
Deleted HKLM\Software\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
Deleted HKLM\Software\Classes\Interface\{BBBE01ED-0F1E-44DB-88C1-5CC1AEE3B462}
Deleted HKLM\Software\Classes\Interface\{BE6C7021-0352-4A7E-8A5B-46126353049E}
Deleted HKLM\Software\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
Deleted HKLM\Software\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
Deleted HKLM\Software\Classes\Interface\{D2AA22AE-2103-4D78-9C0D-46DE64EE0ED7}
Deleted HKLM\Software\Classes\Interface\{D94BA844-0355-4F02-97F2-6856CD94FE66}
Deleted HKLM\Software\Classes\Interface\{DFBED68E-BBF6-454A-940F-C84C7E7B4CE6}
Deleted HKLM\Software\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
Deleted HKLM\Software\Classes\Interface\{EE95078D-518C-4FD2-8093-FD1D4E33D3CA}
Deleted HKLM\Software\Classes\Interface\{F4F96034-2761-4BAF-B906-E4B59E5D50EA}
Deleted HKLM\Software\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
Deleted HKLM\Software\Classes\Interface\{FE42F7F2-D931-40CD-ACE7-7B47383ACE25}
Deleted HKLM\Software\Classes\TypeLib\{08BB1B53-9220-44C1-B29B-7795C8E5965D}
Deleted HKLM\Software\Classes\TypeLib\{103DFC4E-147A-5606-9B4E-1C216DF227A1}
Deleted HKLM\Software\Classes\TypeLib\{3013E03D-89D5-4580-8560-DB198297CC29}
Deleted HKLM\Software\Classes\TypeLib\{B69509B5-4A90-4433-A2DE-BE439F6581F2}
Deleted HKLM\Software\Classes\TypeLib\{E150D1BB-AC3A-4E9A-B93F-983DFF23FF84}
Deleted HKLM\Software\Classes\TypeLib\{F2F1AE7C-149B-46D3-9498-12572C7AFE11}
Deleted HKLM\Software\Classes\TypeLib\{FD58258C-84A6-4DEF-9793-019BE7F491A7}
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\AddonsFramework.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\ScriptHost.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{44D07CAA-4FC4-5A84-9951-A485AD808D0E}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{75CC1BBE-D96F-45DF-A622-D60BFA8AF49E}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{C099CD7B-A94C-4229-B6F7-76D3494C88D8}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{C45EC9F0-8333-465D-9728-074BD41985C9}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{FB61B649-3FC8-4754-89A2-501456130AB5}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3061B3C3-8B7F-4DBD-82DF-0B6CE9AA60E8}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{458BD324-E5D0-412C-954D-EDFD69A59ED9}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{806ED5AF-3ED0-454C-BE4E-6644DD7BEDD1}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9275FE6D-8F84-4CA5-97E7-DD3AFD5E4BDE}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9ADA5C62-B227-45A9-9D77-E5609A43E943}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{A37DD83A-DABA-4EF0-98AA-CDDA88839172}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{A70CA55D-8EE5-4997-8BC3-B341E36ACBBA}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{B5445928-B77D-474B-84F6-6F1323CA5701}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BBBE01ED-0F1E-44DB-88C1-5CC1AEE3B462}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BE6C7021-0352-4A7E-8A5B-46126353049E}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{D2AA22AE-2103-4D78-9C0D-46DE64EE0ED7}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{D94BA844-0355-4F02-97F2-6856CD94FE66}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{DFBED68E-BBF6-454A-940F-C84C7E7B4CE6}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{EE95078D-518C-4FD2-8093-FD1D4E33D3CA}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{F4F96034-2761-4BAF-B906-E4B59E5D50EA}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{FE42F7F2-D931-40CD-ACE7-7B47383ACE25}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{08BB1B53-9220-44C1-B29B-7795C8E5965D}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{103DFC4E-147A-5606-9B4E-1C216DF227A1}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{3013E03D-89D5-4580-8560-DB198297CC29}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{B69509B5-4A90-4433-A2DE-BE439F6581F2}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{E150D1BB-AC3A-4E9A-B93F-983DFF23FF84}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{F2F1AE7C-149B-46D3-9498-12572C7AFE11}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{FD58258C-84A6-4DEF-9793-019BE7F491A7}
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\com.ascplugin.protect
Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION|BackgroundHost.exe
Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD|BackgroundHost.exe
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{44D07CAA-4FC4-5A84-9951-A485AD808D0E}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Stats\{44D07CAA-4FC4-5A84-9951-A485AD808D0E}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.HPCleanFLC File C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk
Deleted Preinstalled.HPMediaSmart Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FFF78DE5-CC98-4652-AFFF-C9DDCECFDE02}
Deleted Preinstalled.HPMediaSmart Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MirageAgent
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted Preinstalled.HPMediaSmart Task C:\Windows\System32\Tasks\MIRAGEAGENT


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [19842 octets] - [08/12/2020 17:58:38]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Conder]

V PC boli nainstalovane niektore programy od IObit (napr. Driver Booster, Advanced SystemCare, Uninstaller, atd.). Dorazne odporucam tieto programy nepouzivat (a odinstalovat ich, ak nejake este zostali), kedze su to cinske smejdy, ktore mozu poskodit system.

Poprosim o obidva nove logy z FRST.

[Kenamor]

Ta aplikace IObit Uninstaller 9 se nepodařila odinstalovat. V panelu Programů při kliknutí na odinstalovat pouze problikne okno panelu a jinak se nic nestane.

