Re: Prosím o kontrolu
Napsal: 29 srp 2023 16:00
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2023
Ran by Lenovo (administrator) on DESKTOP-OTEM5AO (LENOVO F0EW008MCK) (29-08-2023 15:51:59)
Running from C:\Users\Lenovo\OneDrive\Plocha\FRST64.exe
Loaded Profiles: Lenovo
Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ea4acce9a2fdda82\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\WINDOWS\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\u0362754.inf_amd64_c47440d12c0c598c\B362774\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\WINDOWS\System32\DriverStore\FileRepository\u0362754.inf_amd64_c47440d12c0c598c\B362774\atieclxx.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.160.0801.0002\Microsoft.SharePoint.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\WINDOWS\System32\DriverStore\FileRepository\u0362754.inf_amd64_c47440d12c0c598c\B362774\atiesrxx.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ea4acce9a2fdda82\DAX3API.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\WINDOWS\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe <2>
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe [1230392 2021-01-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-2263570566-3073807177-2095617376-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2609184 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2263570566-3073807177-2095617376-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-08-24] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-2263570566-3073807177-2095617376-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.111\Installer\chrmstp.exe [2023-08-28] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {A29795CF-53DF-4CC4-85D9-6A09E329571C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {9946F64D-410C-450D-BDCC-E6C30AE1FCA4} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {BCE37542-8B63-4668-861A-CE501BF8BACF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "9deb8e80-e3b0-4683-897a-1d55ce7d15fa" --version "6.15.10623" --silent
Task: {A395C9EC-A25E-4BD7-9ADE-EB989DBFCABE} - System32\Tasks\CCleanerSkipUAC - Lenovo => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {61A5E396-2648-4F28-A65D-E3DC6E3A8CD1} - System32\Tasks\GoogleUpdateTaskMachineCore{775A4548-BFA8-463F-A213-405261FD1297} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-04-08] (Google LLC -> Google LLC)
Task: {08E8DDFA-B179-447B-AEDC-019A4B8CD780} - System32\Tasks\GoogleUpdateTaskMachineUA{5CF39D53-239A-48A5-ABBD-5E6BF53D79B2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-04-08] (Google LLC -> Google LLC)
Task: {C26BAC61-E981-4709-82F4-5C57F6DF35CB} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {0718B745-2B73-4AB0-A74A-93B9857C1FE1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {34649E2A-3DBB-453A-B6EF-6272C6C7D71A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {36F3AB9E-DBDD-40EB-9E76-E1ED52BE56B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1433C814-7886-4E0C-8E75-FEB4D5174EA0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0F89C271-B6D6-43DB-9C67-FC1849F005C7} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125712 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {0DE72149-65C5-4086-8BD9-82699E9A5A91} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2263570566-3073807177-2095617376-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125712 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{d5475188-8849-4432-8fe6-d17fefc382d4}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{f83e30de-2bd5-4ffa-8864-4ec88584778c}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2023-08-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-04-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-28]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-08-29]
CHR HomePage: Profile 1 -> hxxp://seznam.cz/
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ea4acce9a2fdda82\DAX3API.exe [1903776 2019-12-31] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.160.0801.0002\FileSyncHelper.exe [3520016 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.160.0801.0002\OneDriveUpdaterService.exe [3857440 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [188728 2021-05-26] (Qualcomm Atheros, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe [3104488 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe [133576 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55704 2023-08-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572656 2023-08-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [104688 2023-08-17] (Microsoft Windows -> Microsoft Corporation)
