Spomaleny notebook

[luc_ia]

Ahojte,

poslednu dobu sa mi vyrazne spomalil ntb (lenovo ideapad 5 - cca trojrocny)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2022
Ran by lucyf (administrator) on LAPTOP-LC958NDL (LENOVO 81YQ) (17-10-2022 20:55:44)
Running from C:\Users\lucyf\OneDrive\Počítač\programy
Loaded Profiles: lucyf & niroco & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Platform: Microsoft Windows 10 Home Version 21H2 19044.2130 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe <2>
(C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe <6>
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\epmd.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\inet_gethost.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\lib\os_mon-2.7\priv\bin\win32sysinfo.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe
(C:\Users\lucyf\anaconda3\Scripts\jupyter-notebook.exe ->) (Python Software Foundation) [File not signed] C:\Users\lucyf\anaconda3\python.exe <2>
(C:\Users\lucyf\AppData\Local\WebEx\WebexHost.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\lucyf\AppData\Local\WebEx\WebEx64\Meetings\atmgr.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <2>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(cmd.exe ->) () [File not signed] C:\Users\lucyf\anaconda3\Scripts\jupyter-notebook.exe
(cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_eea2c15eb4860b4b\LenovoUtilityService.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_eea2c15eb4860b4b\FnHotkeyUtility.exe
(DriverStore\FileRepository\u0361383.inf_amd64_cfccffda602342c4\B361368\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361383.inf_amd64_cfccffda602342c4\B361368\atieclxx.exe
(explorer.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\lucyf\AppData\Local\WebEx\WebexHost.exe
(explorer.exe ->) (GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\65.0.2.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (James Kring, Inc. -> JKI) C:\Program Files (x86)\JKI\VI Package Manager\support\VIPM Service.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(explorer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Kantar Slovakia s.r.o. -> Kantar Slovakia) [File not signed] C:\Users\lucyf\AppData\Local\Apps\2.0\QXD1YD48.ERX\JXOWDZ8V.VW5\odme..tion_ef252d0bf8e0ce83_0003.0000_3f9dbaab95fff523\Odmenovac.exe
(LNBITSSvc.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(National Instruments Corporation -> National Instruments) C:\Program Files (x86)\National Instruments\NI Device Monitor\DeviceMonitor.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361383.inf_amd64_cfccffda602342c4\B361368\atiesrxx.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_eea2c15eb4860b4b\LenovoUtilityService.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\PXI\nipxicms.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nipalsm.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_711600cb280d10fd\RtkAudUService64.exe <2>
(services.exe ->) (Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Imaging Products & Solutions Inc. -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.117.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_711600cb280d10fd\RtkAudUService64.exe [1195312 2020-10-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167552 2022-05-14] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [NI Device Monitor] => C:\Program Files (x86)\National Instruments\NI Device Monitor\DeviceMonitor.exe [347344 2021-07-07] (National Instruments Corporation -> National Instruments)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\lucyf\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-03-29] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-05] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13668840 2022-10-11] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\lucyf\AppData\Local\WebEx\WebexHost.exe [7992008 2022-09-29] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [Spotify] => C:\Users\lucyf\AppData\Roaming\Spotify\Spotify.exe [20073848 2022-10-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [342816 2021-06-30] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp103: C:\Windows\System32\spool\prtprocs\x64\hpcpp103.dll [323584 2010-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP c111 Status Monitor: C:\WINDOWS\system32\hpinkstsc111LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk [2022-04-20]
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2022-04-20]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VIPM Service.lnk [2022-04-20]
ShortcutTarget: VIPM Service.lnk -> C:\Program Files (x86)\JKI\VI Package Manager\support\VIPM Service.exe (James Kring, Inc. -> JKI)
Startup: C:\Users\lucyf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 1510 series.lnk [2022-09-07]
ShortcutAndArgument: Monitor Ink Alerts - HP Deskjet 1510 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN37O17K8B05XJ;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\lucyf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odmenovac.appref-ms [2020-09-11] () [File not signed]
Startup: C:\Users\lucyf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2021-02-01]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {033D0AD7-1DCC-429E-9219-D3D13BF37E1C} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [44536 2022-10-07] (HP Inc. -> HP Inc.)
Task: {06FEF118-1E47-4CD0-8CA1-3F23A5249FEF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2748333381-4169306442-1436405215-500 => C:\Users\lucyf\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {08821179-3222-4A66-8755-977E82BAD870} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {0915F47D-48A8-497A-9258-CAEF9E0811AB} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "58f0b681-79a4-424b-8648-42734df0686e" --version "6.04.10044" --silent
Task: {0BFFE240-5ED4-40E2-8F34-F28F9C43E506} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2491da1b-b037-4c3e-b2bb-0aa73617e4dd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {0DAAF602-938D-471D-8AE1-51304086FF51} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {11BFD79F-79F1-43CF-BDE9-D792DBB1DF09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {1F7301F1-D4B5-4D8F-BDE6-76EE43E52DF4} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {267C03E7-D5E0-4C07-828F-D49F9BC32E60} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {286B9154-0F22-4583-A744-04E54920B9E0} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [931336 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {2A7BACA8-CE3F-4D8C-8B5D-B6400F379559} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {30D0B6F0-13FC-4E99-B762-77CBF05CAACD} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {32544B46-B2F2-417B-94B1-F82DAA544F8A} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {33A9B3AA-A1E9-4456-83D0-F04FC7C7563D} - System32\Tasks\JKIUpdateTask => C:\Program Files (x86)\JKI\VI Package Manager\support\JKIUpdate.exe [1487072 2021-09-26] (James Kring, Inc. -> JKI)
Task: {37FA345A-5B0E-4E4C-A2A9-1A4A3D8ED741} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {45E5ABBC-ABBD-4C37-B644-D48CF238C9FB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {46A5453F-4A09-4E10-9026-281420A52FF1} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {4A6CDCA2-8ED7-467C-AE04-0B4A613963D0} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {4A7E0069-004D-4D86-8803-0769714F3C2E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143232 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {4E8B8EDF-F199-4AB3-94B5-C94A6ABAAD99} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {51846087-07BA-47C1-9FB5-C6E0FB865BD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
Task: {5259E0B0-399E-46B4-8002-31F3276B1CF4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2aa24875-5489-406b-89bb-b0b55ac71e12 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {5985176E-CD57-41A4-A161-A1922208FDA0} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [65448 2022-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B1D7335-36BB-4530-B40A-73212ADB8897} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\237a8909-d68f-43d2-bcd3-bfcdfbcd33c1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {6B7F7FBE-E72D-4766-A38D-CFB9D0EADF01} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {7D35A77C-149D-4803-BDC8-5D1876A5DFF4} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {854B6C49-2673-4A49-8769-2D348D694D21} - System32\Tasks\CCleanerSkipUAC - lucyf => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8B8A94A6-B958-489C-BBC0-55AA42212792} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fe0796eb-0dc2-4ec2-86e3-46c428a426d7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {8E0146C0-AE08-4366-9A35-A8686097C422} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
Task: {8E144BF4-0182-4037-93F4-7311714034F8} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {991D604A-D538-403D-B3FB-38871A86B78B} - System32\Tasks\HPCustParticipation HP Deskjet 1510 series => C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [5744800 2021-12-01] (HP Inc. -> Hewlett-Packard Development Company, LP)
Task: {A350D8D4-BA61-49DD-A714-CADFC75CEA86} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {AB1FE829-6955-4D5E-BE74-0F9A35C7EC46} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {B0AA141D-01C9-404C-ACD0-BB78E9F13217} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143232 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {B897E9F9-57E9-479D-A8BF-73FB27385EB4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BA32788F-B5D1-408A-B910-40BA894B23CA} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {C988F60D-461D-42B4-A7DA-FFBC1EFF7F61} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFC016FC-31F6-49AF-A57E-67EA793AD15E} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {E0E744E0-8C76-418C-AAE8-DF5E60AC7451} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [44536 2022-10-07] (HP Inc. -> HP Inc.)
Task: {E2B44093-8437-4C16-86F4-F3E1B85D5C46} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {FB8637B3-C35E-42B0-B95A-50388B3D736F} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {FEC4428D-85EA-4518-8F42-FF268939529C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\358a96c2-c3dc-4938-b9f7-cc96b815435b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
ProxyServer: [S-1-5-21-2748333381-4169306442-1436405215-1001] => http=127.0.0.1:8877;https=127.0.0.1:8877
Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26432 2022-01-07] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [29504 2022-01-07] (National Instruments Corporation -> National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{629219a0-1e8b-40ab-b278-2153173b9c6a}: [DhcpNameServer] 158.197.16.31 158.197.8.8
Tcpip\..\Interfaces\{9c41aaf2-9484-4170-8824-af15b10beb46}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-02]