Níže přikládám logy z FRST.
Děkuji. D.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2020
Ran by Hana (administrator) on IDEA-PC (LENOVO 10102) (10-12-2020 13:28:50)
Running from C:\Users\Hana\Downloads
Loaded Profiles: Hana
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Beijing Heegle Technology Co., Ltd. -> Microsoft) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxTray.exe
(Intel® Trusted Connect Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(LENOVO -> LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\WindowsMobile\wmdc.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\prevhost.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe
(Primax Electronics Ltd.) [File not signed] C:\Program Files\Lenovo\Lenovo Black Silk USB Keyboard\Pelico.exe
(PS Media s.r.o. -> PS Media s.r.o.) C:\Program Files (x86)\StartMenu\StartMenu.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(TPV-INVENTA TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\TNIOSDVolumeSync\TNISrvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2360-05-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2359-04-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2359-04-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Lenovo Black Silk Input Device Main Program] => C:\Program Files\Lenovo\Lenovo Black Silk USB Keyboard\Pelico.exe [118272 2011-04-19] (Primax Electronics Ltd.) [File not signed]
HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [TNIOSDVolumeSync(x64)] => C:\Program Files (x86)\TNIOSDVolumeSync\TNIExec.exe [9728 2012-08-30] (TPV-INVENTA TECHNOLOGY CO., LTD.) [File not signed]
HKLM-x32\...\Run: [TNIOSDVolumeSync(x86)] => C:\Program Files\TNIOSDVolumeSync\TNIExec.exe
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-05] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [Lenovo Dynamic Brightness System] => C:\Program Files\Lenovo\Lenovo Brightness System\RunLDBS.exe [1752408 2012-07-10] (Lenovo -> TODO: <公司名>)
HKLM-x32\...\Run: [LVT] => C:\Program Files\Lenovo\LVT\LJYZ.exe [886112 2011-11-24] (Lenovo (Beijing) Limited -> Lenovo)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Run: [StartMenu] => C:\Program Files (x86)\StartMenu\StartMenu.exe [3359872 2015-02-09] (PS Media s.r.o. -> PS Media s.r.o.)
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Run: [ShowDesktopAsRun] => C:\Program Files (x86)\StartMenu\desktop.scf [81 2014-01-11] () [File not signed]
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\MountPoints2: {8256d7d1-9eda-11e7-8202-0025ab4410bc} - "E:\Lenovo_Suite.exe"
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\WINDOWS\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [32608 2012-07-25] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {09B484CE-0C99-443A-98A4-F6F4A4800576} - System32\Tasks\{8A34AF5B-D740-43B9-9C8D-72EE68EAB51F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\FreeRide Games\Uninstall.exe"
Task: {0B4A0A07-FBE8-49E4-AE0C-5D81F3D00C9F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {358AF9D7-1529-41E2-9DB7-4067695CC4F9} - System32\Tasks\DesktopAtStartup => C:\Program Files (x86)\StartMenu\desktop.scf [81 2014-01-11] () [File not signed]
Task: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {43B65FDB-BE90-4254-B947-8C85BBB663A4} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [35584 2014-07-30] (LENOVO -> )
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {843E8180-B0CA-49FE-B62B-C1C9EFCC9A53} - \Lenovo\Lenovo-2857 -> No File <==== ATTENTION
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {BF80FD7F-0A70-43D4-900F-B5A8D7338271} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [133736600 2020-11-13] (Microsoft Windows -> Microsoft Corporation)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CD32576E-EBB0-4C0A-AF1A-4939229ED426} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [133 2012-03-08] () [File not signed] <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 160.228.41.65 1.1.1.1
Tcpip\..\Interfaces\{864498DA-696D-44B4-B023-43098BC39EC2}: [DhcpNameServer] 192.168.1.254 160.228.41.65 1.1.1.1