S1 amsdk; \??\C:\WINDOWS\system32\drivers\amsdk.sys [X]
S3 MpKsl8f29b66f; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5AD7E66B-CBA5-47DD-B453-DB1B1429E1C0}\MpKslDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-29 15:50 - 2023-08-29 15:52 - 000000000 ____D C:\FRST
2023-08-28 16:10 - 2023-08-28 16:10 - 000000000 ____D C:\Users\Lenovo\AppData\Local\VirtualStore
2023-08-28 16:03 - 2023-08-28 16:22 - 000057365 _____ C:\WINDOWS\ZAM.krnl.trace
2023-08-28 16:03 - 2023-08-28 16:03 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Zemana
2023-08-28 16:01 - 2023-08-28 16:22 - 000000000 ____D C:\Users\Lenovo\AppData\Local\AMSDK
2023-08-28 15:33 - 2014-02-13 23:59 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2023-08-28 15:21 - 2023-08-28 15:36 - 000000000 ____D C:\zoek
2023-08-28 14:48 - 2023-08-28 15:27 - 000000000 ____D C:\zoek_backup
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\WinRAR
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\Program Files\WinRAR
2023-08-27 15:26 - 2023-08-27 15:26 - 000000000 ___HD C:\$WinREAgent
2023-08-20 18:04 - 2023-08-20 18:04 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2023-08-19 17:20 - 2023-08-19 17:20 - 000000000 ____D C:\ProgramData\Sophos
2023-08-19 15:36 - 2023-08-19 15:36 - 000314076 _____ C:\Users\Lenovo\Downloads\Ceník (2).pdf
2023-08-19 15:36 - 2023-08-19 15:36 - 000314076 _____ C:\Users\Lenovo\Downloads\Ceník (1).pdf
2023-08-19 14:07 - 2023-08-19 14:07 - 000000000 ____D C:\Users\Lenovo\AppData\Local\mbam
2023-08-19 13:58 - 2023-08-19 14:00 - 000000000 ____D C:\AdwCleaner
2023-08-17 17:24 - 2023-08-28 16:45 - 000007605 _____ C:\Users\Lenovo\AppData\Local\Resmon.ResmonCfg
2023-08-14 14:16 - 2023-08-14 14:16 - 000314076 _____ C:\Users\Lenovo\Downloads\Ceník.pdf
2023-08-14 14:16 - 2023-08-14 14:16 - 000117454 _____ C:\Users\Lenovo\Downloads\Informace pro zákazníka – spotřebitele.pdf
2023-08-14 14:07 - 2023-08-14 14:07 - 004402334 _____ C:\Users\Lenovo\Downloads\pruvodce-sjednanim-smlouvy-online.pdf
2023-07-31 13:59 - 2023-07-31 13:59 - 000000000 ___RD C:\Users\Lenovo\OneDrive\Dokumenty\Z fotoaparátu
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-29 15:47 - 2023-04-08 14:34 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-29 15:47 - 2021-12-15 11:08 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-29 15:44 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-29 15:43 - 2021-10-11 12:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-29 15:43 - 2021-10-11 12:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-29 15:43 - 2021-03-13 19:14 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-29 15:43 - 2020-12-29 17:03 - 000021520 _____ C:\WINDOWS\system32\wpbbin.exe
2023-08-28 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-28 16:38 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-08-28 15:33 - 2020-12-29 18:17 - 000000000 ____D C:\Users\Lenovo\AppData\Local\D3DSCache
2023-08-28 14:48 - 2023-06-28 14:02 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2023-08-28 14:39 - 2021-10-11 11:07 - 000000000 ____D C:\Users\Lenovo
2023-08-28 14:34 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-08-28 14:31 - 2023-04-08 14:35 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-27 15:26 - 2021-01-03 13:17 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-27 15:26 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-24 20:53 - 2022-05-07 12:50 - 000000000 ___HD C:\$WINDOWS.~BT
2023-08-24 20:48 - 2021-10-11 12:40 - 000487408 _____ C:\WINDOWS\diagerr.xml
2023-08-24 20:48 - 2021-10-11 12:40 - 000447678 _____ C:\WINDOWS\diagwrn.xml
2023-08-24 18:34 - 2021-10-08 09:37 - 000000000 ___DC C:\WINDOWS\Panther
2023-08-24 15:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-20 18:05 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-19 19:51 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-08-19 16:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-19 14:41 - 2021-01-03 13:17 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Spelling