Edge Extension: (Simple Vimeo Downloader) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfdjnlpideofoaikeooebfplgpfofgen [2021-04-03]
Edge Extension: (Avira Safe Shopping) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-07-04]
Edge Extension: (Grammarly: Grammar Checker and Writing App) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2022-09-13]
Edge Extension: (Avira Password Manager) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2022-07-14]
Edge Extension: (Tlačidlo Študovne Google) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fciokoalnclhnonofghacdplgpafdcgl [2020-10-25]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-09-13]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-08-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-08-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default [2022-10-17]
CHR Notifications: Default -> hxxps://appcube.ru; hxxps://meet.google.com; hxxps://slo.legatechnics.com; hxxps://trovo.live; hxxps://www.dormeo.sk; hxxps://www.letour.fr; hxxps://www.sme.sk; hxxps://www.wondershare.net
CHR Extension: (Avira Password Manager) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-10-17]
CHR Extension: (Avira Safe Shopping) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-10-17]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-30]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-09-03]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-30]
CHR Extension: (Grammarly: Grammar Checker and Writing App) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-10-17]
CHR Extension: (Tlačidlo Študovne Google) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2022-08-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Flash Player for Web (update 2021)) - C:\Users\lucyf\OneDrive\Počítač\programy\hnicgckkbamlonjfbkdilljeegpbjabo [2021-10-21]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (All) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AarSvc; C:\WINDOWS\System32\AarSvc.dll [461824 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 AarSvc; C:\WINDOWS\SysWOW64\AarSvc.dll [352256 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 AarSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 AarSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 AJRouter; C:\WINDOWS\System32\AJRouter.dll [26112 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 ALG; C:\WINDOWS\System32\alg.exe [95744 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\u0361383.inf_amd64_cfccffda602342c4\B361368\atiesrxx.exe [537840 2020-11-26] (Advanced Micro Devices, Inc. -> AMD)
S3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [85504 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [217600 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [651776 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [3919360 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [745984 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [1836544 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 autotimesvc; C:\WINDOWS\System32\autotimesvc.dll [114176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [116736 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1384960 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 BcastDVRUserService_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BcastDVRUserService_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [556032 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 BFE; C:\WINDOWS\System32\bfe.dll [892928 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 BITS; C:\WINDOWS\System32\qmgr.dll [1481216 2021-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [500736 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 BluetoothUserService_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 BluetoothUserService_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 BrokerInfrastructure; C:\WINDOWS\System32\psmsrv.dll [247296 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [1023488 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 BTAGService; C:\WINDOWS\SysWOW64\BTAGService.dll [733696 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [391168 2022-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 bthserv; C:\WINDOWS\system32\bthserv.dll [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 camsvc; C:\WINDOWS\system32\CapabilityAccessManager.dll [391168 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [130560 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 CaptureService_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 CaptureService_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 cbdhsvc; C:\WINDOWS\System32\cbdhsvc.dll [1025024 2022-02-14] (Microsoft Windows -> Microsoft Corporation)
R3 cbdhsvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 cbdhsvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 CDPSvc; C:\WINDOWS\System32\CDPSvc.dll [611840 2022-02-14] (Microsoft Windows -> Microsoft Corporation)
S2 CDPUserSvc; C:\WINDOWS\System32\CDPUserSvc.dll [503296 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R2 CDPUserSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 CDPUserSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [196608 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477344 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
S3 ClipSVC; C:\WINDOWS\System32\ClipSVC.dll [1120296 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [21312 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 COMSysApp; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [19256 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 ConsentUxUserSvc; C:\WINDOWS\System32\ConsentUxClient.dll [170496 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 ConsentUxUserSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ConsentUxUserSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\WINDOWS\system32\coremessaging.dll [986464 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\WINDOWS\SysWOW64\coremessaging.dll [630592 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [382696 2021-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_4959b; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [382696 2021-09-18] (Microsoft Windows -> Microsoft Corporation)
R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [104960 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [1324032 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [543232 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\System32\deviceaccess.dll [250000 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\SysWOW64\deviceaccess.dll [195240 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 DeviceAssociationService; C:\WINDOWS\system32\das.dll [489472 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [133120 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [484352 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [342016 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 DevicePickerUserSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevicePickerUserSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [597504 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 DevicesFlowUserSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevicesFlowUserSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 DevQueryBroker; C:\WINDOWS\system32\DevQueryBroker.dll [65024 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [404480 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 Dhcp; C:\WINDOWS\SysWOW64\dhcpcore.dll [332800 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [94208 2022-01-14] (Microsoft Windows -> Microsoft Corporation)
S3 diagsvc; C:\WINDOWS\system32\DiagSvc.dll [205824 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
R2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [3820544 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\WINDOWS\System32\DispBroker.Desktop.dll [379392 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R3 DisplayEnhancementService; C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1192448 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 DmEnrollmentSvc; C:\WINDOWS\system32\Windows.Internal.Management.dll [1015808 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 DmEnrollmentSvc; C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll [712192 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 dmwappushservice; C:\WINDOWS\system32\dmwappushsvc.dll [58880 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [349696 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 DoSvc; C:\WINDOWS\system32\dosvc.dll [1503232 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [323584 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
R2 DPS; C:\WINDOWS\system32\dps.dll [175616 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [288256 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 DsSvc; C:\WINDOWS\System32\DsSvc.dll [162816 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [341504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [112640 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [213392 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [213392 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 EFS; C:\WINDOWS\system32\efssvc.dll [96256 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [44568 2022-05-14] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3143584 2022-05-14] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3143584 2022-05-14] (ESET, spol. s r.o. -> ESET)
S3 embeddedmode; C:\WINDOWS\System32\embeddedmodesvc.dll [159744 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 EntAppSvc; C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll [622080 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1459208 2021-10-21] (ESET, spol. s r.o. -> ESET)
R2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1880064 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
R2 EventSystem; C:\WINDOWS\system32\es.dll [414720 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 EventSystem; C:\WINDOWS\SysWOW64\es.dll [335360 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 Fax; C:\WINDOWS\system32\fxssvc.exe [663552 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [21504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [35840 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 fhsvc; C:\WINDOWS\system32\fhsvc.dll [124416 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 FontCache; C:\WINDOWS\system32\FntCache.dll [1423872 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 FrameServer; C:\WINDOWS\system32\FrameServer.dll [988672 2022-02-14] (Microsoft Windows -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2131432 2022-10-11] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-26] (GOG Sp. z o.o. -> GOG.com)
S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe [1675544 2022-10-10] (Google LLC -> Google LLC)