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Hana\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-10]
Edge HomePage: Default -> hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Firefox\Extensions: [freegames4357@BestOffers] - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\freegames4357@BestOffers
FF Extension: (Free Games 111) - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\freegames4357@BestOffers [2014-01-15] [Legacy] [not signed]
FF HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\Firefox\Extensions: [speedtest4354@BestOffers] - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\speedtest4354@BestOffers
FF Extension: (Speed Test 127) - C:\Users\Hana\AppData\Roaming\Mozilla\Extensions\speedtest4354@BestOffers [2014-01-15] [Legacy] [not signed]
FF Plugin-x32: @exent.com/npExentControl,version=7.1.0.1 -> C:\Program Files (x86)\FreeRide Games\npExentControl.dll [2010-10-19] (Exent Technologies Ltd. -> Exent Technologies Ltd.) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: www.exent.com/GameTreatWidget -> C:\Program Files (x86)\FreeRide Games\NPGameTreatPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-1029540593-1802358105-2366784415-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [No File]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [jljheddigenhleadfofeccneimcmlefp] - C:\Users\Hana\AppData\Roaming\speedtest4354\speedtest4354.crx [2013-12-19]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 Dashboard Service; C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe [24880 2013-01-15] (Beijing Heegle Technology Co., Ltd. -> Microsoft) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 IdeaTouch.LocalDataServer.Education; C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe [7680 2012-05-17] (Microsoft) [File not signed]
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-07-30] (LENOVO -> LENOVO INCORPORATED.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1694992 2020-11-17] (Solitea, a.s. -> Solitea Česká republika, a.s.)
R2 RapiMgr; C:\WINDOWS\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2013-05-14] (CyberLink -> )
R2 TNISrvc; C:\Program Files (x86)\TNIOSDVolumeSync\TNISrvc.exe [53760 2012-08-30] (TPV-INVENTA TECHNOLOGY CO., LTD.) [File not signed]
R2 WcesComm; C:\WINDOWS\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-11-17] (CPUID -> CPUID)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-07-26] (Martin Malik - REALiX -> REALiX(tm))
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [25992 2019-07-30] (IObit CO., LTD -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19280 2019-07-30] (IObit CO., LTD -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [31648 2019-07-30] (IObit CO., LTD -> IObit)
S3 LEMo602D; C:\WINDOWS\system32\DRIVERS\LEMo602D.sys [24064 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.)
S3 LEub602D; C:\WINDOWS\system32\DRIVERS\LEub602D.sys [18944 2011-05-17] (Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [301784 2015-08-30] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 VMC412; C:\WINDOWS\System32\Drivers\VMC412.sys [232832 2020-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
R3 vmuacflt; C:\WINDOWS\System32\Drivers\vmuacflt.sys [13696 2012-05-02] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2016-08-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R0 WinI2C-DDC; C:\WINDOWS\System32\drivers\DDCDrv.sys [20832 2008-04-08] (PC Micro Systems Inc. -> Nicomsoft Ltd.)
R0 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [15712 2010-03-23] (Lenovo (Beijing) Limited -> Nicomsoft Ltd.)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
R2 X5XSEx_Pr148; C:\Program Files (x86)\FreeRide Games\X5XSEx_Pr148.Sys [56136 2012-08-02] (Exent Technologies Ltd. -> Exent Technologies Ltd.)
S3 Imf8HpRegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpRegFilter.sys [X]
S3 ImfHpFileFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpFileFilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2099-12-02 10:40 - 2363-12-02 10:40 - 000064624 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\HECIx64.sys
2099-07-26 18:11 - 2358-07-26 18:11 - 000099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2099-06-07 12:11 - 2351-06-07 12:11 - 000182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3345.dll
2099-06-07 12:11 - 2015-08-30 19:00 - 000110592 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2099-05-19 05:27 - 2350-05-19 05:27 - 002384896 _____ C:\WINDOWS\system32\GfxRes.dll
2099-05-19 05:27 - 2350-05-19 05:27 - 000001806 _____ C:\WINDOWS\system32\GfxUIEx.exe.config
2099-05-19 05:27 - 2015-08-30 19:00 - 009007616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 038385664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2099-05-08 07:40 - 2360-05-08 07:40 - 007164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 002743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 002587864 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 002036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001662024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2099-05-08 07:40 - 2360-05-08 07:40 - 001486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001286360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 001012992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2099-05-08 07:40 - 2360-05-08 07:40 - 000014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 014152960 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 006217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 005681192 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2099-04-20 00:57 - 2359-04-20 00:57 - 003707864 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2099-04-20 00:57 - 2359-04-20 00:57 - 002810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 002103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001921792 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 001021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000681905 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2099-04-20 00:57 - 2359-04-20 00:57 - 000617176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000378000 _____ (Realtek Semiconductor) C:\WINDOWS\system32\RtkGuiCompLib.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2099-04-20 00:57 - 2359-04-20 00:57 - 000074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-12-10 13:28 - 2020-12-10 13:31 - 000019725 _____ C:\Users\Hana\Downloads\FRST.txt
2020-12-10 13:20 - 2020-12-10 13:23 - 000119148 _____ C:\WINDOWS\ntbtlog.txt
2020-12-08 17:57 - 2020-12-08 17:56 - 008447152 _____ (Malwarebytes) C:\Users\Hana\Desktop\adwcleaner_8.0.8.exe
2020-12-08 17:56 - 2020-12-08 18:02 - 000000000 ____D C:\AdwCleaner
2020-12-08 17:55 - 2020-12-08 17:56 - 008447152 _____ (Malwarebytes) C:\Users\Hana\Downloads\adwcleaner_8.0.8.exe
2020-12-08 17:54 - 2020-12-08 17:54 - 000000116 _____ C:\Users\Hana\Desktop\Chybova-hlaska.txt
2020-12-06 22:09 - 2020-12-06 22:10 - 000041144 _____ C:\Users\Hana\Downloads\Addition_.txt
2020-12-06 22:08 - 2020-12-06 22:10 - 000046298 _____ C:\Users\Hana\Downloads\FRST_.txt
2020-12-06 22:07 - 2020-12-10 13:30 - 000000000 ____D C:\FRST
2020-12-06 21:54 - 2020-12-06 21:55 - 002288640 _____ (Farbar) C:\Users\Hana\Downloads\FRST64.exe
2020-12-06 19:25 - 2020-12-06 19:25 - 000003096 _____ C:\WINDOWS\system32\Tasks\{8A34AF5B-D740-43B9-9C8D-72EE68EAB51F}
2020-12-06 19:01 - 2020-12-06 19:01 - 000001970 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2020-12-06 18:56 - 2020-12-06 18:56 - 000000000 ____D C:\Users\Hana\AppData\Local\ESET
2020-12-06 18:54 - 2020-12-06 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2020-12-06 18:54 - 2020-12-06 18:54 - 000000000 ____D C:\ProgramData\ESET
2020-12-06 18:54 - 2020-12-06 18:54 - 000000000 ____D C:\Program Files\ESET
2020-12-06 18:34 - 2020-12-06 18:34 - 006341552 _____ (ESET) C:\Users\Hana\Downloads\eset_internet_security_live_installer.exe
2020-11-17 19:25 - 2020-11-17 19:25 - 597622657 _____ C:\WINDOWS\MEMORY.DMP
2020-11-17 19:25 - 2020-11-17 19:25 - 000285416 _____ C:\WINDOWS\Minidump\111720-47578-01.dmp
2020-11-17 19:25 - 2020-11-17 19:25 - 000000000 ____D C:\WINDOWS\Minidump
2020-11-17 18:27 - 2020-11-17 18:56 - 000000000 ____D C:\Users\Hana\Documents\upgrate 17.11.2020 záloha před
2020-11-17 18:21 - 2020-11-17 21:18 - 000000000 ____D C:\Users\Hana\Documents\testy 17.11.2020
2020-11-17 12:57 - 2020-11-17 12:57 - 000000000 ____D C:\ProgramData\DPMigrateTool
2020-11-11 20:33 - 2020-11-11 20:33 - 022903696 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 017847184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 011896000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 011048792 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 010575912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 008522640 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 006508944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 004391264 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 004387680 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 004024192 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 003814240 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2020-11-11 20:33 - 2020-11-11 20:33 - 003692592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 002505992 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 002035592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001995144 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001793928 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001766792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001469824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001155896 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 001151744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000968032 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000872320 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000659328 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000617872 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000616832 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000554336 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000553824 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000467600 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000442208 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000408416 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000407904 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000397664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000385416 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000379784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000379240 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000374672 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000357760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000330128 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000295304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000264584 _____ C:\WINDOWS\system32\igfxCPL.cpl
