Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-03-2020
Ran by PC (administrator) on DESKTOP-CUHD9KK (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (25-03-2020 00:21:58)
Running from C:\Users\PC\Desktop\Cleaner
Loaded Profiles: PC (Available Profiles: PC)
Platform: Windows 10 Home Version 1809 17763.805 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atiesrxx.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3024408 2020-03-19] (Opera Software AS -> Opera Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3825040074-1848257447-117141455-1001\...\Run: [] => [X]
HKU\S-1-5-21-3825040074-1848257447-117141455-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [37888 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-19] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2019-03-03]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [File not signed]
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Google.ini.lnk [2020-03-19]
ShortcutTarget: Google.ini.lnk -> C:\Users\PC\AppData\Google.js (No File)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06FC6085-2E5D-4656-ACE2-32F44A190D3E} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\PC\Downloads\esetonlinescanner_sky.exe
Task: {08A25493-9DAF-4A8D-81F6-593087013F65} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe [470952 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {0902AD6C-76A6-4E90-BD77-15FB607E003F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {1515E966-7FF0-4003-AEDC-3805E098ADA1} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-03-14] (Adobe Inc. -> Adobe)
Task: {1592A801-82D8-4091-ACE0-2FED4B2C4D5B} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\PC\Downloads\esetonlinescanner_sky.exe
Task: {1BAC54FD-D360-482C-8648-40698BCA7EE1} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6562168 2016-09-08] (Nero AG -> Nero AG)
Task: {1FC31668-4BAD-4E28-8271-9B630FA0F51C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe [470952 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {2089FC86-5C82-4EFB-94ED-400A7AFED468} - System32\Tasks\Opera scheduled Autoupdate 1549279223 => C:\Program Files\Opera\launcher.exe [1538584 2020-03-19] (Opera Software AS -> Opera Software)
Task: {31B16021-DB8E-4848-A8FC-0773ABC8EF2E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {47783A5F-B170-4539-9CC9-7B2A07A5A3C9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6154584 2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {4783522E-4979-43D0-B1B1-4CB1FF8F7EA0} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe
Task: {4B40EA8D-A7AF-4C6D-9FA7-2BE972C87FF2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {541A8380-0CF9-444D-A5E2-2019A9BFFC37} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-17] (Adobe Inc. -> Adobe)
Task: {54D59D9B-C9B4-42D9-B0E1-6EB953795C1B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-17] (Adobe Inc. -> Adobe)
Task: {62160A36-E5CD-4FAA-A354-30861C1D8DB1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {65781D4D-1E04-471E-A0A8-EADD85BAA494} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-11-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7BBC3BE0-40BA-4EA6-A5F6-8ACC03C20AE6} - System32\Tasks\{1ABD41D0-0BF0-E01C-705B-27257D6C7EB3} => C:\Program Files (x86)\EOJiYYn.exe <==== ATTENTION
Task: {7D97FECC-CCCD-4F3B-AD07-8FC350AF6D21} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-11-01] (Advanced Micro Devices, Inc.) [File not signed]
Task: {7E6D3919-E9E4-4888-97AB-50452D924E4B} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [891576 2019-11-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {8E00CACB-69A0-4427-8B13-C958F34C32CD} - System32\Tasks\synhelper\{19EE27F2-43A7-AE60-5C14-1DC53B58CC6E} => C:\Users\PC\AppData\Roaming\19EE27~1\SYNHEL~1.EXE <==== ATTENTION