2023-08-17 18:40 - 2020-12-29 17:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-17 18:30 - 2020-12-29 18:13 - 000918960 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-08-17 18:28 - 2023-04-08 14:24 - 000000000 ____D C:\Program Files\CCleaner
2023-08-17 18:28 - 2020-12-29 17:15 - 000000000 ___RD C:\Users\Lenovo\OneDrive
2023-08-17 18:26 - 2023-05-02 15:05 - 000000000 ____D C:\ProgramData\AVG
2023-08-17 17:37 - 2023-04-08 14:24 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-17 17:36 - 2022-01-15 16:18 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-08-17 17:24 - 2023-04-08 14:24 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-08-17 17:24 - 2023-04-08 14:24 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-17 17:22 - 2022-01-15 16:18 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-08-17 17:22 - 2022-01-15 16:18 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-17 17:22 - 2021-12-11 12:19 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2263570566-3073807177-2095617376-1001
2023-08-09 19:25 - 2020-12-29 18:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-09 19:19 - 2020-12-29 18:11 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-09 18:50 - 2023-05-25 10:06 - 000000280 _____ C:\WINDOWS\Tasks\CCleanerClean.job
2023-08-07 17:57 - 2023-04-08 14:35 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{5CF39D53-239A-48A5-ABBD-5E6BF53D79B2}
2023-08-07 17:57 - 2023-04-08 14:35 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{775A4548-BFA8-463F-A213-405261FD1297}
2023-07-31 13:59 - 2023-05-25 10:06 - 000002692 _____ C:\WINDOWS\system32\Tasks\CCleanerClean
2023-07-31 13:59 - 2023-05-02 15:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-07-31 13:59 - 2023-04-08 14:24 - 000002256 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Lenovo
2023-07-31 13:59 - 2021-10-11 12:42 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-31 13:59 - 2021-10-11 12:42 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2021-09-24 15:39 - 2023-05-18 17:01 - 000007437 _____ () C:\Users\Lenovo\AppData\Local\PlariumPlay.log
2023-08-17 17:24 - 2023-08-28 16:45 - 000007605 _____ () C:\Users\Lenovo\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Lenovo (administrator) on DESKTOP-OTEM5AO (LENOVO F0EW008MCK) (29-08-2023 15:51:59)
Running from C:\Users\Lenovo\OneDrive\Plocha\FRST64.exe
Loaded Profiles: Lenovo
Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ea4acce9a2fdda82\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\WINDOWS\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\u0362754.inf_amd64_c47440d12c0c598c\B362774\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\WINDOWS\System32\DriverStore\FileRepository\u0362754.inf_amd64_c47440d12c0c598c\B362774\atieclxx.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.160.0801.0002\Microsoft.SharePoint.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\WINDOWS\System32\DriverStore\FileRepository\u0362754.inf_amd64_c47440d12c0c598c\B362774\atiesrxx.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ea4acce9a2fdda82\DAX3API.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\WINDOWS\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe <2>
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe [1230392 2021-01-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-2263570566-3073807177-2095617376-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2609184 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2263570566-3073807177-2095617376-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-08-24] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-2263570566-3073807177-2095617376-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.111\Installer\chrmstp.exe [2023-08-28] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {A29795CF-53DF-4CC4-85D9-6A09E329571C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {9946F64D-410C-450D-BDCC-E6C30AE1FCA4} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {BCE37542-8B63-4668-861A-CE501BF8BACF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "9deb8e80-e3b0-4683-897a-1d55ce7d15fa" --version "6.15.10623" --silent
Task: {A395C9EC-A25E-4BD7-9ADE-EB989DBFCABE} - System32\Tasks\CCleanerSkipUAC - Lenovo => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {61A5E396-2648-4F28-A65D-E3DC6E3A8CD1} - System32\Tasks\GoogleUpdateTaskMachineCore{775A4548-BFA8-463F-A213-405261FD1297} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-04-08] (Google LLC -> Google LLC)
Task: {08E8DDFA-B179-447B-AEDC-019A4B8CD780} - System32\Tasks\GoogleUpdateTaskMachineUA{5CF39D53-239A-48A5-ABBD-5E6BF53D79B2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-04-08] (Google LLC -> Google LLC)
Task: {C26BAC61-E981-4709-82F4-5C57F6DF35CB} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {0718B745-2B73-4AB0-A74A-93B9857C1FE1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {34649E2A-3DBB-453A-B6EF-6272C6C7D71A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {36F3AB9E-DBDD-40EB-9E76-E1ED52BE56B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1433C814-7886-4E0C-8E75-FEB4D5174EA0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MpCmdRun.exe [1596320 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0F89C271-B6D6-43DB-9C67-FC1849F005C7} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125712 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {0DE72149-65C5-4086-8BD9-82699E9A5A91} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2263570566-3073807177-2095617376-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125712 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{d5475188-8849-4432-8fe6-d17fefc382d4}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{f83e30de-2bd5-4ffa-8864-4ec88584778c}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2023-08-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-04-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-28]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-08-29]
CHR HomePage: Profile 1 -> hxxp://seznam.cz/
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_ea4acce9a2fdda82\DAX3API.exe [1903776 2019-12-31] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.160.0801.0002\FileSyncHelper.exe [3520016 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.160.0801.0002\OneDriveUpdaterService.exe [3857440 2023-08-17] (Microsoft Corporation -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [188728 2021-05-26] (Qualcomm Atheros, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\NisSrv.exe [3104488 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe [133576 2023-08-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55704 2023-08-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572656 2023-08-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [104688 2023-08-17] (Microsoft Windows -> Microsoft Corporation)
S1 amsdk; \??\C:\WINDOWS\system32\drivers\amsdk.sys [X]
S3 MpKsl8f29b66f; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5AD7E66B-CBA5-47DD-B453-DB1B1429E1C0}\MpKslDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-29 15:50 - 2023-08-29 15:52 - 000000000 ____D C:\FRST
2023-08-28 16:10 - 2023-08-28 16:10 - 000000000 ____D C:\Users\Lenovo\AppData\Local\VirtualStore
2023-08-28 16:03 - 2023-08-28 16:22 - 000057365 _____ C:\WINDOWS\ZAM.krnl.trace
2023-08-28 16:03 - 2023-08-28 16:03 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Zemana
2023-08-28 16:01 - 2023-08-28 16:22 - 000000000 ____D C:\Users\Lenovo\AppData\Local\AMSDK
2023-08-28 15:33 - 2014-02-13 23:59 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2023-08-28 15:21 - 2023-08-28 15:36 - 000000000 ____D C:\zoek
2023-08-28 14:48 - 2023-08-28 15:27 - 000000000 ____D C:\zoek_backup
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\WinRAR
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-08-28 14:47 - 2023-08-28 14:47 - 000000000 ____D C:\Program Files\WinRAR
2023-08-27 15:26 - 2023-08-27 15:26 - 000000000 ___HD C:\$WinREAgent
2023-08-20 18:04 - 2023-08-20 18:04 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2023-08-19 17:20 - 2023-08-19 17:20 - 000000000 ____D C:\ProgramData\Sophos
2023-08-19 15:36 - 2023-08-19 15:36 - 000314076 _____ C:\Users\Lenovo\Downloads\Ceník (2).pdf
2023-08-19 15:36 - 2023-08-19 15:36 - 000314076 _____ C:\Users\Lenovo\Downloads\Ceník (1).pdf
2023-08-19 14:07 - 2023-08-19 14:07 - 000000000 ____D C:\Users\Lenovo\AppData\Local\mbam
2023-08-19 13:58 - 2023-08-19 14:00 - 000000000 ____D C:\AdwCleaner
2023-08-17 17:24 - 2023-08-28 16:45 - 000007605 _____ C:\Users\Lenovo\AppData\Local\Resmon.ResmonCfg
2023-08-14 14:16 - 2023-08-14 14:16 - 000314076 _____ C:\Users\Lenovo\Downloads\Ceník.pdf
2023-08-14 14:16 - 2023-08-14 14:16 - 000117454 _____ C:\Users\Lenovo\Downloads\Informace pro zákazníka – spotřebitele.pdf