R2 gpibenumsvc; C:\Program Files (x86)\National Instruments\NI-488.2\Bin\gpibenumsvc.exe [27392 2022-01-15] (National Instruments Corporation -> National Instruments Corporation)
R2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1335296 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 GraphicsPerfSvc; C:\WINDOWS\System32\GraphicsPerfSvc.dll [106496 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
S3 hidserv; C:\WINDOWS\system32\hidserv.dll [36352 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 hidserv; C:\WINDOWS\SysWOW64\hidserv.dll [29696 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228344 2022-10-07] (HP Inc. -> HP Inc.)
S3 HvHost; C:\WINDOWS\System32\hvhostsvc.dll [66360 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 icssvc; C:\WINDOWS\System32\tetheringservice.dll [238080 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 IKEEXT; C:\WINDOWS\System32\ikeext.dll [1054720 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
S3 InstallService; C:\WINDOWS\system32\InstallService.dll [2458624 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 InstallService; C:\WINDOWS\SysWOW64\InstallService.dll [1861632 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [836608 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [66048 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 KeyIso; C:\WINDOWS\system32\keyiso.dll [94208 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 KeyIso; C:\WINDOWS\SysWOW64\keyiso.dll [66560 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [375296 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [302592 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [308224 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_eea2c15eb4860b4b\LenovoUtilityService.exe [241904 2022-08-12] (Lenovo -> Lenovo(beijing) Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe [31072 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
R3 lfsvc; C:\WINDOWS\System32\lfsvc.dll [48640 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 LicenseManager; C:\WINDOWS\system32\LicenseManagerSvc.dll [51200 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1820080 2021-02-06] (Lenovo -> Lenovo(beijing) Limited)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [59648 2021-07-16] (National Instruments Corporation -> National Instruments Corporation)
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [71424 2021-07-16] (National Instruments Corporation -> National Instruments Corporation)
S3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [284672 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [26112 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 LSM; C:\WINDOWS\System32\lsm.dll [849920 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [436736 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S2 MapsBroker; C:\WINDOWS\System32\moshost.dll [94720 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [822688 2022-09-22] (McAfee, LLC -> McAfee, LLC)
S3 McpManagementService; C:\WINDOWS\System32\McpManagementService.dll [258048 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 MessagingService; C:\WINDOWS\System32\MessagingService.dll [91648 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 MessagingService_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 MessagingService_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.47\elevation_service.exe [1695688 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [134768 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [104824 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 mpssvc; C:\WINDOWS\system32\mpssvc.dll [1173504 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 MSDTC; C:\WINDOWS\System32\msdtc.exe [148480 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [160768 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 msiserver; C:\WINDOWS\system32\msiexec.exe /V [69632 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 msiserver; C:\WINDOWS\SysWOW64\msiexec.exe /V [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [95464 2022-01-09] (National Instruments Corporation -> National Instruments Corporation)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [454656 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [171520 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 NcbService; C:\WINDOWS\System32\ncbservice.dll [382464 2021-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [92672 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
S3 Netlogon; C:\WINDOWS\system32\netlogon.dll [884736 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 Netlogon; C:\WINDOWS\SysWOW64\netlogon.dll [687104 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 Netman; C:\WINDOWS\System32\netman.dll [288768 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [878080 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 NetSetupSvc; C:\WINDOWS\System32\NetSetupSvc.dll [329216 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S4 NetTcpPortSharing; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139256 2019-12-07] (Microsoft Corporation -> Microsoft Corporation)
R3 NgcCtnrSvc; C:\WINDOWS\System32\NgcCtnrSvc.dll [771072 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R3 NgcSvc; C:\WINDOWS\system32\ngcsvc.dll [943616 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 NI SystemLink Message Bus; C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe [468992 2022-01-19] () [File not signed]
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [64272 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83208 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [593136 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [335640 2021-10-09] (National Instruments Corporation -> National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [423160 2021-07-16] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [530728 2022-01-15] (National Instruments Corporation -> National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [398112 2022-01-07] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [179504 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxicmsvc; C:\Program Files (x86)\National Instruments\PXI\nipxicms.exe [335120 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [23296 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 NiRioRpcLegacy; C:\WINDOWS\SysWOW64\NiRioRpc.exe [40688 2021-07-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nirioserver; C:\WINDOWS\SysWOW64\nirioserver.exe [527104 2021-07-14] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [879392 2022-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [24832 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [101112 2021-07-08] (National Instruments Corporation -> National Instruments Corporation)
R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [64256 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [750328 2021-07-14] (National Instruments Corporation -> National Instruments Corporation)
R2 nitsuu; C:\WINDOWS\SysWOW64\nipalsm.exe [20736 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [31984 2021-10-11] (National Instruments Corporation -> )
R2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [388608 2021-08-11] (Microsoft Windows -> Microsoft Corporation)
R2 nsi; C:\WINDOWS\system32\nsisvc.dll [34304 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S2 OneSyncSvc; C:\WINDOWS\System32\APHostService.dll [351744 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 OneSyncSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 OneSyncSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OpcEnum; C:\WINDOWS\SysWOW64\Opcenum.exe [172832 2019-03-15] (OPC Foundation, Inc. -> OPC Foundation)
S3 ose64; c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [264928 2002-02-02] (Microsoft Corporation -> Microsoft Corporation)
S3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [352768 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [439808 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
R3 PcaSvc; C:\WINDOWS\System32\pcasvc.dll [878440 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 perceptionsimulation; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [106496 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 PerfHost; C:\WINDOWS\SysWow64\perfhost.exe [21504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 PhoneSvc; C:\WINDOWS\System32\PhoneService.dll [962048 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\WINDOWS\System32\PimIndexMaintenance.dll [196096 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R3 PimIndexMaintenanceSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 PimIndexMaintenanceSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 pla; C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 pla; C:\WINDOWS\SysWOW64\pla.dll [1532928 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [133120 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [28160 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [352768 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [463360 2022-05-13] (Microsoft Windows -> Microsoft Corporation)
R2 Power; C:\WINDOWS\system32\umpo.dll [178176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [3863040 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 PrintWorkflowUserSvc; C:\WINDOWS\System32\PrintWorkflowService.dll [463360 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 PrintWorkflowUserSvc; C:\WINDOWS\SysWOW64\PrintWorkflowService.dll [372224 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 PrintWorkflowUserSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 PrintWorkflowUserSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [487936 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 PushToInstall; C:\WINDOWS\system32\PushToInstall.dll [333824 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVE; C:\WINDOWS\system32\qwave.dll [287232 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVE; C:\WINDOWS\SysWOW64\qwave.dll [228864 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [111616 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 RasMan; C:\WINDOWS\System32\rasmans.dll [1053184 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [551936 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteAccess; C:\WINDOWS\SysWOW64\mprdim.dll [425472 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [172032 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 RetailDemo; C:\WINDOWS\system32\RDXService.dll [734720 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 RmSvc; C:\WINDOWS\System32\RMapi.dll [152576 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [84480 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 RpcLocator; C:\WINDOWS\system32\locator.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [1324032 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_711600cb280d10fd\RtkAudUService64.exe [1195312 2020-10-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [779792 2020-11-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R2 SamSs; C:\WINDOWS\system32\lsass.exe [60544 2022-10-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [265216 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [205312 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [814592 2022-02-14] (Microsoft Windows -> Microsoft Corporation)
