Hi there, I just wanted to get my laptop checked up.

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2021
Ran by c (administrator) on LLM-WIN8-LAPTOP (TOSHIBA Satellite P55t-A) (12-02-2021 12:49:35)
Running from C:\Users\c\Desktop
Loaded Profiles: c
Platform: Windows 10 Home Version 2004 19041.804 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Python27\python.exe <2>
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(DTS, Inc. -> ) C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_652655c5335c62da\DSDFunctionKeyCtlService.exe <2>
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_652655c5335c62da\RMService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <31>
(Hewlett Packard -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5660 series\Bin\HPNetworkCommunicatorCom.exe
(Hewlett Packard -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 5660 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\Dragon Assistant\Core\DACore.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA CORPORATION -> ) C:\Program Files (x86)\Toshiba\PasswordUtility\GFNEXSrv.exe
(TOSHIBA CORPORATION -> ) C:\Program Files\TOSHIBA\Hotkey\Hotkey\TCrdKBB.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files (x86)\Toshiba\System Setting\TssSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA CORPORATION -> Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe <2>
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA) C:\Program Files (x86)\Toshiba\PasswordUtility\readLM.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296520 2013-09-11] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [ThpSrv] => C:\Windows\system32\thpsrv /logon
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-17] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-07-06] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2002-04-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] => C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA CORPORATION -> TOSHIBA)
HKLM-x32\...\Run: [ToshibaAppPlace] => C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe [552960 2010-09-23] (Toshiba) [File not signed]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Win8PDF] => C:\Program Files\PDF Printer for Windows 8\PDF.exe [484352 2011-10-21] (Vivid Document Imaging Technologies) [File not signed]
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2099200 2014-04-13] (Dominik Reichl) [File not signed]
HKLM-x32\...\Run: [Adobe_ID0EYTHM] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2015-04-26] (Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2015-10-10] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25638872 2018-04-23] (Google Inc -> Google)
HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\...\Run: [Google Update] => C:\Users\c\AppData\Local\Google\Update\1.3.36.72\GoogleUpdateCore.exe [216392 2021-02-05] (Google LLC -> Google LLC)
HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\...\Run: [HP ENVY 5660 series (NET)] => C:\Program Files\HP\HP ENVY 5660 series\Bin\ScanToPCActivationApp.exe [3483656 2015-10-10] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\...\Run: [708A6BCA9F22CC304DD693961BCF6B09DB76A694._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8
HKU\S-1-5-21-2517961349-2002184368-2333218459-1004\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25638872 2018-04-23] (Google Inc -> Google)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP DD11 Status Monitor: C:\WINDOWS\system32\hpinkstsDD11LM.dll [392192 2019-03-15] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 5660 series): C:\WINDOWS\system32\HPDiscoPMDD11.dll [751624 2014-08-22] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\PDF Printer 8 Monitor: C:\WINDOWS\system32\PDFVC64.DLL [134144 2009-07-19] (Vivid Document Imaging Technologies) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe [2021-02-09] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2021-02-10]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2021-02-10]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2021-02-10]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {052F7AEA-D841-4335-8B2B-EBF3577F8FA6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0704FE91-F09C-411E-9D29-5FDB171E71E2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [564536 2015-10-10] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {0AAD944F-9A53-49EC-8333-40AA93AFFD12} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-10-12] (Apple Inc. -> Apple Inc.)