2023-08-14 14:07 - 2023-08-14 14:07 - 004402334 _____ C:\Users\Lenovo\Downloads\pruvodce-sjednanim-smlouvy-online.pdf
2023-07-31 13:59 - 2023-07-31 13:59 - 000000000 ___RD C:\Users\Lenovo\OneDrive\Dokumenty\Z fotoaparátu
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-29 15:47 - 2023-04-08 14:34 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-29 15:47 - 2021-12-15 11:08 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-29 15:44 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-29 15:43 - 2021-10-11 12:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-29 15:43 - 2021-10-11 12:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-29 15:43 - 2021-03-13 19:14 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-29 15:43 - 2020-12-29 17:03 - 000021520 _____ C:\WINDOWS\system32\wpbbin.exe
2023-08-28 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-28 16:38 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-08-28 15:33 - 2020-12-29 18:17 - 000000000 ____D C:\Users\Lenovo\AppData\Local\D3DSCache
2023-08-28 14:48 - 2023-06-28 14:02 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2023-08-28 14:39 - 2021-10-11 11:07 - 000000000 ____D C:\Users\Lenovo
2023-08-28 14:34 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-08-28 14:31 - 2023-04-08 14:35 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-27 15:26 - 2021-01-03 13:17 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-27 15:26 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-24 20:53 - 2022-05-07 12:50 - 000000000 ___HD C:\$WINDOWS.~BT
2023-08-24 20:48 - 2021-10-11 12:40 - 000487408 _____ C:\WINDOWS\diagerr.xml
2023-08-24 20:48 - 2021-10-11 12:40 - 000447678 _____ C:\WINDOWS\diagwrn.xml
2023-08-24 18:34 - 2021-10-08 09:37 - 000000000 ___DC C:\WINDOWS\Panther
2023-08-24 15:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-20 18:05 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-19 19:51 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-08-19 16:55 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-19 14:41 - 2021-01-03 13:17 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Spelling
2023-08-17 18:40 - 2020-12-29 17:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-17 18:30 - 2020-12-29 18:13 - 000918960 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-08-17 18:28 - 2023-04-08 14:24 - 000000000 ____D C:\Program Files\CCleaner
2023-08-17 18:28 - 2020-12-29 17:15 - 000000000 ___RD C:\Users\Lenovo\OneDrive
2023-08-17 18:26 - 2023-05-02 15:05 - 000000000 ____D C:\ProgramData\AVG
2023-08-17 17:37 - 2023-04-08 14:24 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-17 17:36 - 2022-01-15 16:18 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-08-17 17:24 - 2023-04-08 14:24 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-08-17 17:24 - 2023-04-08 14:24 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-17 17:22 - 2022-01-15 16:18 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-08-17 17:22 - 2022-01-15 16:18 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-17 17:22 - 2021-12-11 12:19 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2263570566-3073807177-2095617376-1001
2023-08-09 19:25 - 2020-12-29 18:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-09 19:19 - 2020-12-29 18:11 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-09 18:50 - 2023-05-25 10:06 - 000000280 _____ C:\WINDOWS\Tasks\CCleanerClean.job
2023-08-07 17:57 - 2023-04-08 14:35 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{5CF39D53-239A-48A5-ABBD-5E6BF53D79B2}
2023-08-07 17:57 - 2023-04-08 14:35 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{775A4548-BFA8-463F-A213-405261FD1297}
2023-07-31 13:59 - 2023-05-25 10:06 - 000002692 _____ C:\WINDOWS\system32\Tasks\CCleanerClean
2023-07-31 13:59 - 2023-05-02 15:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-07-31 13:59 - 2023-04-08 14:24 - 000002256 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Lenovo
2023-07-31 13:59 - 2021-10-11 12:42 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-31 13:59 - 2021-10-11 12:42 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2021-09-24 15:39 - 2023-05-18 17:01 - 000007437 _____ () C:\Users\Lenovo\AppData\Local\PlariumPlay.log
2023-08-17 17:24 - 2023-08-28 16:45 - 000007605 _____ () C:\Users\Lenovo\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================