2020-11-11 20:33 - 2020-11-11 20:33 - 000262496 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000229776 _____ C:\WINDOWS\system32\igdde64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000229560 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000226184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v5161.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000223616 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000217992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000203104 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2020-11-11 20:33 - 2020-11-11 20:33 - 000198992 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000194264 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000193416 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000191476 _____ C:\WINDOWS\system32\resTHA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000191376 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000190848 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000184036 _____ C:\WINDOWS\system32\resELL.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000179828 _____ C:\WINDOWS\system32\resRUS.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000170896 _____ C:\WINDOWS\system32\igdail64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000169272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000165460 _____ C:\WINDOWS\system32\resARA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000164948 _____ C:\WINDOWS\system32\resJPN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000164884 _____ C:\WINDOWS\system32\resHEB.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000163720 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000160260 _____ C:\WINDOWS\system32\resHUN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000160196 _____ C:\WINDOWS\system32\resFRA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158532 _____ C:\WINDOWS\system32\resKOR.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158388 _____ C:\WINDOWS\system32\resDEU.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158356 _____ C:\WINDOWS\system32\resITA.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158148 _____ C:\WINDOWS\system32\resROM.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000158052 _____ C:\WINDOWS\system32\resESN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000157652 _____ C:\WINDOWS\system32\resPLK.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000157492 _____ C:\WINDOWS\system32\resSKY.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000157332 _____ C:\WINDOWS\system32\resNLD.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156708 _____ C:\WINDOWS\system32\resPTB.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156628 _____ C:\WINDOWS\system32\resCSY.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156596 _____ C:\WINDOWS\system32\resTRK.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000156420 _____ C:\WINDOWS\system32\resPTG.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000155972 _____ C:\WINDOWS\system32\resFIN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000155540 _____ C:\WINDOWS\system32\resHRV.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000155124 _____ C:\WINDOWS\system32\resSVE.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000154964 _____ C:\WINDOWS\system32\resSLV.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000154004 _____ C:\WINDOWS\system32\resNOR.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000153508 _____ C:\WINDOWS\system32\resDAN.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000152464 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000152164 _____ C:\WINDOWS\system32\resENU.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000150404 _____ C:\WINDOWS\system32\resCHT.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000149524 _____ C:\WINDOWS\system32\resCHS.cui
2020-11-11 20:33 - 2020-11-11 20:33 - 000141696 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000107392 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000102800 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000095112 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000078216 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000072592 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000069008 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000068488 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000040616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000039304 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000019336 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000019336 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000018824 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000018824 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000013704 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000013704 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2020-11-11 20:33 - 2020-11-11 20:33 - 000002572 _____ C:\WINDOWS\system32\iglhxs64.vp
2020-11-11 20:28 - 2020-11-11 20:28 - 000232832 _____ (Vimicro Corporation) C:\WINDOWS\system32\Drivers\vmc412.sys
2020-11-11 06:05 - 2020-10-13 05:31 - 002132992 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-11-11 06:05 - 2020-10-13 05:09 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-11-11 05:29 - 2020-11-11 20:35 - 000000000 ____D C:\Users\Hana\AppData\Roaming\instinfo
2020-11-11 05:29 - 2020-11-11 05:29 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-10 13:28 - 2013-11-14 13:40 - 001739092 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-10 13:28 - 2013-11-14 13:24 - 000721362 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-10 13:28 - 2013-11-14 13:24 - 000144712 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-10 13:28 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2020-12-10 13:25 - 2015-09-16 10:53 - 000000000 __SHD C:\Users\Hana\IntelGraphicsProfiles
2020-12-10 13:23 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-10 12:38 - 2013-12-16 11:13 - 000003818 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{5A930A5B-D37D-4402-A355-E18F8E34A411}
2020-12-08 18:31 - 2013-12-16 23:10 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1029540593-1802358105-2366784415-1001
2020-12-08 18:25 - 2013-09-15 01:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2020-12-08 18:03 - 2014-12-17 19:34 - 000000000 ____D C:\Users\Hana\AppData\LocalLow\IObit
2020-12-08 18:02 - 2013-09-15 01:19 - 000000000 ____D C:\Program Files (x86)\Amazon
2020-12-06 23:42 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2020-12-06 21:35 - 2014-01-15 18:28 - 000000000 ____D C:\Users\Hana\AppData\Roaming\speedtest4354
2020-12-06 21:32 - 2013-09-15 01:26 - 000000000 ____D C:\Program Files (x86)\FreeRide Games
2020-12-06 19:22 - 2013-12-16 23:43 - 000000000 ____D C:\Program Files (x86)\IObit
2020-12-06 19:16 - 2016-09-19 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2020-12-06 19:13 - 2014-12-17 19:34 - 000000000 ____D C:\ProgramData\ProductData
2020-12-06 19:13 - 2013-12-16 23:43 - 000000000 ____D C:\Users\Hana\AppData\Roaming\IObit
2020-12-06 18:55 - 2012-07-26 09:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-06 18:53 - 2020-07-22 14:56 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-06 18:53 - 2020-07-22 14:56 - 000002211 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-11-30 14:15 - 2020-07-22 14:56 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 14:15 - 2020-07-22 14:56 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-29 07:40 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-11-29 07:06 - 2013-12-16 23:43 - 000000000 ____D C:\ProgramData\IObit
2020-11-24 18:18 - 2020-06-07 18:51 - 000000000 ____D C:\Users\Hana\Documents\záloha Imfsoft 2020
2020-11-24 18:12 - 2020-02-24 20:15 - 000000000 ____D C:\Users\Hana\Documents\DPH, SH, KH Imfsoft 2020
2020-11-24 17:00 - 2015-07-21 16:27 - 000004476 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-24 16:59 - 2017-04-23 07:23 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-21 15:51 - 2016-02-02 20:46 - 000000000 ____D C:\Users\Hana\Documents\Imfsoft 2016
2020-11-17 21:29 - 2013-12-16 10:51 - 000000000 ____D C:\Users\Hana
2020-11-17 18:06 - 2020-01-06 16:40 - 000000000 ____D C:\Users\Hana\AppData\LocalLow\Mozilla
2020-11-17 17:56 - 2020-02-12 19:49 - 000000000 ____D C:\Users\Hana\Documents\IMFsoft odvody 2020
2020-11-17 12:46 - 2015-09-16 10:52 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-11-17 12:38 - 2013-08-22 15:44 - 000404024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-17 12:25 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2020-11-17 12:25 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-13 06:14 - 2013-12-16 23:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-11-13 06:11 - 2013-12-16 23:45 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-13 06:11 - 2012-07-26 08:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-11 20:35 - 2013-12-16 10:46 - 000000000 ____D C:\Program Files\Intel
2020-11-11 20:35 - 2013-09-15 01:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-11-11 20:33 - 2015-08-30 19:00 - 000381280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2020-11-11 20:33 - 2015-08-27 17:20 - 012326232 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 004660944 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000680328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000538464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2020-11-11 20:33 - 2015-08-27 17:20 - 000327008 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2020-11-11 20:33 - 2015-08-27 17:20 - 000293256 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000261000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2020-11-11 20:33 - 2015-08-27 17:20 - 000257888 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2020-11-11 20:33 - 2013-12-16 10:47 - 000072592 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2020-11-11 20:33 - 2013-12-16 10:47 - 000069008 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