S3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [196608 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 SDRSVC; C:\WINDOWS\System32\SDRSVC.dll [154112 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 seclogon; C:\WINDOWS\system32\seclogon.dll [37376 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
R3 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [987568 2022-10-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1223680 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R2 SENS; C:\WINDOWS\System32\sens.dll [77824 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 SensorDataService; C:\WINDOWS\System32\SensorDataService.exe [1265152 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 SensorService; C:\WINDOWS\system32\SensorService.dll [466432 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [181760 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [542208 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 SessionEnv; C:\WINDOWS\SysWOW64\sessenv.dll [444928 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 SgrmBroker; C:\WINDOWS\system32\SgrmBroker.exe [329504 2021-07-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [619008 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 SharedRealitySvc; C:\WINDOWS\System32\SharedRealitySvc.dll [307200 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [283136 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R2 ShellHWDetection; C:\WINDOWS\SysWOW64\shsvcs.dll [209408 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S4 shpamsvc; C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [223232 2022-01-14] (Microsoft Windows -> Microsoft Corporation)
S3 smphost; C:\WINDOWS\System32\smphost.dll [36176 2021-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 smphost; C:\WINDOWS\SysWOW64\smphost.dll [33104 2021-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 SmsRouter; C:\WINDOWS\system32\SmsRouterSvc.dll [643072 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [16896 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [877056 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [844288 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S2 sppsvc; C:\WINDOWS\system32\sppsvc.exe [4630360 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [276480 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [382976 2021-07-17] (Microsoft Windows -> )
R3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [211968 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 StateRepository; C:\WINDOWS\system32\windows.staterepository.dll [5858672 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R3 StateRepository; C:\WINDOWS\SysWOW64\windows.staterepository.dll [5421208 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2813352 2022-03-05] (Valve Corp. -> Valve Corporation)
R2 stisvc; C:\WINDOWS\System32\wiaservc.dll [781312 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
R2 StorSvc; C:\WINDOWS\system32\storsvc.dll [1071616 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 svsvc; C:\WINDOWS\system32\svsvc.dll [14336 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 swprv; C:\WINDOWS\System32\swprv.dll [500224 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R2 SysMain; C:\WINDOWS\system32\sysmain.dll [1005568 2021-09-18] (Microsoft Windows -> Microsoft Corporation)
R2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [251904 2021-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [235008 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [316928 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 TapiSrv; C:\WINDOWS\SysWOW64\tapisrv.dll [251904 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 TermService; C:\WINDOWS\System32\termsrv.dll [1260032 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 Themes; C:\WINDOWS\system32\themeservice.dll [70656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 TieringEngineService; C:\WINDOWS\system32\TieringEngineService.exe [326144 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 TimeBrokerSvc; C:\WINDOWS\System32\TimeBrokerServer.dll [179712 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1522176 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [1234944 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
R2 TrkWks; C:\WINDOWS\System32\trkwks.dll [115200 2022-01-14] (Microsoft Windows -> Microsoft Corporation)
S3 TroubleshootingSvc; C:\WINDOWS\system32\MitigationClient.dll [487936 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [192336 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 tzautoupdate; C:\WINDOWS\system32\tzautoupdate.dll [97792 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [73728 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 UdkUserSvc; C:\WINDOWS\System32\windowsudk.shellcommon.dll [2240000 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 UdkUserSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 UdkUserSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [346448 2022-03-23] (Microsoft Windows -> Microsoft Corporation)
S3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [396800 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 UnistoreSvc; C:\WINDOWS\System32\unistore.dll [1191936 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 UnistoreSvc; C:\WINDOWS\SysWOW64\unistore.dll [962048 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 UnistoreSvc_4959b; C:\WINDOWS\System32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 UnistoreSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 upnphost; C:\WINDOWS\System32\upnphost.dll [471552 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 upnphost; C:\WINDOWS\SysWOW64\upnphost.dll [327680 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 UserDataSvc; C:\WINDOWS\System32\userdataservice.dll [1554944 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R3 UserDataSvc_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 UserDataSvc_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UserManager; C:\WINDOWS\System32\usermgr.dll [1483776 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 UsoSvc; C:\WINDOWS\system32\usosvc.dll [570368 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 VacSvc; C:\WINDOWS\System32\vac.dll [382720 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 VaultSvc; C:\Windows\System32\vaultsvc.dll [370688 2022-04-15] (Microsoft Windows -> Microsoft Corporation)
S3 vds; C:\WINDOWS\System32\vds.exe [723968 2022-05-13] (Microsoft Windows -> Microsoft Corporation)
S3 vmicguestinterface; C:\WINDOWS\System32\icsvc.dll [293176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\icsvc.dll [293176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\icsvc.dll [293176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicrdv; C:\WINDOWS\System32\icsvcext.dll [304640 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\icsvc.dll [293176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\icsvc.dll [293176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicvmsession; C:\WINDOWS\System32\icsvc.dll [293176 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 vmicvss; C:\WINDOWS\System32\icsvcext.dll [304640 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
R3 VSS; C:\WINDOWS\system32\vssvc.exe [1495040 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 W32Time; C:\WINDOWS\system32\w32time.dll [526336 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [427520 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 WalletService; C:\WINDOWS\system32\WalletService.dll [442368 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 WarpJITSvc; C:\WINDOWS\System32\Windows.WARP.JITService.dll [65536 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wbengine; C:\WINDOWS\system32\wbengine.exe [1585152 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [880128 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [995328 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [483840 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [105472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdiServiceHost; C:\WINDOWS\SysWOW64\wdi.dll [88064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [105472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdiSystemHost; C:\WINDOWS\SysWOW64\wdi.dll [88064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WebClient; C:\WINDOWS\System32\webclnt.dll [236544 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 WebClient; C:\WINDOWS\SysWOW64\webclnt.dll [194048 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [205312 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [28672 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [128000 2022-05-13] (Microsoft Windows -> Microsoft Corporation)
S3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [246272 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [677888 2021-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [94208 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\WINDOWS\system32\winhttp.dll [1096576 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\WINDOWS\SysWOW64\winhttp.dll [831032 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 Winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [243712 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2818560 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 WinRM; C:\WINDOWS\SysWOW64\WsmSvc.dll [2342400 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 wisvc; C:\WINDOWS\system32\flightsettings.dll [940536 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [754064 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 WlanSvc; C:\WINDOWS\System32\wlansvc.dll [2655744 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [2244608 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1253888 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 WManSvc; C:\WINDOWS\system32\Windows.Management.Service.dll [854528 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [209920 2021-11-12] (Microsoft Windows -> Microsoft Corporation)
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [956416 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [2233176 2022-04-15] (Microsoft Windows -> Microsoft Corporation)
S3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [1866752 2022-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [101888 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 WpnService; C:\WINDOWS\system32\WpnService.dll [245248 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S2 WpnUserService; C:\WINDOWS\System32\WpnUserService.dll [85504 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