Task: {0AB64EC2-019F-4BC7-9E11-F3A3AB91B706} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {1B18BF41-17F0-4F14-B499-35B20ADB7A30} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {21CB89DA-B90C-4869-88C2-904A9E2169F6} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {229F78F0-9E30-4E3D-8BCD-87583E70311B} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [5493472 2021-02-08] (Avast Software s.r.o. -> Avast Software)
Task: {269B3759-3480-4327-8DC5-20C0BD6401C3} - System32\Tasks\KALite => "C:\Program Files (x86)\KA Lite\ka-lite\scripts\..\bin\windows\kalite.bat" [Argument = start] <==== ATTENTION
Task: {2795C7FE-2827-4E75-88FB-9D151628FFDA} - \WPD\SqmUpload_S-1-5-21-2517961349-2002184368-2333218459-1001 -> No File <==== ATTENTION
Task: {2DF084BD-598B-495D-BA10-B5273E7118F8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {2EFCD059-0721-4456-8EC3-40AF629951C4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2F6C63AE-A3A2-4FF9-BACA-033A04B29CE2} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {38B0F723-A6B4-48DF-A649-E31C1A113476} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {3977E8C7-1A45-4E9C-9D72-F3B6EE8571DE} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - c) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: {40DE327B-A87E-42CC-9839-070E2F2D13E1} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4665568 2021-02-10] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid bd9a6823-bf43-4de6-a2a4-07fa0c6079fb
Task: {43F45DB2-EF73-475C-932C-DD4BF06AD6E7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {48F60FB5-6C0A-488C-915B-3F8E735A6102} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {49DE272C-639F-426C-8947-C3B5AA0890A2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {4E8C3FEE-58AA-4F00-A5BE-642F04E4C377} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {574A20D3-D6CB-4917-8276-6B7FFC6C329F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {57664E51-3EC5-4956-B519-950A4A5A7910} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {5884939A-2069-4421-A31A-720A38DA1F81} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {5BFCC6C3-B78F-488A-A52C-50B56428E64A} - System32\Tasks\G2MUpdateTask-S-1-5-21-2517961349-2002184368-2333218459-1001 => C:\Users\c\AppData\Local\GoToMeeting\19228\g2mupdate.exe [31320 2020-12-28] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {5FCBB816-4AD0-4FE7-BA32-D2653B340BDC} - System32\Tasks\HPCustParticipation HP ENVY 5660 series => C:\Program Files\HP\HP ENVY 5660 series\Bin\HPCustPartic.exe [5853704 2015-10-10] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {6568BBDE-E827-42B3-83A3-641362C50DCF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2517961349-2002184368-2333218459-1001Core1d25803fdb326f1 => C:\Users\c\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {74072700-7314-4B0B-9BDE-7AEFBD5CEAB1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {74582111-DE72-4122-B0F7-16FD01B2CFB3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2517961349-2002184368-2333218459-1001UA => C:\Users\c\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {76A4E1E6-56B9-4345-8C59-0CD35BB3A3A1} - System32\Tasks\{D833A93D-B5D2-470A-9ED3-2C5738F4D819} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\AdTrustMedia\PrivDog\UninstallTrustedAds.exe"
Task: {7C7DFBF8-239A-4D57-96AA-19A39181CC31} - System32\Tasks\HP AR Program Upload - 568a98c258d343cebf9a05fa2aa4fe0f59af08290a5e4df1aecfa22536a2948a => C:\Program Files\HP\HP ENVY 5660 series\bin\HPRewards.exe [3528200 2015-10-10] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {7EAF3850-0ED9-437C-95EE-78622F56E699} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {85A166D5-B36B-4D6A-9148-ACA9F46BB8AC} - System32\Tasks\HP Photo Creations Communicator => C:\Users\c\AppData\Roaming\HP Photo Creations\Communicator.exe [186368 2015-10-10] (Visan Industries -> )
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8A4FA215-5D9D-4787-8E67-48FBCDD5DAA7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8F8BCC9B-9D98-43D7-8E6B-D121E223D8F6} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {94F4EA41-6A4D-4CFB-9B73-9D22BF82E6BD} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1191136 2021-02-10] (Avast Software s.r.o. -> AVAST Software)
Task: {96D84201-BD6A-4644-83AE-7823A900ACB0} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [655464 2013-07-31] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
Task: {97F2C7D6-3CE2-45A5-905B-5C70FA9A0517} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2018-06-26] (Apple Inc. -> Apple Inc.)
Task: {9C04CE76-891E-48D1-844B-60D70B0225D8} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {A58F3D95-929F-41B1-96E0-9EE2BE7B991A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {A66AC908-D8F5-4896-802B-969D677E89BB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AB16BB19-879C-4CAB-8C8F-4DECEE589358} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2517961349-2002184368-2333218459-1001Core => C:\Users\c\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {ABE2A860-82E7-4A15-8C94-544A371EA65D} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe
Task: {AC75ED32-22BE-48FD-8729-953A740541FA} - \WPD\SqmUpload_S-1-5-21-2517961349-2002184368-2333218459-1004 -> No File <==== ATTENTION
Task: {C4DDAE6E-75EE-42C1-B81B-1B6F048A5FBA} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4401240 2017-06-27] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {C641CA4A-DC81-4DDC-9EFF-FD9DB7AA6FF1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-10] (Adobe Inc. -> Adobe)
Task: {C9CC714D-946C-484F-9158-1639D904EA9C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CFA30ADC-CF1A-4734-B305-173132409B3F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {D07662DD-BB68-4958-9B4E-6EF87F6CEB8E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {D1D17853-2A32-420E-BEA3-A8BCC650BA28} - System32\Tasks\G2MUploadTask-S-1-5-21-2517961349-2002184368-2333218459-1001 => C:\Users\c\AppData\Local\GoToMeeting\19228\g2mupload.exe [31320 2020-12-28] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {E11E87C2-B77C-41F7-8E49-1B1DEE740A26} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EEE6BD68-79C7-4186-B763-35B113CBA4DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EF76D0D3-33BA-4234-9BE9-4C971D5F0B65} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EFB08E03-FB87-4F69-A127-E05F35718C8D} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {EFBF0FBC-7039-4716-B6B5-8E94AB2AE821} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe
Task: {F3BC4D12-91FC-49F4-9738-8D371CBFC7E1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {F5437C33-8B51-4DDE-880A-76549891BCFF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2517961349-2002184368-2333218459-1001UA1d25803fdc7a053 => C:\Users\c\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {FA797F60-0088-4F0E-A423-8A226BB28D13} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {FB981D17-97B1-4A67-A4B2-C4CA21BC1C87} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-10] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2517961349-2002184368-2333218459-1001.job => C:\Users\c\AppData\Local\GoToMeeting\19228\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2517961349-2002184368-2333218459-1001.job => C:\Users\c\AppData\Local\GoToMeeting\19228\g2mupload.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2517961349-2002184368-2333218459-1001Core.job => C:\Users\c\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2517961349-2002184368-2333218459-1001UA.job => C:\Users\c\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\Users\c\AppData\Roaming\HP Photo Creations\Communicator.exe
Task: C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - c).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

AutoConfigURL: [S-1-5-21-2517961349-2002184368-2333218459-1001] => hxxp://localhost:54382/redirect.pac
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{79d92ee1-68bc-4a3b-877d-225e497e73d4}: [DhcpNameServer] 127.0.0.1
Tcpip\..\Interfaces\{925159be-dd25-4955-a81a-2b4fe34a3082}: [DhcpNameServer] 192.168.1.254
ManualProxies: 0hxxp://localhost:54382/redirect.pac

Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-2517961349-2002184368-2333218459-1001 -> hxxp://yahoo.com/
Edge DefaultProfile: Default
Edge Profile: C:\Users\c\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-11]

FireFox:
========
FF DefaultProfile: 7sjsvts8.default-1544474668277
FF ProfilePath: C:\Users\c\AppData\Roaming\Mozilla\Firefox\Profiles\7sjsvts8.default-1544474668277 [2021-02-11]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-10] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2517961349-2002184368-2333218459-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\c\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (Visan Industries -> RocketLife, LLP)

Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\c\AppData\Local\Google\Chrome\User Data\Default [2021-02-11]
CHR DownloadDir: C:\Users\c\Desktop
CHR NewTab: Default -> "active": false,
"entry": "chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
,
"active": false,
"entry": "chrome-extension://enjhholhglnfgjmbpnimdpnlelanhkhg/newtab/quicktab.html"

CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=chrome&addonversion=2.1.0
CHR DefaultSearchKeyword: Default -> ecosia
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=en_US
CHR Extension: (Docs) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-01]
CHR Extension: (YouTube) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-01]
CHR Extension: (Honey) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2020-07-07]
CHR Extension: (Ecosia Search) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2020-01-09]
CHR Extension: (Find Forms) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\enjhholhglnfgjmbpnimdpnlelanhkhg [2018-04-11]
CHR Extension: (Wyzant Screen Sharing) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggbjpoaaoeklmpdfjcbgenmbdjhecjjp [2020-01-09]
CHR Extension: (Google Docs Offline) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-03]
CHR Extension: (Search Encrypt) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghmmejfijcoadonhfnlnmcgleppjhjkk [2018-05-05]
CHR Extension: (Grammarly for Chrome) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-09-04]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-08-01]
CHR Extension: (SaveFrom.net helper) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdpljndcmbeikfnlflcggaipgnhiedbl [2020-09-03] [UpdateUrl:hxxp://download.sf-helper.com/chrome/updates-3.xml] <==== ATTENTION
CHR Extension: (Chrome Web Store Payments) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-07]
CHR Extension: (Gmail) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-07-07]
CHR Extension: (Chrome Media Router) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-03]
CHR Profile: C:\Users\c\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-11]
CHR Profile: C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-02-11]
CHR Extension: (Slides) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-04]
CHR Extension: (Docs) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-04]
CHR Extension: (Google Drive) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-04]
CHR Extension: (Sheets) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-04]
CHR Extension: (Google Docs Offline) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-04]
CHR Extension: (Gmail) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-13]
CHR Profile: C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-02-12]
CHR Notifications: Profile 2 -> hxxps://meet.google.com
CHR HomePage: Profile 2 -> hxxp://www.google.com/
CHR StartupUrls: Profile 2 -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://www.google.com"
CHR DefaultSearchURL: Profile 2 -> hxxps://s.yimg.com/cv/apiv2/09062018/manifest/yahoo_install_48.png
CHR Extension: (Slides) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-17]
CHR Extension: (Floorplanner) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\abopacaefhbognnmeigicfpgnmpideag [2020-12-14]
CHR Extension: (Sudoku) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\agdhembpgcpfegeigidembjopfhghnpj [2020-12-14]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2020-12-14]
CHR Extension: (Docs) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-17]
CHR Extension: (Google Drive) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-17]
CHR Extension: (WOT Web of Trust, Website Reputation Ratings) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2021-02-04]
CHR Extension: (Microsoft Defender Browser Protection) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bkbeeeffjjeopflfhgeknacdieedcoml [2020-12-14]
CHR Extension: (YouTube) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-17]
CHR Extension: (Yahoo) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bnpnjbjealcpabcenanokcflffolchnm [2020-12-14]
CHR Extension: (Adobe Acrobat) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-16]
CHR Extension: (Auto Admit for Google Meet) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\epemkdedgaoeeobdjmkmhhhbjemckmgb [2021-02-09]
CHR Extension: (Sheets) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-17]
CHR Extension: (iCloud Bookmarks) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fkepacicchenbjecpbpbclokcabebhah [2020-12-14]
CHR Extension: (HTTPS Everywhere) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-02-01]
CHR Extension: (Google Docs Offline) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (Click&Clean) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-02-05]
CHR Extension: (360 Internet Protection) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\glcimepnljoholdmjchkloafkggfoijh [2020-12-14]
CHR Extension: (Pinterest Save Button) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2020-12-14]
CHR Extension: (Kindle Cloud Reader) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2020-12-14]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-02-02]
CHR Extension: (Dropbox) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2020-12-14]
CHR Extension: (Grammarly for Chrome) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-02-12]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Tv Online) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pcfeebemepipakkhapnhljbcdkagkloh [2020-12-14]
CHR Extension: (Click&Clean App) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2020-12-14]
CHR Extension: (Gmail) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-17]
CHR Extension: (Chrome Media Router) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-25]
CHR Extension: (Cool Metronome) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\polmfiinlikaadclgdojekfaoglellgm [2020-12-14]
CHR Profile: C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-02-11]
CHR Extension: (Slides) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-23]
CHR Extension: (Docs) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-23]
CHR Extension: (Google Drive) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-23]
CHR Extension: (YouTube) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-23]
CHR Extension: (Sheets) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-23]
CHR Extension: (Google Docs Offline) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-11-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-11-23]
CHR Extension: (Gmail) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-23]
CHR Extension: (Chrome Media Router) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-23]
CHR Profile: C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4 [2021-02-11]
CHR HomePage: Profile 4 -> hxxp://www.google.com/
CHR StartupUrls: Profile 4 -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://start.mysearchdial.com/?f=1&a=cmi_14_18_ch&cd=2XzuyEtN2Y1L1QzuyEyEtAyB0EyC0ByByEyBtCyD0F0A0CtCtN0D0Tzu0SzzyDyEtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyCyE0E0D0CyE0A0DtGyE0E0F0CtGyC0DtA0AtGtAyCyBtCtGtAtB0EyC0BzytC0BtA0D0AyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtCzzyE0ByD0B0EtG0ByCzz0BtGtD0DyByDtGtB0EyCtAtGtDyCyDzztCtAzy0CtC0DyB0A2Q&cr=179754203&ir=","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://www.google.com","hxxp://google.com/"
CHR Extension: (Slides) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-23]
CHR Extension: (Floorplanner) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\abopacaefhbognnmeigicfpgnmpideag [2020-11-23]
CHR Extension: (Sudoku) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\agdhembpgcpfegeigidembjopfhghnpj [2020-11-23]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2020-11-23]
CHR Extension: (Docs) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-23]
CHR Extension: (Google Drive) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-23]
CHR Extension: (Microsoft Defender Browser Protection) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\bkbeeeffjjeopflfhgeknacdieedcoml [2020-11-23]
CHR Extension: (YouTube) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-23]
CHR Extension: (Sheets) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-23]
CHR Extension: (Online Security Pro) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ffjgpapimgnmibnacmeilgjefnoofefp [2020-11-23]
CHR Extension: (iCloud Bookmarks) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fkepacicchenbjecpbpbclokcabebhah [2020-11-23]
CHR Extension: (securyBrowse) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fojomppheellamdaddnbgommepnlkooh [2020-12-06]
CHR Extension: (HTTPS Everywhere) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2020-11-23]
CHR Extension: (Google Docs Offline) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-23]
CHR Extension: (Click&Clean) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2020-12-06]
CHR Extension: (360 Internet Protection) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\glcimepnljoholdmjchkloafkggfoijh [2020-11-23]
CHR Extension: (Pinterest Save Button) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2020-12-10]
CHR Extension: (Kindle Cloud Reader) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2020-11-23]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-11-23]
CHR Extension: (Dropbox) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2020-11-23]
CHR Extension: (Grammarly for Chrome) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-12-14]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-11-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-11-23]
CHR Extension: (Tv Online) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pcfeebemepipakkhapnhljbcdkagkloh [2020-11-23]
CHR Extension: (Click&Clean App) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2020-11-23]
CHR Extension: (Gmail) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-23]
CHR Extension: (Chrome Media Router) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-14]
CHR Extension: (Cool Metronome) - C:\Users\c\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\polmfiinlikaadclgdojekfaoglellgm [2020-11-23]
CHR Profile: C:\Users\c\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-11]
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] - <no Path/update_url>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKU\S-1-5-21-2517961349-2002184368-2333218459-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-2517961349-2002184368-2333218459-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aaffhmecfaelkngcbnfdkcckmillnoki]
CHR HKLM-x32\...\Chrome\Extension: [commhkacjheiacaopdonmodahaoadoln]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [mdpljndcmbeikfnlflcggaipgnhiedbl] - hxxp://sf-addon.com/helper/chrome/updates-3.xml
CHR HKLM-x32\...\Chrome\Extension: [nogdfjjfhknacchjpiccacoimeelkajb]