==================== Files in the root of some directories ========

2013-12-16 11:26 - 2014-06-05 18:03 - 000000369 _____ () C:\Users\Hana\AppData\Local\RegisteredPackageInformation.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2016-05-15 16:33
==================== End of FRST.txt ========================




Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-12-2020
Ran by Hana (10-12-2020 13:32:00)
Running from C:\Users\Hana\Downloads
Windows 8.1 (Update) (X64) (2013-12-16 10:03:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1029540593-1802358105-2366784415-500 - Administrator - Disabled)
Guest (S-1-5-21-1029540593-1802358105-2366784415-501 - Limited - Enabled)
Hana (S-1-5-21-1029540593-1802358105-2366784415-1001 - Administrator - Enabled) => C:\Users\Hana

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Disabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Security (Disabled - Up to date) {32D4BD20-1EBB-773C-2B52-7CE89BB0522B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Disabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20066 - Adobe Systems Incorporated)
Aktualizace ovladače pro aplikaci Centrum zařízení Windows Mobile (HKLM\...\{92DBCA36-9B41-4DD1-941A-AED149DD37F0}) (Version: 6.1.6965.0 - Microsoft Corporation)
Brother MFL-Pro Suite DCP-1610W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Comparing (HKLM-x32\...\{FA26CEFD-E3BE-46EC-AEE0-95BF8F5CF307}) (Version: 1.00.2012.0829 - Tong child Research & Planning Co.,Ltd) Hidden
Comparing (HKLM-x32\...\InstallShield_{FA26CEFD-E3BE-46EC-AEE0-95BF8F5CF307}) (Version: 1.00.2012.0829 - Tong child Research & Planning Co.,Ltd)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4030 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.26.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM-x32\...\{1D2682EA-75DD-44B6-BF2D-CD3C49EAD012}) (Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{3117B53D-A409-4D99-A0DE-11A1A40696FA}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4430150F-61B3-4142-BE04-EAC68C8DDA18}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4ABFEC28-1554-493D-A84D-BEA21D8E6D6F}) (Version: 1.6.25.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4AF6C9BC-D8DB-4286-94D9-474CE54ADAA2}) (Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{503B47A9-E34A-4841-ADD7-417191D5DB5E}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{546FF45D-2467-4950-AAFB-0A06ACBB6B2C}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5B2190E9-199D-450A-94B3-4D6826C770C2}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5BEFE1E1-F597-4B79-913B-15FFDB25B744}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{63DE35C9-B080-4D03-B110-99E14FD35BCE}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{65316098-0220-4D5C-B37A-6136083A0897}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{E966DBE4-5075-465E-BA81-BC9A3A3204B3}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
DPMigrateTool (HKLM-x32\...\{2C866457-B8BE-49CF-B261-60C6722E91BE}) (Version: 1.0.0.1 - lenovo)
Driver & Application Installation (HKLM-x32\...\{BFECCF2A-F094-4066-8BFA-29CCBB7F6602}) (Version: 6.13.0423 - Lenovo)
EducationPortal (HKLM-x32\...\{65487538-FF20-421B-91DB-F6634B8D264C}) (Version: 5.00.012.0617 - Lenovo)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 20.902 (20201105_15) - Solitea Česká republika, a.s.)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Find the Differences (HKLM-x32\...\{65F9B587-24A7-466A-999A-9C5F9D452400}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Find the Differences (HKLM-x32\...\InstallShield_{65F9B587-24A7-466A-999A-9C5F9D452400}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
Finding the Letters (HKLM-x32\...\{535FB733-FFCF-4460-8694-664A2F6C53B4}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Finding the Letters (HKLM-x32\...\InstallShield_{535FB733-FFCF-4460-8694-664A2F6C53B4}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
FreeRide Games (HKLM-x32\...\{6C26A305-4549-4A8A-9F03-25719C03B0FB}) (Version: 07.05.83.01 - Exent Technologies)
Fruits (HKLM-x32\...\{AA39BFDE-71E5-46A6-A10B-44C2F45A341E}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd) Hidden
Fruits (HKLM-x32\...\InstallShield_{AA39BFDE-71E5-46A6-A10B-44C2F45A341E}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5161 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.0.2.38 - IObit)
Lenovo Assistant (HKLM-x32\...\{B2DE4F30-B8C7-49C0-85B9-2F37A5290F00}) (Version: 2.0.0.27 - Lenovo)
Lenovo Dashboard (HKLM-x32\...\{FEF1833C-244C-4DF2-AB67-1E1D26921ED8}) (Version: 2.0.0.9 - Lenovo)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.26.00 - Lenovo Group Limited)
Lenovo Dynamic Brightness System (HKLM-x32\...\{D9ED6D06-6002-495E-A7BC-46E6AE386996}) (Version: 4.0.01.42160 - Lenovo)
Lenovo Eye Distance System (HKLM-x32\...\{5183D7AB-D09B-411F-A74E-BBAEA61C6505}) (Version: 4.0.01.42160 - Lenovo)
Lenovo Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.6418 - CyberLink Corp.) Hidden
Lenovo Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.6418 - CyberLink Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.)
Lenovo Rescue System (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.0822 - CyberLink Corp.) Hidden
Lenovo Rescue System (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.0822 - CyberLink Corp.)
Lenovo USB2.0 UVC Camera (HKLM-x32\...\{70D2C5B8-EB22-45B1-9EAA-5E8C1C408A3B}) (Version: 1.00.0000 - Vimicro Corporation)
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
LVT (HKLM-x32\...\{9E3469A6-443A-452C-BF44-8D7CE3A9A7E2}) (Version: 5.00.0914 - Lenovo)
Mammals (HKLM-x32\...\{ACA58CEB-2F74-4095-ADB6-4C1BFB170F64}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd) Hidden
Mammals (HKLM-x32\...\InstallShield_{ACA58CEB-2F74-4095-ADB6-4C1BFB170F64}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd)
Matching Roles (HKLM-x32\...\{92736E44-7608-4D80-9333-E40C82B7E8B3}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Matching Roles (HKLM-x32\...\InstallShield_{92736E44-7608-4D80-9333-E40C82B7E8B3}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.55 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.3.1 - Mozilla)
Mozilla Thunderbird 68.12.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 68.12.0 (x64 cs)) (Version: 68.12.0 - Mozilla)
Puzzle (HKLM-x32\...\{6EB7ECE3-E3BE-481D-821B-F1AFFA244D64}) (Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd) Hidden
Puzzle (HKLM-x32\...\InstallShield_{6EB7ECE3-E3BE-481D-821B-F1AFFA244D64}) (Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.8400.29025 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Software602 Form Filler (HKLM-x32\...\{DE3B6562-0A58-49E0-836F-B895F3985958}) (Version: 4.52 - Software602 a.s.)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
timer (HKLM-x32\...\{9CC4B8EE-A96B-4800-B674-0CF8B4560F45}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
timer (HKLM-x32\...\InstallShield_{9CC4B8EE-A96B-4800-B674-0CF8B4560F45}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
TNIOSDVolumeSync (HKLM-x32\...\{86B9BBB1-B06B-4B31-9D0A-634B41598251}) (Version: 1.0.0.3 - TPV-INVENTA TECHNOLOGY CO., LTD.) Hidden
TNIOSDVolumeSync (HKLM-x32\...\InstallShield_{86B9BBB1-B06B-4B31-9D0A-634B41598251}) (Version: 1.0.0.3 - TPV-INVENTA TECHNOLOGY CO., LTD.)
Windows 8 Start menu 1.4 (HKLM-x32\...\Windows 8 Start menu_is1) (Version: - PS Media s.r.o.)