R2 WpnUserService_4959b; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WpnUserService_4959b; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 wscsvc; C:\WINDOWS\System32\wscsvc.dll [332176 2022-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [935424 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
R2 WSearch; C:\WINDOWS\SysWOW64\SearchIndexer.exe [711680 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuaueng.dll [3406848 2022-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [1517056 2022-04-15] (Microsoft Windows -> Microsoft Corporation)
S3 XblAuthManager; C:\WINDOWS\System32\XblAuthManager.dll [1049088 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 XblGameSave; C:\WINDOWS\System32\XblGameSave.dll [1291264 2022-06-15] (Microsoft Windows -> Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [72704 2021-07-17] (Microsoft Windows -> Microsoft Corporation)
S3 XboxNetApiSvc; C:\WINDOWS\system32\XboxNetApiSvc.dll [1295360 2021-07-17] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [184936 2022-05-14] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [123512 2022-05-14] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [203040 2022-05-14] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70776 2022-05-14] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [111624 2022-05-14] (ESET, spol. s r.o. -> ESET)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [134776 2020-06-23] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 libusb0; C:\WINDOWS\System32\drivers\libusb0.sys [52832 2012-01-17] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [35184 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [21840 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [21840 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [21832 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [21816 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [50024 2021-10-03] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [21864 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [21824 2022-01-09] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [21848 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [21864 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [31312 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [21824 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [31296 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [22896 2022-01-09] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [21872 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [788808 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [21856 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [147848 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [41856 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [31048 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [21832 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [21872 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [21872 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [21816 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [21784 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [21800 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [21832 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nistreamk; C:\WINDOWS\System32\drivers\nistreamkl.sys [35656 2021-07-12] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [21816 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niSynck; C:\WINDOWS\System32\drivers\niSynckl.sys [21824 2021-10-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [21840 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nitsuk; C:\WINDOWS\System32\drivers\nitsukl.sys [21832 2021-10-10] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [21848 2022-01-15] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [1049936 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 TDKLIB; c:\windows\TempInst\TdkLib64.sys [37288 2021-07-23] (Phoenix Technologies Ltd. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-08] (Microsoft Windows -> Microsoft Corporation)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-17 20:55 - 2022-10-17 20:56 - 000000000 ____D C:\FRST
2022-10-17 19:47 - 2022-10-17 19:47 - 000000233 _____ C:\WINDOWS\pxisys.ini
2022-10-17 19:47 - 2022-10-17 19:47 - 000000224 _____ C:\WINDOWS\pxiesys.ini
2022-10-15 20:25 - 2022-10-15 20:25 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-15 20:25 - 2022-10-15 20:25 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-15 20:20 - 2022-10-15 20:20 - 000000000 ___HD C:\$WinREAgent
2022-10-15 20:12 - 2022-10-15 20:12 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-04 10:07 - 2022-10-04 10:07 - 003103315 _____ C:\Users\lucyf\Downloads\konzultacia.pdf
2022-10-04 09:16 - 2022-10-04 09:16 - 000000000 ____D C:\Users\lucyf\Downloads\latex-template-UEAE
2022-10-04 09:15 - 2022-10-04 09:15 - 001070384 _____ C:\Users\lucyf\Downloads\latex-template-UEAE.zip
2022-10-03 10:21 - 2022-10-03 10:21 - 000917475 _____ C:\Users\lucyf\Downloads\Auto vrazilo v Bratislave do zastávky, zomreli štyria ľudia - SME.pdf
2022-10-03 09:05 - 2022-10-03 09:05 - 000008161 _____ C:\Users\lucyf\AppData\Local\recently-used.xbel
2022-10-01 12:00 - 2022-10-01 12:00 - 000160933 _____ C:\Users\lucyf\Downloads\Program OS_Technologie výroby děr_duben 2022_SK.pdf
2022-09-29 09:48 - 2022-09-29 09:48 - 000025720 _____ C:\Users\lucyf\Downloads\Alanna prianie_PDF.pdf
2022-09-28 07:52 - 2022-09-28 07:52 - 000152690 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_maj.pdf
2022-09-28 07:52 - 2022-09-28 07:52 - 000055401 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_april.pdf
2022-09-28 07:52 - 2022-09-28 07:52 - 000051893 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_marec.pdf
2022-09-28 07:51 - 2022-09-28 07:51 - 000153756 _____ C:\Users\lucyf\Downloads\SK0809000000005057132592_6 (1).pdf
2022-09-28 07:51 - 2022-09-28 07:51 - 000153756 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_jun.pdf
2022-09-28 07:50 - 2022-09-28 07:50 - 000086572 _____ C:\Users\lucyf\Downloads\SK0809000000005057132592_8 (1).pdf
2022-09-28 07:50 - 2022-09-28 07:50 - 000086005 _____ C:\Users\lucyf\Downloads\SK0809000000005057132592_7 (1).pdf
2022-09-28 07:50 - 2022-09-28 07:50 - 000086005 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_jul.pdf
2022-09-28 07:49 - 2022-09-28 07:49 - 000086572 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_august.pdf
2022-09-25 16:32 - 2022-09-25 16:32 - 000000190 _____ C:\Users\lucyf\Downloads\vydavky.txt
2022-09-23 18:14 - 2022-09-23 18:14 - 000221130 _____ C:\Users\lucyf\Downloads\oznamy-25.-tyz..pdf
2022-09-22 08:03 - 2022-09-22 08:03 - 000337811 _____ C:\Users\lucyf\Downloads\2022 MMM Conference_20SEP2022.pdf
2022-09-22 07:39 - 2022-09-22 07:39 - 000000000 ____D C:\ProgramData\Piriform
2022-09-21 09:12 - 2022-10-17 19:33 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-09-21 09:12 - 2022-10-17 19:33 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-09-18 17:15 - 2022-09-18 17:15 - 000343221 _____ C:\Users\lucyf\Downloads\Prepravný štítok-fcc3522f-514b-4e8e-a9e8-38f6c89d5b70.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-17 20:43 - 2020-09-10 10:26 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-17 20:26 - 2022-08-03 08:18 - 000000000 ____D C:\Users\lucyf\.conda
2022-10-17 20:26 - 2021-07-17 10:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-17 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-17 20:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-17 20:16 - 2020-09-24 00:27 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-17 20:16 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-17 20:07 - 2022-08-03 08:21 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\jupyter
2022-10-17 19:36 - 2021-07-17 15:25 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-17 19:36 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-17 19:35 - 2021-07-17 15:22 - 000000000 ____D C:\Users\lucyf\AppData\Local\Deployment
2022-10-17 19:35 - 2020-11-05 18:59 - 000000000 ____D C:\Users\lucyf\AppData\Local\Spotify
2022-10-17 19:34 - 2020-11-05 18:57 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\Spotify
2022-10-17 19:33 - 2021-07-12 12:45 - 000000000 ____D C:\Users\lucyf\AppData\Local\WebEx
2022-10-17 19:33 - 2020-09-10 10:40 - 000000000 ____D C:\Program Files\CCleaner
2022-10-17 19:31 - 2021-07-17 10:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-17 19:31 - 2021-07-17 10:19 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-17 19:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-10-17 14:48 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-10-17 14:47 - 2020-09-11 10:10 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\texstudio
2022-10-17 06:00 - 2020-09-10 10:03 - 000000000 ____D C:\Users\lucyf\AppData\Local\D3DSCache
2022-10-17 05:59 - 2021-07-17 10:24 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-16 15:56 - 2020-12-24 23:23 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\vlc
2022-10-15 22:38 - 2021-07-17 10:19 - 000444432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-15 20:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-15 20:27 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-15 20:27 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-15 20:25 - 2021-07-17 10:23 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-15 20:20 - 2020-09-20 20:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-15 20:20 - 2020-09-10 10:03 - 000000000 ____D C:\Users\lucyf\AppData\Local\Packages
2022-10-15 20:18 - 2020-09-20 20:20 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-15 20:17 - 2020-09-10 10:26 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-15 20:12 - 2021-07-17 10:24 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-15 20:11 - 2020-05-14 01:43 - 000000000 ____D C:\Program Files\Microsoft Office
2022-10-15 20:10 - 2021-09-21 07:30 - 000002068 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-10-15 20:10 - 2021-07-17 10:24 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-15 20:10 - 2021-07-17 10:24 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-15 20:09 - 2020-09-14 19:20 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2022-10-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-10-07 18:03 - 2022-07-10 07:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-10-07 18:03 - 2022-07-10 07:58 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-10-03 08:43 - 2020-09-22 10:05 - 000000000 ____D C:\Users\lucyf\.dbus-keyrings
2022-09-26 15:24 - 2021-07-17 10:00 - 000000000 ____D C:\Users\lucyf
2022-09-22 07:37 - 2020-09-10 10:54 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-17 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF

==================== Files in the root of some directories ========

2020-11-24 21:10 - 2020-11-24 21:10 - 000000068 _____ () C:\Users\lucyf\AppData\Roaming\changzhi_leidian.data
2020-11-24 21:10 - 2020-11-24 21:10 - 000000068 _____ () C:\Users\lucyf\AppData\Roaming\changzhi_mplayer.data
2022-10-03 09:05 - 2022-10-03 09:05 - 000008161 _____ () C:\Users\lucyf\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition.zip

(14.76 KiB) Staženo 30 x

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[luc_ia]

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-18-2022
# Duration: 00:00:02
# OS: Windows 10 (Build 19044.2130)
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Wow6432Node\Conduit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2576 octets] - [18/10/2022 07:51:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[luc_ia]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2022
Ran by lucyf (administrator) on LAPTOP-LC958NDL (LENOVO 81YQ) (18-10-2022 13:26:32)
Running from C:\Users\lucyf\OneDrive\Počítač\programy
Loaded Profiles: lucyf & niroco & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Platform: Microsoft Windows 10 Home Version 21H2 19044.2130 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Users\lucyf\anaconda3\Scripts\jupyter-notebook.exe ->) (Python Software Foundation) [File not signed] C:\Users\lucyf\anaconda3\python.exe <4>
(cmd.exe ->) () [File not signed] C:\Users\lucyf\anaconda3\Scripts\jupyter-notebook.exe
(cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(explorer.exe ->) () [File not signed] C:\Users\lucyf\OneDrive\Počítač\programy\ij153-win-java8\ImageJ\ImageJ.exe
(explorer.exe ->) (Eclipse.org Foundation, Inc. -> ) C:\Users\lucyf\eclipse\java-2021-06\eclipse\eclipse.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nipalsm.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_711600cb280d10fd\RtkAudUService64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\POWERPNT.EXE
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.117.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_711600cb280d10fd\RtkAudUService64.exe [1195312 2020-10-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167552 2022-05-14] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [NI Device Monitor] => C:\Program Files (x86)\National Instruments\NI Device Monitor\DeviceMonitor.exe [347344 2021-07-07] (National Instruments Corporation -> National Instruments)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\lucyf\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-03-29] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-05] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13668840 2022-10-11] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\lucyf\AppData\Local\WebEx\WebexHost.exe [7992008 2022-09-29] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [Spotify] => C:\Users\lucyf\AppData\Roaming\Spotify\Spotify.exe [20073848 2022-10-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [342816 2021-06-30] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe [52793112 2022-10-15] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp103: C:\Windows\System32\spool\prtprocs\x64\hpcpp103.dll [323584 2010-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP c111 Status Monitor: C:\WINDOWS\system32\hpinkstsc111LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk [2022-04-20]
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2022-04-20]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\VIPM Service.lnk [2022-04-20]
ShortcutTarget: VIPM Service.lnk -> C:\Program Files (x86)\JKI\VI Package Manager\support\VIPM Service.exe (James Kring, Inc. -> JKI)
Startup: C:\Users\lucyf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 1510 series.lnk [2022-09-07]
ShortcutAndArgument: Monitor Ink Alerts - HP Deskjet 1510 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN37O17K8B05XJ;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\lucyf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odmenovac.appref-ms [2020-09-11] () [File not signed]
Startup: C:\Users\lucyf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2021-02-01]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {033D0AD7-1DCC-429E-9219-D3D13BF37E1C} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [44536 2022-10-07] (HP Inc. -> HP Inc.)
Task: {06FEF118-1E47-4CD0-8CA1-3F23A5249FEF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2748333381-4169306442-1436405215-500 => C:\Users\lucyf\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {08821179-3222-4A66-8755-977E82BAD870} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {0BFFE240-5ED4-40E2-8F34-F28F9C43E506} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2491da1b-b037-4c3e-b2bb-0aa73617e4dd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {0DAAF602-938D-471D-8AE1-51304086FF51} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {11BFD79F-79F1-43CF-BDE9-D792DBB1DF09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {1F7301F1-D4B5-4D8F-BDE6-76EE43E52DF4} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {267C03E7-D5E0-4C07-828F-D49F9BC32E60} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {2A7BACA8-CE3F-4D8C-8B5D-B6400F379559} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {30D0B6F0-13FC-4E99-B762-77CBF05CAACD} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {32544B46-B2F2-417B-94B1-F82DAA544F8A} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {33A9B3AA-A1E9-4456-83D0-F04FC7C7563D} - System32\Tasks\JKIUpdateTask => C:\Program Files (x86)\JKI\VI Package Manager\support\JKIUpdate.exe [1487072 2021-09-26] (James Kring, Inc. -> JKI)
Task: {37FA345A-5B0E-4E4C-A2A9-1A4A3D8ED741} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {45E5ABBC-ABBD-4C37-B644-D48CF238C9FB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {46A5453F-4A09-4E10-9026-281420A52FF1} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {4A6CDCA2-8ED7-467C-AE04-0B4A613963D0} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {4A7E0069-004D-4D86-8803-0769714F3C2E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143232 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {4E8B8EDF-F199-4AB3-94B5-C94A6ABAAD99} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {51846087-07BA-47C1-9FB5-C6E0FB865BD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
Task: {5259E0B0-399E-46B4-8002-31F3276B1CF4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2aa24875-5489-406b-89bb-b0b55ac71e12 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {5985176E-CD57-41A4-A161-A1922208FDA0} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [65448 2022-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B1D7335-36BB-4530-B40A-73212ADB8897} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\237a8909-d68f-43d2-bcd3-bfcdfbcd33c1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {6B7F7FBE-E72D-4766-A38D-CFB9D0EADF01} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {733538BA-0479-49F5-B105-913E73F51049} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [931336 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D35A77C-149D-4803-BDC8-5D1876A5DFF4} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {854B6C49-2673-4A49-8769-2D348D694D21} - System32\Tasks\CCleanerSkipUAC - lucyf => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8B8A94A6-B958-489C-BBC0-55AA42212792} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fe0796eb-0dc2-4ec2-86e3-46c428a426d7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {8E0146C0-AE08-4366-9A35-A8686097C422} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
Task: {8E144BF4-0182-4037-93F4-7311714034F8} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {991D604A-D538-403D-B3FB-38871A86B78B} - System32\Tasks\HPCustParticipation HP Deskjet 1510 series => C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [5744800 2021-12-01] (HP Inc. -> Hewlett-Packard Development Company, LP)
Task: {A350D8D4-BA61-49DD-A714-CADFC75CEA86} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {AB1FE829-6955-4D5E-BE74-0F9A35C7EC46} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {B0AA141D-01C9-404C-ACD0-BB78E9F13217} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143232 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {B897E9F9-57E9-479D-A8BF-73FB27385EB4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BA32788F-B5D1-408A-B910-40BA894B23CA} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {BA7F05CD-9A8D-4084-8E20-4E83B1C3B0E3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "58f0b681-79a4-424b-8648-42734df0686e" --version "6.04.10044" --silent
Task: {C988F60D-461D-42B4-A7DA-FFBC1EFF7F61} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFC016FC-31F6-49AF-A57E-67EA793AD15E} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {E0E744E0-8C76-418C-AAE8-DF5E60AC7451} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [44536 2022-10-07] (HP Inc. -> HP Inc.)
Task: {E2B44093-8437-4C16-86F4-F3E1B85D5C46} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {FB8637B3-C35E-42B0-B95A-50388B3D736F} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {FEC4428D-85EA-4518-8F42-FF268939529C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\358a96c2-c3dc-4938-b9f7-cc96b815435b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
ProxyServer: [S-1-5-21-2748333381-4169306442-1436405215-1001] => http=127.0.0.1:8877;https=127.0.0.1:8877
Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26432 2022-01-07] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [29504 2022-01-07] (National Instruments Corporation -> National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 158.197.16.31 158.197.8.8
Tcpip\..\Interfaces\{629219a0-1e8b-40ab-b278-2153173b9c6a}: [DhcpNameServer] 158.197.16.31 158.197.8.8
Tcpip\..\Interfaces\{9c41aaf2-9484-4170-8824-af15b10beb46}: [DhcpNameServer] 158.197.16.31 158.197.8.8

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-02]
Edge Extension: (Simple Vimeo Downloader) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfdjnlpideofoaikeooebfplgpfofgen [2021-04-03]
Edge Extension: (Avira Safe Shopping) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-07-04]
Edge Extension: (Grammarly: Grammar Checker and Writing App) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2022-09-13]
Edge Extension: (Avira Password Manager) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2022-07-14]
Edge Extension: (Tlačidlo Študovne Google) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fciokoalnclhnonofghacdplgpafdcgl [2020-10-25]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\lucyf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-09-13]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-08-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-08-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default [2022-10-18]
CHR Notifications: Default -> hxxps://appcube.ru; hxxps://meet.google.com; hxxps://slo.legatechnics.com; hxxps://trovo.live; hxxps://www.dormeo.sk; hxxps://www.letour.fr; hxxps://www.sme.sk; hxxps://www.wondershare.net
CHR Extension: (Avira Password Manager) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-10-17]
CHR Extension: (Avira Safe Shopping) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-10-17]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-30]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-09-03]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-30]
CHR Extension: (Grammarly: Grammar Checker and Writing App) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-10-17]
CHR Extension: (Tlačidlo Študovne Google) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2022-08-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lucyf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Flash Player for Web (update 2021)) - C:\Users\lucyf\OneDrive\Počítač\programy\hnicgckkbamlonjfbkdilljeegpbjabo [2021-10-21]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477344 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [44568 2022-05-14] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3143584 2022-05-14] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3143584 2022-05-14] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1459208 2021-10-21] (ESET, spol. s r.o. -> ESET)
S2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2131432 2022-10-11] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-26] (GOG Sp. z o.o. -> GOG.com)
R2 gpibenumsvc; C:\Program Files (x86)\National Instruments\NI-488.2\Bin\gpibenumsvc.exe [27392 2022-01-15] (National Instruments Corporation -> National Instruments Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228344 2022-10-07] (HP Inc. -> HP Inc.)
S2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
S2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_eea2c15eb4860b4b\LenovoUtilityService.exe [241904 2022-08-12] (Lenovo -> Lenovo(beijing) Limited)
S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe [31072 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
S2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1820080 2021-02-06] (Lenovo -> Lenovo(beijing) Limited)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [59648 2021-07-16] (National Instruments Corporation -> National Instruments Corporation)
S2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [71424 2021-07-16] (National Instruments Corporation -> National Instruments Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [822688 2022-09-22] (McAfee, LLC -> McAfee, LLC)
S2 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [95464 2022-01-09] (National Instruments Corporation -> National Instruments Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
S2 NI SystemLink Message Bus; C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe [468992 2022-01-19] () [File not signed]
S2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [64272 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83208 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [593136 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [335640 2021-10-09] (National Instruments Corporation -> National Instruments Corporation)
S2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [423160 2021-07-16] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [530728 2022-01-15] (National Instruments Corporation -> National Instruments Corporation)
S2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [398112 2022-01-07] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [179504 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxicmsvc; C:\Program Files (x86)\National Instruments\PXI\nipxicms.exe [335120 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [23296 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 NiRioRpcLegacy; C:\WINDOWS\SysWOW64\NiRioRpc.exe [40688 2021-07-15] (National Instruments Corporation -> National Instruments Corporation)
S3 nirioserver; C:\WINDOWS\SysWOW64\nirioserver.exe [527104 2021-07-14] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [879392 2022-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [24832 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [101112 2021-07-08] (National Instruments Corporation -> National Instruments Corporation)
S2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [64256 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
S2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [750328 2021-07-14] (National Instruments Corporation -> National Instruments Corporation)
R2 nitsuu; C:\WINDOWS\SysWOW64\nipalsm.exe [20736 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [31984 2021-10-11] (National Instruments Corporation -> )
S2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [184936 2022-05-14] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [123512 2022-05-14] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [203040 2022-05-14] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70776 2022-05-14] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [111624 2022-05-14] (ESET, spol. s r.o. -> ESET)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [134776 2020-06-23] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 libusb0; C:\WINDOWS\System32\drivers\libusb0.sys [52832 2012-01-17] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [35184 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [21840 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [21840 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [21832 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [21816 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [50024 2021-10-03] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [21864 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [21824 2022-01-09] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [21848 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [21864 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [31312 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [21824 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [31296 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [22896 2022-01-09] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [21872 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [788808 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [21856 2022-01-08] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [147848 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [41856 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [31048 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [21832 2022-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [21808 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [21872 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [21872 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [21816 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [21784 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [21800 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [21832 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nistreamk; C:\WINDOWS\System32\drivers\nistreamkl.sys [35656 2021-07-12] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [21816 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niSynck; C:\WINDOWS\System32\drivers\niSynckl.sys [21824 2021-10-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [21840 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nitsuk; C:\WINDOWS\System32\drivers\nitsukl.sys [21832 2021-10-10] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [21848 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [21848 2022-01-15] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [21824 2021-10-13] (National Instruments Corporation -> National Instruments Corporation)
S3 rtump64x64; C:\WINDOWS\System32\drivers\rtump64x64.sys [1049936 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 TDKLIB; c:\windows\TempInst\TdkLib64.sys [37288 2021-07-23] (Phoenix Technologies Ltd. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-08] (Microsoft Windows -> Microsoft Corporation)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-18 07:51 - 2022-10-18 07:53 - 000000000 ____D C:\AdwCleaner
2022-10-18 07:26 - 2022-10-18 07:26 - 000000232 _____ C:\WINDOWS\pxisys.ini
2022-10-18 07:26 - 2022-10-18 07:26 - 000000223 _____ C:\WINDOWS\pxiesys.ini
2022-10-17 21:13 - 2022-10-17 21:13 - 000015114 _____ C:\Users\lucyf\Downloads\Addition (1).zip
2022-10-17 20:55 - 2022-10-18 13:26 - 000000000 ____D C:\FRST
2022-10-15 20:25 - 2022-10-15 20:25 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-15 20:25 - 2022-10-15 20:25 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-10-15 20:25 - 2022-10-15 20:25 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-15 20:20 - 2022-10-15 20:20 - 000000000 ___HD C:\$WinREAgent
2022-10-15 20:12 - 2022-10-15 20:12 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-04 10:07 - 2022-10-04 10:07 - 003103315 _____ C:\Users\lucyf\Downloads\konzultacia.pdf
2022-10-04 09:16 - 2022-10-04 09:16 - 000000000 ____D C:\Users\lucyf\Downloads\latex-template-UEAE
2022-10-04 09:15 - 2022-10-04 09:15 - 001070384 _____ C:\Users\lucyf\Downloads\latex-template-UEAE.zip
2022-10-03 10:21 - 2022-10-03 10:21 - 000917475 _____ C:\Users\lucyf\Downloads\Auto vrazilo v Bratislave do zastávky, zomreli štyria ľudia - SME.pdf
2022-10-03 09:05 - 2022-10-03 09:05 - 000008161 _____ C:\Users\lucyf\AppData\Local\recently-used.xbel
2022-10-01 12:00 - 2022-10-01 12:00 - 000160933 _____ C:\Users\lucyf\Downloads\Program OS_Technologie výroby děr_duben 2022_SK.pdf
2022-09-29 09:48 - 2022-09-29 09:48 - 000025720 _____ C:\Users\lucyf\Downloads\Alanna prianie_PDF.pdf
2022-09-28 07:52 - 2022-09-28 07:52 - 000152690 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_maj.pdf
2022-09-28 07:52 - 2022-09-28 07:52 - 000055401 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_april.pdf
2022-09-28 07:52 - 2022-09-28 07:52 - 000051893 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_marec.pdf
2022-09-28 07:51 - 2022-09-28 07:51 - 000153756 _____ C:\Users\lucyf\Downloads\SK0809000000005057132592_6 (1).pdf
2022-09-28 07:51 - 2022-09-28 07:51 - 000153756 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_jun.pdf
2022-09-28 07:50 - 2022-09-28 07:50 - 000086572 _____ C:\Users\lucyf\Downloads\SK0809000000005057132592_8 (1).pdf
2022-09-28 07:50 - 2022-09-28 07:50 - 000086005 _____ C:\Users\lucyf\Downloads\SK0809000000005057132592_7 (1).pdf
2022-09-28 07:50 - 2022-09-28 07:50 - 000086005 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_jul.pdf
2022-09-28 07:49 - 2022-09-28 07:49 - 000086572 _____ C:\Users\lucyf\Downloads\Fecova_slsp vypis_august.pdf
2022-09-25 16:32 - 2022-09-25 16:32 - 000000190 _____ C:\Users\lucyf\Downloads\vydavky.txt
2022-09-23 18:14 - 2022-09-23 18:14 - 000221130 _____ C:\Users\lucyf\Downloads\oznamy-25.-tyz..pdf
2022-09-22 08:03 - 2022-09-22 08:03 - 000337811 _____ C:\Users\lucyf\Downloads\2022 MMM Conference_20SEP2022.pdf
2022-09-22 07:39 - 2022-09-22 07:39 - 000000000 ____D C:\ProgramData\Piriform
2022-09-21 09:12 - 2022-10-18 09:12 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-09-21 09:12 - 2022-10-18 09:12 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-09-18 17:15 - 2022-09-18 17:15 - 000343221 _____ C:\Users\lucyf\Downloads\Prepravný štítok-fcc3522f-514b-4e8e-a9e8-38f6c89d5b70.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-18 13:22 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-18 12:43 - 2020-09-10 10:26 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-18 12:01 - 2021-08-20 13:47 - 000000000 ____D C:\Users\lucyf\.p2
2022-10-18 12:00 - 2020-09-11 10:10 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\texstudio
2022-10-18 11:53 - 2020-09-10 10:03 - 000000000 ____D C:\Users\lucyf\AppData\Local\D3DSCache
2022-10-18 11:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-18 10:48 - 2021-07-17 10:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-18 09:34 - 2022-08-03 08:18 - 000000000 ____D C:\Users\lucyf\.conda
2022-10-18 09:29 - 2022-08-03 08:21 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\jupyter
2022-10-18 09:12 - 2020-09-10 10:40 - 000000000 ____D C:\Program Files\CCleaner
2022-10-18 07:38 - 2021-07-12 12:45 - 000000000 ____D C:\Users\lucyf\AppData\Local\WebEx
2022-10-18 07:33 - 2021-07-17 15:25 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-18 07:33 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-18 07:30 - 2020-11-05 18:59 - 000000000 ____D C:\Users\lucyf\AppData\Local\Spotify
2022-10-18 07:28 - 2021-07-17 15:22 - 000000000 ____D C:\Users\lucyf\AppData\Local\Deployment
2022-10-18 07:28 - 2020-11-05 18:57 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\Spotify
2022-10-18 07:26 - 2021-07-17 10:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-18 07:26 - 2021-07-17 10:19 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-18 07:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-10-17 21:16 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-10-17 20:16 - 2020-09-24 00:27 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-17 20:16 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-17 05:59 - 2021-07-17 10:24 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-16 15:56 - 2020-12-24 23:23 - 000000000 ____D C:\Users\lucyf\AppData\Roaming\vlc
2022-10-15 22:38 - 2021-07-17 10:19 - 000444432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-15 20:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-15 20:27 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-15 20:27 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-15 20:25 - 2021-07-17 10:23 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-15 20:20 - 2020-09-20 20:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-15 20:20 - 2020-09-10 10:03 - 000000000 ____D C:\Users\lucyf\AppData\Local\Packages
2022-10-15 20:18 - 2020-09-20 20:20 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-15 20:17 - 2020-09-10 10:26 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-15 20:12 - 2021-07-17 10:24 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-15 20:11 - 2020-05-14 01:43 - 000000000 ____D C:\Program Files\Microsoft Office
2022-10-15 20:10 - 2021-09-21 07:30 - 000002068 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-10-15 20:10 - 2021-07-17 10:24 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-15 20:10 - 2021-07-17 10:24 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-15 20:09 - 2020-09-14 19:20 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2022-10-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-10-07 18:03 - 2022-07-10 07:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-10-07 18:03 - 2022-07-10 07:58 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-10-03 08:43 - 2020-09-22 10:05 - 000000000 ____D C:\Users\lucyf\.dbus-keyrings
2022-09-26 15:24 - 2021-07-17 10:00 - 000000000 ____D C:\Users\lucyf
2022-09-22 07:37 - 2020-09-10 10:54 - 000000000 ____D C:\Program Files (x86)\Steam

==================== Files in the root of some directories ========

2020-11-24 21:10 - 2020-11-24 21:10 - 000000068 _____ () C:\Users\lucyf\AppData\Roaming\changzhi_leidian.data
2020-11-24 21:10 - 2020-11-24 21:10 - 000000068 _____ () C:\Users\lucyf\AppData\Roaming\changzhi_mplayer.data
2022-10-03 09:05 - 2022-10-03 09:05 - 000008161 _____ () C:\Users\lucyf\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition.zip

(13.77 KiB) Staženo 30 x

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {06FEF118-1E47-4CD0-8CA1-3F23A5249FEF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2748333381-4169306442-1436405215-500 => C:\Users\lucyf\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {51846087-07BA-47C1-9FB5-C6E0FB865BD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
Task: {7D35A77C-149D-4803-BDC8-5D1876A5DFF4} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {8E0146C0-AE08-4366-9A35-A8686097C422} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-2748333381-4169306442-1436405215-1001 -> DefaultScope {02EDB79D-6504-4D45-B185-5B1A163FD50F} URL =
SearchScopes: HKU\S-1-5-21-2748333381-4169306442-1436405215-1001 -> {02EDB79D-6504-4D45-B185-5B1A163FD50F} URL =

EmptyTemp:
End

Uložte do C:\Users\lucyf\OneDrive\Počítač\programy jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[luc_ia]

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-10-2022
Ran by lucyf (19-10-2022 07:32:01) Run:1
Running from C:\Users\lucyf\OneDrive\Počítač\programy
Loaded Profiles: lucyf & niroco & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {06FEF118-1E47-4CD0-8CA1-3F23A5249FEF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2748333381-4169306442-1436405215-500 => C:\Users\lucyf\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {51846087-07BA-47C1-9FB5-C6E0FB865BD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
Task: {7D35A77C-149D-4803-BDC8-5D1876A5DFF4} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {8E0146C0-AE08-4366-9A35-A8686097C422} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-10] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-2748333381-4169306442-1436405215-1001 -> DefaultScope {02EDB79D-6504-4D45-B185-5B1A163FD50F} URL =
SearchScopes: HKU\S-1-5-21-2748333381-4169306442-1436405215-1001 -> {02EDB79D-6504-4D45-B185-5B1A163FD50F} URL =

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{06FEF118-1E47-4CD0-8CA1-3F23A5249FEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{06FEF118-1E47-4CD0-8CA1-3F23A5249FEF}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2748333381-4169306442-1436405215-500 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-2748333381-4169306442-1436405215-500" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{51846087-07BA-47C1-9FB5-C6E0FB865BD5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{51846087-07BA-47C1-9FB5-C6E0FB865BD5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7D35A77C-149D-4803-BDC8-5D1876A5DFF4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D35A77C-149D-4803-BDC8-5D1876A5DFF4}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8E0146C0-AE08-4366-9A35-A8686097C422}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8E0146C0-AE08-4366-9A35-A8686097C422}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
"HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
"HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2748333381-4169306442-1436405215-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{02EDB79D-6504-4D45-B185-5B1A163FD50F} => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 400242275 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 177745264 B
Windows/system/drivers => 8357267 B
Edge => 100378 B
Chrome => 2669895820 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 229356 B
NetworkService => 229356 B
lucyf => 1109779496 B
niroco => 1109779496 B
lkClassAds => 1109779496 B
NINetworkDiscovery => 1109779496 B
niLXIDiscovery => 1109779496 B

RecycleBin => 13352602018 B
EmptyTemp: => 20.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 07:33:22 ====

[Rudy]

Smazáno. Nastala změna k lepšímu?

[luc_ia]

Ano, dakujem! Notebook uz reaguje rychlejsie, aj ked zapnutie trva stale dlhsie.

[Rudy]

Pomocí příkazu msconfig z přík. řádku otevřte jofigurační okno systému a na záložkách "Skužby" a "Po spuštění" odstraňte zatržítka u všech ne-microsoftích položek ( s vyjímkou bezpečnostního softwaru a ovladačů). Nastavení uložte a restartujte.

[luc_ia]

Stale trva zapnutie cez 2 minuty, ale je to uz rychlejsie ako to bolo predtym

[Rudy]

Zkuste ještě defragmentovat registry pomocí Auslogic registry defrag: https://www-auslogics-com.translate.goo ... _tr_pto=sc .

[luc_ia]

Eset mi to pri stahovani vyhodnocuje ako nechcenú aplikáciu a nechce mi dovoliť stiahnut ju. Je to len falosna hrozba a mam ju obist rucne (vypnut docasne eset) ?

[Rudy]

Asi něco proti němu má, ale vitus v pravém slova smyslu to není. Běžně ho tu užíváme. Po dobu práce s ním AV vypněte a pak nezapomeňte zapnout.

[luc_ia]

Blokuje mi to aj Windows, ale premazala som este nejake aplikacie, takze je to lepsie.