Task: {92B6A7B6-E52C-46A4-A64A-BF62D57964B1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe [470952 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {A19994D2-F57C-4D43-BB9F-F66A264816BC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-11-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B32A1DAD-299D-4304-A190-E7596E3EAAEF} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {CA5511AB-816C-42E6-9C2A-49AB5F064A27} - System32\Tasks\Opera scheduled assistant Autoupdate 1582762724 => C:\Program Files\Opera\launcher.exe [1538584 2020-03-19] (Opera Software AS -> Opera Software)
Task: {CE3726C1-278C-4C37-A141-5004FD8C8373} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-24] (Google Inc -> Google LLC)
Task: {D154C0F6-77F4-4945-8C07-C4C1CEBC5AD2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {DAFE6B52-5778-4D7A-99BF-376AB59E9922} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe [470952 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED0AD18B-8A64-43C5-B8E3-1EEF9B8C8883} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {F03CCFB9-8B04-4834-9A5A-D26C8C207C4A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-24] (Google Inc -> Google LLC)
Task: {F2B64E06-CABA-43FF-86E7-DBFF49A487AC} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-11-01] (Advanced Micro Devices, Inc.) [File not signed]
Task: {F3513644-21A4-4A25-A508-FF095F34C8AE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6154584 2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3741818-85CF-4C9D-8B3C-4B125FDF2BF2} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-11-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04340e76-ac87-4a42-a76b-965159d69b56}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4be2033d-b1df-4be2-a167-76a212fccdaf}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7fba59c5-df63-4d01-97b8-230fd16c20d4}: [DhcpNameServer] 217.23.254.124 217.23.254.125
Tcpip\..\Interfaces\{f90f368c-4581-478e-aebc-f28088acd8bb}: [DhcpNameServer] 217.23.254.124 217.23.254.125

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-12-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files\Common Files\Download Helper\DownloadHelperx64.dll [2011-06-18] (IE Download Helper) [File not signed]
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-12-08] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-02-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-02-27] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-02-27] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: DownloadHelper Class -> {FF2573AE-E1ED-40e1-83BA-F544CB2EE135} -> C:\Program Files (x86)\Common Files\Download Helper\DownloadHelper.dll [2011-06-18] (IE Download Helper) [File not signed]
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: WSKVAllmytubechrome - No CLSID Value

Edge: 
======
DownloadDir: C:\Users\PC\Downloads

FireFox:
========
FF DefaultProfile: 7l48g1zn.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\wy164l5b.default-release-1575430855046 [2020-03-25]
FF Notifications: Mozilla\Firefox\Profiles\wy164l5b.default-release-1575430855046 -> hxxps://www.instagram.com
FF Extension: (Google Translator for Firefox) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\wy164l5b.default-release-1575430855046\Extensions\translator@zoli.bod.xpi [2019-12-04]
FF Extension: (Video DownloadHelper) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\wy164l5b.default-release-1575430855046\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-12-04]
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7l48g1zn.default [2020-03-21]
FF Notifications: Mozilla\Firefox\Profiles\7l48g1zn.default -> hxxps://mail-notification.info; hxxps://www.facebook.com
FF Extension: (AdvBlocker Lite blokovač reklamy) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7l48g1zn.default\Extensions\adv-lite-1.0.1@blocker.xpi [2019-05-06]
FF Extension: (SaveFrom.net helper) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7l48g1zn.default\Extensions\helper@savefrom.net.xpi [2019-11-16]
FF Extension: (Video DownloadHelper) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7l48g1zn.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-09]
FF Extension: (No Name) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7l48g1zn.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7l48g1zn.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (No Name) - C:\Program Files (x86)\Mozilla Firefox\browser\features\{A3D769E6-007E-485F-B2AC-CD7838DD4B20}.xpi [2019-11-08] [not signed]
FF HKU\S-1-5-21-3825040074-1848257447-117141455-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2015-12-09] [Legacy]
FF HKU\S-1-5-21-3825040074-1848257447-117141455-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\PC\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\PC\AppData\Roaming\IDM\idmmzcc5 [2020-03-24] [Legacy] [not signed]
FF HKU\S-1-5-21-3825040074-1848257447-117141455-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2020-03-14] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2020-03-14] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-02-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-02-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-29] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-29] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2020-03-22]
CHR Extension: (Prezentácie) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-24]
CHR Extension: (Dokumenty) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-24]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-11-24]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-24]
CHR Extension: (Avira Safe Shopping) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2020-03-20]
CHR Extension: (Tampermonkey) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-11-24]
CHR Extension: (Tabuľky) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-24]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-12]
CHR Extension: (Avast Online Security) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-24]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-24]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR HKU\S-1-5-21-3825040074-1848257447-117141455-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKU\S-1-5-21-3825040074-1848257447-117141455-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [moihledlmchhofenpacbhphnbnpakgmo]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-12-18]

Opera: 
=======
OPR Notifications: hxxps://en.savefrom.net; hxxps://hqq.tv; hxxps://mail-notification.info; hxxps://sauwoaptain.com; hxxps://spisiakoviny.eu; hxxps://vk.com; hxxps://www.bigbuy.eu; hxxps://www.facebook.com; hxxps://www.freefilm.to
OPR Extension: (Adblocker for Youtube™) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\ehjcblokmiepgmmbmkmkgnacjcbekcbl [2019-11-08]
OPR Extension: (Speed Translate) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\jggobmlojchhlngdhmmdghgganciigof [2019-12-04]
OPR Extension: (Flash Video Downloader (FVD)) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\neacgcjokggofibnbfapeaejhclmpple [2019-09-03]
OPR Extension: (SaveFrom.net helper) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\npdpplbicnmpoigidfdjadamgfkilaak [2020-03-18]
OPR Extension: (Bookmarks Import & Export) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\omhcddilnfoiiplehpjihipcocdplljn [2019-11-26]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atiesrxx.exe [509352 2019-11-04] (Advanced Micro Devices, Inc. -> AMD)
S4 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe [43008 2019-11-01] (AMD) [File not signed]
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8352184 2019-02-07] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-02-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [97776 2018-03-27] (INTERNET PROJECT LLC -> Freemake)
S4 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2018-03-27] (Ellora Assets Corp.) [File not signed]
S4 jswpsapi; C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [954368 2014-05-23] (Wireless) [File not signed]
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-03-25] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-22] (Microsoft Corporation -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [51696 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 Avira.ServiceHost; "C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atikmdag.sys [60670888 2019-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atikmpag.sys [598440 2019-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3.0; C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [60104 2015-02-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-05-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-05-19] (AVAST Software s.r.o. -> AVAST Software)
S3 athur; C:\WINDOWS\System32\drivers\athuwbx.sys [2702336 2013-11-20] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-07-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 DigiartyVirtualCDBus; C:\WINDOWS\System32\drivers\DigiartyVirtualCDBus.sys [276256 2019-11-10] (Digiarty, Inc. -> Digiarty Software, Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-02-04] (Martin Malik - REALiX -> REALiX(tm))
R1 JSWPSLWF; C:\WINDOWS\system32\DRIVERS\jswpslwfx.sys [26624 2014-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2020-02-24] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1139848 2019-02-05] (Realtek Semiconductor Corp. -> Realtek )
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [8206848 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-22] (Microsoft Windows -> Microsoft Corporation)
S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-25 00:21 - 2020-03-25 00:23 - 000000000 ____D C:\FRST
2020-03-25 00:13 - 2020-03-25 00:13 - 002522224 ____C (Wiper Software, UAB) C:\Users\PC\Downloads\WiperSoft-installer.exe
2020-03-25 00:04 - 2020-03-25 00:06 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-03-25 00:01 - 2020-03-25 00:01 - 001957784 ____C (Malwarebytes) C:\Users\PC\Desktop\MBSetup.exe
2020-03-24 23:37 - 2020-03-24 23:38 - 000151698 _____ C:\TDSSKiller.3.1.0.28_24.03.2020_23.37.26_log.txt
2020-03-24 03:52 - 2020-03-24 05:26 - 3171600271 ____C C:\Users\PC\Downloads\Dcéra veľvyslanca 13. epizóda.mp4
2020-03-22 23:36 - 2020-03-22 23:38 - 005682607 ____C C:\Users\PC\Downloads\putin Italii.mp4
2020-03-22 22:11 - 2020-03-22 22:14 - 029452909 ____C C:\Users\PC\Downloads\mačky.mp4
2020-03-22 03:33 - 2020-03-22 03:35 - 004733011 ____C C:\Users\PC\Downloads\Hitler o korone na SK.mp4
2020-03-22 01:45 - 2020-03-22 01:45 - 000000000 ___DC C:\Users\PC\AppData\Roaming\mkvtoolnix
2020-03-22 01:40 - 2020-03-22 01:40 - 000000000 ___DC C:\Users\PC\AppData\Roaming\Neos Eureka S.r.l
2020-03-21 22:56 - 2020-03-21 22:56 - 000001408 _____ C:\Users\Public\Desktop\TMPGEnc Video Mastering Works 5.lnk
2020-03-21 22:56 - 2020-03-21 22:56 - 000001408 _____ C:\ProgramData\Desktop\TMPGEnc Video Mastering Works 5.lnk
2020-03-21 01:31 - 2020-03-21 01:31 - 000000000 ___DC C:\Users\PC\AppData\Roaming\BANDISOFT
2020-03-21 00:02 - 2020-03-21 00:02 - 000001136 ____C C:\Users\PC\Desktop\Format Factory.lnk
2020-03-21 00:02 - 2020-03-21 00:02 - 000000000 ___DC C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2020-03-20 23:53 - 2020-03-20 23:54 - 000000000 ___DC C:\Users\PC\Downloads\FormatFactory2020_03_20
2020-03-20 23:51 - 2020-03-20 23:52 - 479239845 ____C C:\Users\PC\Downloads\Smrtící pandemie - CZ.mp4
2020-03-20 00:59 - 2020-03-20 00:59 - 000000000 ___DC C:\Users\PC\AppData\Local\AviraSpeedup
2020-03-19 20:48 - 2020-03-19 20:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2020-03-19 10:36 - 2020-03-21 02:05 - 000000000 ____D C:\Users\Public\Security Sessions
2020-03-19 10:35 - 2020-03-19 10:35 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2020-03-19 10:33 - 2020-03-21 22:51 - 000000000 ___DC C:\ProgramData\Avira
2020-03-19 10:33 - 2020-03-21 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-03-19 10:33 - 2020-03-19 10:36 - 000000000 ___DC C:\Users\PC\AppData\Local\Avira
2020-03-19 10:33 - 2020-03-19 10:33 - 000001261 _____ C:\Users\Public\Desktop\Avira.lnk
2020-03-19 10:33 - 2020-03-19 10:33 - 000001261 _____ C:\ProgramData\Desktop\Avira.lnk
2020-03-19 10:18 - 2020-03-19 10:18 - 000000000 ___DC C:\Users\PC\AppData\LocalLow\JN3by345by53432y
2020-03-19 05:44 - 2020-03-19 05:49 - 012744632 ____C C:\Users\PC\Downloads\kontrola porodnosti.mp4
2020-03-19 05:42 - 2020-03-19 05:42 - 000117503 ____C C:\Users\PC\Downloads\Merkel rúška.jpeg
2020-03-19 05:42 - 2020-03-19 05:42 - 000034961 ____C C:\Users\PC\Downloads\putin europe.jpeg
2020-03-19 05:41 - 2020-03-19 05:41 - 000032045 ____C C:\Users\PC\Downloads\Greta vyzvyly činanov.jpeg
2020-03-19 05:39 - 2020-03-19 05:39 - 002662009 ____C C:\Users\PC\Downloads\WhatsApp Video 2020-03-18 at 15.01.58.mp4
2020-03-18 22:15 - 2020-03-18 23:28 - 2618668659 ____C C:\Users\PC\Downloads\Z 8.epizóda.mp4
2020-03-18 21:10 - 2020-03-18 21:10 - 000000000 ___DC C:\Users\PC\AppData\Roaming\MPC-HC
2020-03-18 20:49 - 2020-03-18 20:50 - 022093771 ____C C:\Users\PC\Desktop\MPC-HC.1.9.1.x64.zip
2020-03-18 16:42 - 2020-03-20 20:47 - 000000000 ___DC C:\Users\PC\AppData\Roaming\dvdcss
2020-03-18 02:35 - 2020-03-18 02:35 - 000001379 _____ C:\Users\Public\Desktop\Skype.lnk
2020-03-18 02:35 - 2020-03-18 02:35 - 000001379 _____ C:\ProgramData\Desktop\Skype.lnk
2020-03-18 02:35 - 2020-03-18 02:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-03-18 02:10 - 2020-03-18 02:11 - 000000000 ___DC C:\Users\PC\AppData\Local\SquirrelTemp
2020-03-18 00:43 - 2020-03-17 10:32 - 029291391 ____C C:\Users\PC\Desktop\FastSave_53.0.zip
2020-03-18 00:42 - 2020-03-17 15:43 - 002661985 ____C C:\Users\PC\Desktop\89698757_1411667312339176_3608939953023043643_n.mp4
2020-03-18 00:42 - 2020-03-17 14:30 - 248329722 ____C C:\Users\PC\Desktop\10000000_207850157098036_551609583589770702_n.mp4
2020-03-18 00:41 - 2020-03-17 14:39 - 002744036 ____C C:\Users\PC\Desktop\Taliani .mp4
2020-03-17 11:01 - 2020-03-21 22:39 - 000000000 ___DC C:\Users\PC\Desktop\bluetooth
2020-03-17 11:01 - 2015-02-26 13:42 - 000051223 ____C C:\Users\PC\Desktop\kontakty.vcf
2020-03-17 10:59 - 2020-03-17 10:59 - 000000000 ___DC C:\Users\PC\Desktop\WhatsApp Images
2020-03-17 10:59 - 2019-10-26 16:50 - 002943764 ____C C:\Users\PC\Desktop\VID-20191026-WA0001.mp4
2020-03-17 10:59 - 2019-06-06 20:38 - 005931059 ____C C:\Users\PC\Desktop\VID-20190606-WA0000.mp4
2020-03-17 10:55 - 2020-03-24 23:00 - 000000000 ___DC C:\Users\PC\Desktop\Screenshots
2020-03-17 10:50 - 2019-11-12 14:55 - 007255014 ____C C:\Users\PC\Desktop\Ringtones.zip
2020-03-17 04:25 - 2020-03-17 05:37 - 2481638283 ____C C:\Users\PC\Downloads\Z 6.epizóda.mp4
2020-03-17 02:49 - 2020-03-17 02:49 - 000000000 ___DC C:\Users\PC\Downloads\Nová položka Dokument Microsoft Wordu (2)_files
2020-03-17 01:24 - 2020-03-17 02:38 - 2524027935 ____C C:\Users\PC\Downloads\Z 7.epizóda.mp4
2020-03-15 01:59 - 2020-03-15 01:59 - 000001716 ____C C:\Users\PC\Documents\s.ini
2020-03-15 01:35 - 2020-03-15 02:00 - 000000000 ____D C:\TEMP
2020-03-14 21:57 - 2020-03-14 21:59 - 003166958 ____C C:\Users\PC\Downloads\88247925_211101080133926_3113110626784772096_n.mp4
2020-03-14 20:04 - 2020-03-14 20:07 - 006770390 ____C C:\Users\PC\Downloads\87771909_191738985256515_5139114904388632576_n.mp4
2020-03-14 19:49 - 2020-03-14 19:54 - 011919488 ____C C:\Users\PC\Downloads\10000000_226529448735879_1706452547503390720_n.mp4
2020-03-14 02:20 - 2020-03-14 02:22 - 004182643 ____C C:\Users\PC\Downloads\Nicholson v Bruseli.mp4
2020-03-11 21:58 - 2020-03-11 21:58 - 001152866 ____C C:\Users\PC\Downloads\opilec.mp4
2020-03-10 20:11 - 2020-03-19 10:18 - 000386857 ____C C:\Users\PC\AppData\LocalLow\chrome_urls.txt
2020-03-10 20:11 - 2020-03-19 10:18 - 000007860 ____C C:\Users\PC\AppData\LocalLow\passwords.txt
2020-03-10 20:11 - 2020-03-19 10:18 - 000002130 ____C C:\Users\PC\AppData\LocalLow\chrome_autofill.txt
2020-03-10 20:11 - 2020-03-09 23:36 - 000094208 ____C C:\Users\PC\AppData\LocalLow\3soLBPh71Y
2020-03-10 20:09 - 2020-03-19 10:18 - 000000000 ___DC C:\Users\PC\AppData\LocalLow\cr6im03b56g32r
2020-03-10 01:04 - 2020-03-10 01:59 - 801141065 ____C C:\Users\PC\Desktop\A.S.K. (Láska) 3.epizóda - titulky.mp4
2020-03-09 23:53 - 2020-03-10 00:50 - 819883979 ____C C:\Users\PC\Desktop\A.S.K. (Láska) 2.epizóda - titulky.mp4
2020-03-09 23:26 - 2020-03-09 23:26 - 020785075 ____C C:\Users\PC\Downloads\video-1577194160.mp4
2020-03-09 23:26 - 2020-03-09 23:26 - 001614829 ____C C:\Users\PC\Downloads\video-1577816702.mp4
2020-03-07 22:11 - 2020-03-07 22:15 - 008508467 ____C C:\Users\PC\Downloads\10000000_508877796483963_3776874221536280576_n.mp4
2020-03-07 20:25 - 2020-03-07 20:26 - 001634554 ____C C:\Users\PC\Downloads\86851709_807202216459971_7768807935303483392_n.mp4
2020-03-07 04:36 - 2020-03-07 04:36 - 000000858 ____C C:\Users\PC\Documents\Vlado Keki - odkaz.lnk
2020-03-06 06:45 - 2020-03-06 06:47 - 635997981 ____C C:\Users\PC\Downloads\💞 Sprawy Sercowe_Gönül İşleri, Odcinek 23, napisy PL 💞.mp4
2020-03-06 06:45 - 2020-03-06 06:46 - 120263390 ____C C:\Users\PC\Downloads\💞 Sprawy Sercowe_Gönül İşleri, Odcinek 23, napisy PL 💞.m4a
2020-03-02 15:00 - 2020-03-02 15:00 - 000000716 ____C C:\Users\PC\Desktop\Obrázky - odkaz.lnk
2020-02-29 16:13 - 2020-02-29 16:13 - 000000679 ____C C:\Users\PC\Downloads\C – odkaz.lnk
2020-02-29 14:52 - 2020-02-29 14:52 - 000620494 ____C C:\Users\PC\Downloads\86411986_200259434693683_8221574196417789952_n.mp4
2020-02-28 16:23 - 2020-02-28 16:23 - 001414314 ____C C:\Users\PC\Downloads\hajzli.mp4
2020-02-28 16:20 - 2020-02-28 16:23 - 007333569 ____C C:\Users\PC\Downloads\Kisko svet.mp4
2020-02-28 10:56 - 2020-02-28 10:56 - 000000000 ____D C:\Program Files (x86)\Intelore
2020-02-28 10:36 - 2020-02-28 10:49 - 000000000 ___DC C:\Users\PC\Downloads\rpc444
2020-02-28 00:20 - 2020-03-21 23:23 - 000000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2020-02-28 00:07 - 2020-03-24 23:37 - 000000000 ___DC C:\Users\PC\Downloads\Compressed
2020-02-27 03:32 - 2020-02-27 03:32 - 000000000 ____D C:\WINDOWS\VDLL.DLL
2020-02-27 03:32 - 2020-02-27 03:32 - 000000000 ____D C:\WINDOWS\SysWOW64\runouce.exe
2020-02-27 03:32 - 2020-02-27 03:32 - 000000000 ____D C:\WINDOWS\rundll16.exe
2020-02-27 03:32 - 2020-02-27 03:32 - 000000000 ____D C:\WINDOWS\RUNDL132.EXE
2020-02-27 03:32 - 2020-02-27 03:32 - 000000000 ____D C:\WINDOWS\logo1_.exe
2020-02-27 03:32 - 2020-02-27 03:32 - 000000000 ____D C:\WINDOWS\logo_1.exe
2020-02-27 03:28 - 2020-02-27 03:32 - 000000050 _____ C:\WINDOWS\Lic.xxx
2020-02-27 03:27 - 2019-10-04 01:03 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TASKMGR.COM
2020-02-27 03:27 - 2019-10-04 01:03 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\T.COM
2020-02-27 03:27 - 2019-02-14 08:28 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\REGEDIT.COM
2020-02-27 03:27 - 2019-02-14 08:28 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\R.COM
2020-02-27 02:40 - 2020-02-27 02:46 - 013652417 ____C C:\Users\PC\Downloads\LOndýn odvrátená tvár.mp4
2020-02-27 02:09 - 2020-02-27 02:10 - 000003442 ____C C:\Users\PC\Desktop\protesty.txt
2020-02-27 01:18 - 2020-03-20 01:18 - 000004170 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582762724
2020-02-24 22:07 - 2020-02-24 22:07 - 000000000 ___DC C:\Users\PC\Documents\dwhelper
2020-02-24 11:26 - 2020-02-24 11:26 - 000045056 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\phantomtap.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-25 00:21 - 2019-11-22 02:21 - 000000000 ___DC C:\Users\PC\Desktop\Cleaner
2020-03-25 00:21 - 2019-02-14 10:41 - 000000000 ___DC C:\Users\PC\AppData\LocalLow\Mozilla
2020-03-25 00:16 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-25 00:12 - 2019-02-14 08:54 - 001547904 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-25 00:12 - 2019-02-07 15:18 - 000655026 _____ C:\WINDOWS\system32\perfh01B.dat
2020-03-25 00:12 - 2019-02-07 15:18 - 000125938 _____ C:\WINDOWS\system32\perfc01B.dat
2020-03-25 00:12 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2020-03-25 00:06 - 2019-07-19 11:45 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-03-25 00:06 - 2019-02-17 17:02 - 000003106 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2020-03-25 00:06 - 2019-02-14 09:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-25 00:06 - 2019-02-04 12:25 - 000000000 ___DC C:\ProgramData\NVIDIA
2020-03-25 00:05 - 2019-02-05 19:28 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-03-25 00:05 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-03-25 00:00 - 2019-12-27 08:11 - 000000696 ____C C:\Users\PC\Desktop\JRT.txt
2020-03-24 23:50 - 2019-02-22 14:34 - 000000000 ___DC C:\Users\PC\AppData\Roaming\DMCache
2020-03-24 23:50 - 2019-02-05 20:45 - 000000000 ___DC C:\Users\PC\AppData\Local\D3DSCache
2020-03-24 23:32 - 2019-02-22 10:59 - 000000000 ___DC C:\ProgramData\TEMP
2020-03-24 23:18 - 2019-02-14 08:48 - 000000000 ___DC C:\Users\PC
2020-03-24 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-24 23:03 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-03-24 23:01 - 2020-01-07 18:07 - 000000000 ___DC C:\Users\PC\Desktop\Nový priečinok (4)
2020-03-24 10:45 - 2019-02-14 08:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-24 00:45 - 2019-03-16 15:56 - 000000000 ___DC C:\Users\PC\dwhelper
2020-03-23 02:04 - 2019-12-17 01:47 - 000001186 ____C C:\Users\PC\Desktop\dwhelper – odkaz.lnk
2020-03-22 23:09 - 2019-08-27 22:53 - 000000000 ___DC C:\Users\PC\AppData\Roaming\WhatsApp
2020-03-22 23:08 - 2019-08-27 22:53 - 000002160 ____C C:\Users\PC\Desktop\WhatsApp.lnk
2020-03-22 22:05 - 2019-03-08 02:58 - 000000000 ___DC C:\Users\PC\Documents\Bandicut
2020-03-22 04:21 - 2019-02-14 10:41 - 000000000 ___DC C:\Users\PC\AppData\Roaming\vlc
2020-03-22 01:39 - 2019-03-02 23:09 - 000000000 ___DC C:\AllokMP3toAMRFolder
2020-03-22 00:53 - 2019-06-17 23:56 - 000000000 ___DC C:\Audio
2020-03-21 23:24 - 2019-03-08 03:42 - 000000000 ____D C:\Program Files (x86)\Wondershare
2020-03-21 22:46 - 2019-02-04 12:12 - 000000000 ____D C:\Program Files\Opera
2020-03-21 22:45 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-21 22:10 - 2019-02-22 18:47 - 000000000 ___DC C:\ProgramData\DVD Shrink
2020-03-21 21:15 - 2019-05-31 09:02 - 000000000 ___DC C:\Users\PC\AppData\Local\CrashDumps
2020-03-21 21:04 - 2019-03-02 23:08 - 000008192 ____C C:\Users\PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-03-21 20:45 - 2019-02-14 09:00 - 000003970 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1549279223
2020-03-21 20:45 - 2019-02-04 12:20 - 000001107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2020-03-21 20:40 - 2019-03-08 03:20 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2020-03-21 05:42 - 2019-02-25 14:45 - 000000000 ___DC C:\Users\PC\AppData\Roaming\uTorrent
2020-03-21 03:33 - 2019-11-24 01:14 - 000003458 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-21 03:33 - 2019-11-24 01:14 - 000003334 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-20 17:49 - 2019-02-22 14:34 - 000000000 ___DC C:\Users\PC\Downloads\Video
2020-03-20 01:27 - 2019-07-31 10:10 - 000000000 ___DC C:\Users\PC\Desktop\Nový priečinok (3)
2020-03-20 01:05 - 2019-02-14 08:44 - 000547856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-03-19 20:49 - 2019-11-24 01:14 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-19 10:33 - 2019-02-05 19:29 - 000000000 ____D C:\ProgramData\Package Cache
2020-03-18 21:11 - 2019-02-22 13:33 - 000000000 __RDC C:\Users\PC\Desktop\Nastroje_soft
2020-03-18 21:04 - 2019-02-22 11:26 - 000000000 ___DC C:\Users\PC\Desktop\Ikony
2020-03-18 02:34 - 2019-10-10 03:17 - 000000000 ____D C:\Program Files (x86)\bookingDesktopApp
2020-03-18 02:33 - 2019-10-10 03:17 - 000000000 ____D C:\Program Files (x86)\Booking
2020-03-18 02:11 - 2019-08-27 22:53 - 000000000 ___DC C:\Users\PC\AppData\Local\WhatsApp
2020-03-18 00:39 - 2019-05-02 08:47 - 000000000 ___DC C:\Users\PC\Desktop\Ringtones
2020-03-17 10:14 - 2019-06-05 02:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-03-17 10:14 - 2019-02-04 12:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-03-17 00:39 - 2020-01-22 22:33 - 000004552 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-03-17 00:39 - 2019-02-14 09:45 - 000000000 ___DC C:\Users\PC\AppData\Local\Adobe
2020-03-17 00:39 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-03-17 00:39 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-03-15 02:31 - 2019-03-03 16:23 - 000000000 ___DC C:\Users\PC\AppData\Local\SmartView2
2020-03-15 00:58 - 2019-02-22 18:39 - 000000000 ___DC C:\Users\PC\Documents\Easy Screen Capture
2020-03-14 16:52 - 2019-07-19 11:05 - 000004540 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-03-14 00:06 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-03-14 00:05 - 2019-02-04 12:22 - 000000000 ____D C:\Program Files\Microsoft Office
2020-03-13 21:13 - 2019-11-26 03:50 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-03-10 20:05 - 2019-10-08 10:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-03-09 01:01 - 2019-10-08 10:23 - 000001278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-03-06 07:01 - 2019-06-08 16:49 - 000000000 ___DC C:\Video
2020-02-29 11:15 - 2019-09-03 02:46 - 000003327 ____C C:\Users\PC\Desktop\maily.txt
2020-02-28 00:07 - 2019-02-22 14:34 - 000000000 ___DC C:\Users\PC\AppData\Roaming\IDM
2020-02-27 23:44 - 2019-02-04 12:06 - 000000000 ___DC C:\Users\PC\AppData\Local\Packages
2020-02-27 23:35 - 2019-03-03 14:25 - 000000000 ___DC C:\Users\PC\AppData\Roaming\XnView
2020-02-27 23:35 - 2019-02-24 14:09 - 000000000 ___DC C:\Users\PC\AppData\Roaming\VSO
2020-02-27 23:35 - 2019-02-24 14:09 - 000000000 ___DC C:\ProgramData\VSO
2020-02-27 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-02-27 23:12 - 2019-02-20 17:17 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-02-27 23:12 - 2019-02-04 12:15 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2020-02-27 03:49 - 2019-02-22 15:07 - 000114232 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-02-27 03:49 - 2019-02-22 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-02-27 03:49 - 2019-02-22 15:07 - 000000000 ____D C:\Program Files (x86)\Java
2020-02-27 03:38 - 2019-09-01 12:30 - 000000000 ___DC C:\Users\PC\AppData\Local\ESET
2020-02-27 03:29 - 2018-04-12 00:38 - 000000177 _____ C:\WINDOWS\win.ini
2020-02-26 00:50 - 2019-11-02 17:23 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-02-24 10:07 - 2019-03-03 14:24 - 000000000 ____D C:\Program Files (x86)\XnView
2020-02-24 09:55 - 2019-05-22 14:23 - 000000000 ___DC C:\Users\PC\Desktop\Videoprojekty

==================== Files in the root of some directories ========

1601-01-03 21:26 - 1601-01-03 21:26 - 000181760 ____C (Microsoft Corporation) C:\Users\PC\IaUmOeA.exe
2019-03-02 23:08 - 2020-03-21 21:04 - 000008192 ____C () C:\Users\PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-02-24 16:27 - 2019-02-24 16:27 - 000000003 ____C () C:\Users\PC\AppData\Local\wbem.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================