Packages:
=========
Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_2.2.26.0_x86__k1h2ywk1493x8 [2016-05-08] (LENOVO INC.)
FreeRide Games for Lenovo -> C:\Program Files\WindowsApps\Exent.FreeRideGamesforLenovo_1.0.0.0_x64__fq5x03g7fwkgm [2013-12-16] (Exent Technologies LTD) [MS Ad]
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2013-12-16] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-15] (Microsoft Corporation) [MS Ad]
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2013-12-16] (Rozšíření Microsoft Platform)
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-23] (Lenovo, INC.)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2013-12-16] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2013-12-16] (Microsoft Corporation)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2013-12-16] (Microsoft Platform Extensions)
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-27] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2014-02-20] (CYBERLINK COM CORPORATION)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-06-21] (Skype) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-06] (Microsoft Corporation) [MS Ad]
YouCam for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.YouCamforLenovoIdea_1.0.3624.30505_x86__hgg5mn3xps74a [2015-01-02] (CYBERLINK COM CORPORATION)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-04-19] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [PDFConv] -> {919CF7F5-9A8E-40B9-9588-2BECA5927D98} => C:\Program Files (x86)\Software602\602XML\xmlcore\CtxSign64.dll [2013-07-16] (Software602 a. s. -> Software602)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-04-19] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2016-10-03 17:44 - 2009-02-27 15:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2016-10-03 17:44 - 2013-06-12 18:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2016-10-03 17:44 - 2014-05-22 18:12 - 000137728 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2016-10-03 17:44 - 2014-02-06 20:13 - 000083968 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2016-10-03 17:44 - 2014-02-06 20:13 - 017904640 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2016-10-03 17:44 - 2014-01-09 16:36 - 000082944 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS:nlsPreferences [386]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> DefaultScope {B29D9ECB-704B-4CB4-917B-11411F2494FA} URL =
SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> {3C13311A-3C74-4F35-9D35-6F0D878C8DAF} URL = hxxps://www.google.com/search?q={searchTerms}&s ... utEncoding?}
SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> {B29D9ECB-704B-4CB4-917B-11411F2494FA} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
IE Session Restore: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> is enabled.
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hana\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "CLMLServer"
HKLM\...\StartupApproved\Run32: => "YouCam Tray"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "TNIOSDVolumeSync(x86)"
HKLM\...\StartupApproved\Run32: => "Lenovo Dynamic Brightness System"
HKLM\...\StartupApproved\Run32: => "YouCam Mirage"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\StartupApproved\Run: => "BrowserChoice"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5B5AF185-7CE7-4301-AFFB-DFEEA8D8A61B}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{D12D18C6-3E35-4C4C-8058-43FA2A627A05}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe => No File
FirewallRules: [{0CAE13F1-A8EF-4532-B9FA-8FCB25B1947F}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe => No File
FirewallRules: [{CA942BF9-656D-4ABE-9850-FD309A884B56}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B1300396-7D56-4A5F-AF60-0EBA8786E747}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{51F31A31-CEFC-4893-877C-1886700A5CF2}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe => No File
FirewallRules: [UDP Query User{FA8368A8-A615-4058-9D43-7CBAB7056D39}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe] => (Allow) C:\program files (x86)\intel\intelappstore\bin\ismagent.exe => No File
FirewallRules: [TCP Query User{ADE1136F-23FC-48AB-9389-D74A6E251F5D}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{DF9B0D00-BBDA-47A6-8044-9BC8F73A5AA1}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8E542F39-02E8-4616-A5ED-0691F1709A51}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{83CEC381-DD06-4288-9777-7C68AD142059}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [TCP Query User{AA74A064-FCCA-42B5-9A3B-32048CCF44DF}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [UDP Query User{C356D685-4009-4C3B-B004-8F094D7C1C2A}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [{5C855CCB-D9DD-447A-B861-970AF11806B6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe => No File
FirewallRules: [{FC58DC93-B30C-4185-980A-F30DA1D73912}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe => No File
FirewallRules: [{77258C04-F9CE-415C-B589-42A9072D3856}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe => No File
FirewallRules: [{3CC9751F-6051-4CE1-8BE8-554B79773219}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe => No File
FirewallRules: [{C4067CD9-666A-4545-8444-8D8D72BAC3CF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe => No File
FirewallRules: [{A2C4C2A3-A91E-4366-B708-D3F8552F6B74}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe => No File

==================== Restore Points =========================

Check "VSS" service


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/10/2020 01:26:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Název chybujícího modulu: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Kód výjimky: 0xc0000005
Posun chyby: 0x000024b7
ID chybujícího procesu: 0xf30
Čas spuštění chybující aplikace: 0x01d6ceef97963830
Cesta k chybující aplikaci: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
ID zprávy: dcf4329e-3ae2-11eb-82d1-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2020 12:26:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.3.9600.18460, časové razítko: 0x57c1b8c1
Název chybujícího modulu: DEVRTL.dll, verze: 6.3.9600.17415, časové razítko: 0x5450429b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000001475
ID chybujícího procesu: 0x82c
Čas spuštění chybující aplikace: 0x01d6cd88b21efe69
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\DEVRTL.dll
ID zprávy: 98ab01fb-3ada-11eb-82cd-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/08/2020 06:36:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.3.9600.18460, časové razítko: 0x57c1b8c1
Název chybujícího modulu: DEVRTL.dll, verze: 6.3.9600.17415, časové razítko: 0x5450429b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000001475
ID chybujícího procesu: 0xae8
Čas spuštění chybující aplikace: 0x01d6cd86a2425b8b
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\DEVRTL.dll
ID zprávy: ef94b38f-397b-11eb-82cd-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/08/2020 06:35:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Název chybujícího modulu: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Kód výjimky: 0xc0000005
Posun chyby: 0x000024b7
ID chybujícího procesu: 0xf30
Čas spuštění chybující aplikace: 0x01d6cd86bfeee438
Cesta k chybující aplikaci: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
ID zprávy: ccf2796f-397b-11eb-82cd-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/08/2020 06:16:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.3.9600.18460, časové razítko: 0x57c1b8c1
Název chybujícího modulu: DEVRTL.dll, verze: 6.3.9600.17415, časové razítko: 0x5450429b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000001475
ID chybujícího procesu: 0x704
Čas spuštění chybující aplikace: 0x01d6cd850e437315
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\DEVRTL.dll
ID zprávy: 1fdeb8b9-3979-11eb-82cc-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/08/2020 06:11:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Název chybujícího modulu: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Kód výjimky: 0xc0000005
Posun chyby: 0x000024b7
ID chybujícího procesu: 0xd78
Čas spuštění chybující aplikace: 0x01d6cd851cb86e73
Cesta k chybující aplikaci: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
ID zprávy: 5f81f59e-3978-11eb-82cc-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/08/2020 05:54:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Název chybujícího modulu: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Kód výjimky: 0xc0000005
Posun chyby: 0x000024b7
ID chybujícího procesu: 0x1114
Čas spuštění chybující aplikace: 0x01d6cd824b428185
Cesta k chybující aplikaci: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
ID zprávy: fbaf33c5-3975-11eb-82cb-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/06/2020 09:43:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Název chybujícího modulu: TNIOSDVolumeSync.exe, verze: 1.0.0.3, časové razítko: 0x50af4f8d
Kód výjimky: 0xc0000005
Posun chyby: 0x000024b7
ID chybujícího procesu: 0xe6c
Čas spuštění chybující aplikace: 0x01d6cc10444aeab4
Cesta k chybující aplikaci: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\TNIOSDVolumeSync\TNIOSDVolumeSync.exe
ID zprávy: be00ac51-3803-11eb-82ca-0025ab4410bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (12/10/2020 01:23:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba WinHTTP WPAD závisí na službě Klient DHCP, která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (12/10/2020 01:23:04 PM) (Source: DCOM) (EventID: 10005) (User: idea-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby ShellHWDetection s argumenty Není k dispozici za účelem spuštění serveru:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (12/10/2020 01:23:04 PM) (Source: DCOM) (EventID: 10005) (User: idea-PC)
Description: Služba DCOM zjistila chybu 1068 při pokusu o spuštění služby netprofm s argumenty Není k dispozici za účelem spuštění serveru:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (12/10/2020 01:23:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (12/10/2020 01:23:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Sledování umístění v síti (NLA) závisí na službě Klient DHCP, která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (12/10/2020 01:21:52 PM) (Source: DCOM) (EventID: 10005) (User: idea-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby ShellHWDetection s argumenty Není k dispozici za účelem spuštění serveru:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (12/10/2020 01:21:23 PM) (Source: DCOM) (EventID: 10005) (User: idea-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby ShellHWDetection s argumenty Není k dispozici za účelem spuštění serveru:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (12/10/2020 01:21:17 PM) (Source: DCOM) (EventID: 10005) (User: idea-PC)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby ShellHWDetection s argumenty Není k dispozici za účelem spuštění serveru:
{DD522ACC-F821-461A-A407-50B198B896DC}


Windows Defender:
===================================
Date: 2019-11-18 19:57:06.299
Description:
Prohledávání Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... terprise=0
Název: Trojan:HTML/CoinMiner
ID: 2147743857
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Program Files (x86)\IObit\Surfing Protection\Database\ASCSpecialUrl.db;file:_C:\PROGRA~2\IObit\SURFIN~1\Database\ASCSpecialUrl.db
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: idea-PC\Hana
Název procesu: C:\Program Files (x86)\Internet Explorer\iexplore.exe
Verze podpisu: AV: 1.305.2357.0, AS: 1.305.2357.0, NIS: 119.0.0.0
Verze modulu: AM: 1.1.16500.1, NIS: 2.1.14600.4

Date: 2019-11-18 19:57:01.654
Description:
Prohledávání Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... terprise=0
Název: Trojan:HTML/CoinMiner
ID: 2147743857
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\PROGRA~2\IObit\SURFIN~1\Database\ASCSpecialUrl.db
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: idea-PC\Hana
Název procesu: C:\Program Files (x86)\Internet Explorer\iexplore.exe
Verze podpisu: AV: 1.305.2357.0, AS: 1.305.2357.0, NIS: 119.0.0.0
Verze modulu: AM: 1.1.16500.1, NIS: 2.1.14600.4

Date: 2020-12-06 18:09:56.373
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 119.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Systém kontroly sítě
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 2.1.14600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-12-06 18:09:56.357
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1890.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-12-06 18:09:56.357
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1890.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-12-06 18:09:55.842
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1890.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x8024402c
Popis chyby ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-11-29 07:20:44.527
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.327.1481.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17600.5
Kód chyby: 0x80070652
Popis chyby :Momentálně je spuštěna jiná instalace. Před spuštěním nové instalace nejdříve dokončete spuštěnou instalaci.

==================== Memory info ===========================

BIOS: LENOVO ELKT32AUS 06/17/2013
Motherboard: LENOVO MAHOBAY
Processor: Intel(R) Celeron(R) CPU G1610 @ 2.60GHz
Percentage of memory in use: 22%
Total physical RAM: 6032.46 MB
Available physical RAM: 4703.02 MB
Total Virtual: 12176.46 MB
Available Virtual: 10903.84 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:439.06 GB) (Free:181.62 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{ded5366a-ce97-472b-a96e-d6e4281c1b14}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.67 GB) NTFS
\\?\Volume{dd4b2a8a-31e2-48b3-99a7-ddb9c72c28d2}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{32481a13-3f91-4096-ac86-6d3dbabc3534}\ (PBR_DRV) (Fixed) (Total:24.41 GB) (Free:9.68 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CB482A87)

Partition: GPT.

==================== End of Addition.txt =======================

[Conder]

OK, nevadi, IObit uninstaller sa odstrani rucne tymto fixlistom.

Otvor poznamkovy blok (Win+R -> notepad -> enter)

• Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

  Kód: Vybrat vše

  Start::
  CloseProcesses:
  CreateRestorePoint:
  
  PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
  VirusTotal: C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs
  File: C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs
  CMD: type "C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs"
  ExportKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IObitUninstall
  DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IObitUninstall
  ExportKey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\str
  
  HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\...\MountPoints2: {8256d7d1-9eda-11e7-8202-0025ab4410bc} - "E:\Lenovo_Suite.exe" 
  Task: {09B484CE-0C99-443A-98A4-F6F4A4800576} - System32\Tasks\{8A34AF5B-D740-43B9-9C8D-72EE68EAB51F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\FreeRide Games\Uninstall.exe"
  Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
  Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
  Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
  Task: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
  Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
  Task: {843E8180-B0CA-49FE-B62B-C1C9EFCC9A53} - \Lenovo\Lenovo-2857 -> No File <==== ATTENTION
  Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
  Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
  FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
  FF Plugin-x32: www.exent.com/GameTreatWidget -> C:\Program Files (x86)\FreeRide Games\NPGameTreatPlugin.dll [No File]
  FF Plugin HKU\S-1-5-21-1029540593-1802358105-2366784415-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [No File]
  S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
  R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [25992 2019-07-30] (IObit CO., LTD -> IObit)
  R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19280 2019-07-30] (IObit CO., LTD -> IObit)
  R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [31648 2019-07-30] (IObit CO., LTD -> IObit)
  S3 Imf8HpRegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpRegFilter.sys [X]
  S3 ImfHpFileFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\ImfHpFileFilter.sys [X]
  2020-12-08 18:03 - 2014-12-17 19:34 - 000000000 ____D C:\Users\Hana\AppData\LocalLow\IObit
  2020-12-06 19:22 - 2013-12-16 23:43 - 000000000 ____D C:\Program Files (x86)\IObit
  2020-12-06 19:16 - 2016-09-19 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
  2020-12-06 19:13 - 2013-12-16 23:43 - 000000000 ____D C:\Users\Hana\AppData\Roaming\IObit
  2020-11-29 07:06 - 2013-12-16 23:43 - 000000000 ____D C:\ProgramData\IObit
  ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
  ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
  ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll -> No File
  ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
  AlternateDataStreams: C:\WINDOWS:nlsPreferences [386]
  HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"
  HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01
  HKU\S-1-5-21-1029540593-1802358105-2366784415-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
  SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> DefaultScope {B29D9ECB-704B-4CB4-917B-11411F2494FA} URL = 
  SearchScopes: HKU\S-1-5-21-1029540593-1802358105-2366784415-1001 -> {B29D9ECB-704B-4CB4-917B-11411F2494FA} URL = 
  BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
  FirewallRules: [{5C855CCB-D9DD-447A-B861-970AF11806B6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe => No File
  FirewallRules: [{FC58DC93-B30C-4185-980A-F30DA1D73912}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe => No File
  FirewallRules: [{77258C04-F9CE-415C-B589-42A9072D3856}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe => No File
  FirewallRules: [{3CC9751F-6051-4CE1-8BE8-554B79773219}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe => No File
  FirewallRules: [{C4067CD9-666A-4545-8444-8D8D72BAC3CF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe => No File
  FirewallRules: [{A2C4C2A3-A91E-4366-B708-D3F8552F6B74}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe => No File
  
  Hosts:
  EmptyTemp:
  End::

• Uloz na plochu s nazvom fixlist.txt
• Spusti znovu FRST a klikni na Fix
• Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
• Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj