Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-11-2020
Ran by Anjela (administrator) on ANJELA-PC (LENOVO 80G0) (02-11-2020 20:31:58)
Running from C:\Users\Anjela\Desktop
Loaded Profiles: Anjela
Platform: Windows 8.1 Connected (Update) (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Biometric and Context Agent -> Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-698779785-4081944849-852420755-1001\...\Run: [Viber] => C:\Users\Anjela\AppData\Local\Viber\Viber.exe [42390032 2020-07-25] (Viber Media S.à r.l. -> Viber Media S.ֳ  r.l.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\86.0.4240.183\Installer\chrmstp.exe [2020-11-02] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2016-07-22] (McAfee, Inc. -> McAfee, Inc.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07C96BE5-49CD-4104-BBE0-29F015372CD0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-21] (Adobe Inc. -> Adobe)
Task: {20117EB2-DC7E-468F-B337-F742D96251EA} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {2ADA1BB0-FC04-476E-93A6-3FC0E2B700B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-02] (Google LLC -> Google LLC)
Task: {36EEDB6B-0432-48DE-AC83-C0FC20A20F7C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {498B1904-F00A-40A9-8140-77D166C8D786} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {498B1904-F00A-40A9-8140-77D166C8D786} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {498B1904-F00A-40A9-8140-77D166C8D786} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\windows\system32\GWX\GWXDetector.exe [358400  [358400 2016-05-19]] (Microsoft Windows -> Microsoft Corporation)
Task: {49BE71AF-163B-46C0-AAD8-6660A2DE0EA5} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {49BE71AF-163B-46C0-AAD8-6660A2DE0EA5} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\windows\system32\GWX\GWXDetector.exe [358400  [358400 2016-05-19]] (Microsoft Windows -> Microsoft Corporation)
Task: {6AEC7020-7BF5-48DA-B8A3-71C3C26A20B8} - System32\Tasks\update-S-1-5-21-698779785-4081944849-852420755-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {6F1CC49E-ECC9-4042-8C00-8A820B06DE80} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {77A4BFEF-6902-4110-98C3-DE8E9B2085E4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {7F465419-3F9E-4549-879C-5219EE9F28F4} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {843CD38C-683B-448D-A259-0FE39EE0AB6F} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe
Task: {847551AB-6132-4025-939D-FA7F1F885708} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {8CBC170A-007C-4B0D-8222-4045B2B155C3} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {8DC9BF35-0659-44E7-8EB0-37B024FE9B8E} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {8FB82285-18C5-4837-8393-7D2C0F9920FF} - System32\Tasks\Opera scheduled Autoupdate 1518782216 => C:\Users\Anjela\AppData\Local\Programs\Opera\launcher.exe
Task: {905B454D-D8C6-4D51-B05C-0B40B512D391} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
Task: {92313156-57E2-41C8-A43C-57E10F64621B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17744 2016-05-29] (LENOVO -> Lenovo)
Task: {92C0C10F-33F3-46EC-A3A7-CA671F284B6F} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
Task: {92C0C10F-33F3-46EC-A3A7-CA671F284B6F} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\windows\system32\GWX\GWXDetector.exe [358400  [358400 2016-05-19]] (Microsoft Windows -> Microsoft Corporation)
Task: {9A7DAC66-77FF-42B8-B978-5EF27FB35B70} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-02] (Google LLC -> Google LLC)
Task: {9FD5232F-6364-496A-9036-DFE9298FD268} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {9FD5232F-6364-496A-9036-DFE9298FD268} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\windows\system32\GWX\GWXDetector.exe [358400  [358400 2016-05-19]] (Microsoft Windows -> Microsoft Corporation)
Task: {A41A4EA8-312F-4F98-B9FD-29E0BA17ADAB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {AF8686E8-363E-4A42-ACB7-9EF31F1DFE33} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {B0DF33ED-3163-454B-A2FF-6FE612B843CE} - System32\Tasks\{28830275-86BE-4664-AD2E-801BB3D7F6EB} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.10.0.101/cs/abandoninstall?source=lightinstaller&page=tsMain
Task: {CC2F5E47-8ACD-4416-AE45-D9534DD5A245} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4496488 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {EDF3FAB4-87D8-4CC7-AB4B-92A16F557B76} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1E3D452-ECC8-4EEC-9807-8D7F0C0D9112} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {F637C0D5-A33B-4E26-9E78-E4134965B22F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {F69B827B-230F-47BD-BF09-3C479FFB3EBC} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {FA83776F-F9AD-4437-869E-2EC297BACDA0} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-21] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\update-S-1-5-21-698779785-4081944849-852420755-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-698779785-4081944849-852420755-1001] => ucom0689:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{6C97AADE-B40C-4CFD-A449-0955460EA86D}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{AAD8D9C2-84FE-4F71-8B31-7006CD277728}: [DhcpNameServer] 193.84.47.100 193.84.47.101

FireFox:
========
FF DefaultProfile: ghyfis7q.default-1454235040242-1580653240430
FF ProfilePath: C:\Users\Anjela\AppData\Roaming\Mozilla\Firefox\Profiles\ghyfis7q.default-1454235040242-1580653240430 [2020-11-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-21] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-21] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Anjela\AppData\Local\Google\Chrome\User Data\Default [2020-11-02]
CHR Extension: (Prezentace) - C:\Users\Anjela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-02]
CHR Extension: (Dokumenty) - C:\Users\Anjela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Anjela\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\Anjela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-02]

Opera: 
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-21] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [130008 2014-01-22] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-06-29] (Intel(R) Biometric and Context Agent -> Intel(R) Corporation)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-11-01] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-28] (Malwarebytes Inc -> Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6634224 2018-02-02] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908256 2016-07-27] (McAfee, Inc. -> McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-07-27] (McAfee, Inc. -> McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-07-27] (McAfee, Inc. -> McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation -> Microsoft Corporation)
S2 RalinkRegistryWriter; "C:\Program Files (x86)\OSTotoHotspot\RaRegistry.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [37152 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [206408 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [236112 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [195664 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [60496 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [42784 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [175720 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\windows\System32\drivers\aswNetHub.sys [518664 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [109280 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [84856 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [851608 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [470912 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [217336 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [326928 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 btmaux; C:\windows\system32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [1411384 2013-11-07] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 HtcVCom32; C:\windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated) [File not signed]
S3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248968 2020-10-28] (Malwarebytes Inc -> Malwarebytes)
U5 NdisImPlatform; C:\Windows\System32\Drivers\NdisImPlatform.sys [126464 2016-03-12] (Microsoft Windows -> Microsoft Corporation)
R3 SNP2UVC; C:\windows\system32\DRIVERS\snp2uvc.sys [2853400 2014-01-24] (Sonix Technology CO., LTD -> Sonix Co. Ltd.)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Windows -> Microsoft Corporation)
S3 CnxtHdAudService; \SystemRoot\system32\drivers\CHDRT64.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\SDSDefs\20161103.001\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\SDSDefs\20161103.001\EX64.SYS [X]
S3 SmbDrvI; \SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-02 20:31 - 2020-11-02 20:35 - 000020713 _____ C:\Users\Anjela\Desktop\FRST.txt
2020-11-02 20:21 - 2020-11-02 20:21 - 000002273 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-02 20:21 - 2020-11-02 20:21 - 000000000 ____D C:\Program Files\Google
2020-11-02 20:19 - 2020-11-02 20:19 - 000003386 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-02 20:19 - 2020-11-02 20:19 - 000003258 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-02 20:19 - 2020-11-02 20:19 - 000000000 ____D C:\Program Files (x86)\Google
2020-11-02 20:06 - 2020-11-02 20:06 - 001317080 _____ (Google LLC) C:\Users\Anjela\Desktop\ChromeSetup.exe
2020-11-02 18:13 - 2020-11-02 19:01 - 000000000 ____D C:\Users\Anjela\AppData\Local\ČSOB_Pojišťovna,_a.s
2020-11-02 18:13 - 2020-11-02 18:13 - 000001681 _____ C:\Users\Public\Desktop\ČSOBP Kalkulátory.lnk
2020-11-02 18:13 - 2020-11-02 18:13 - 000001681 _____ C:\ProgramData\Desktop\ČSOBP Kalkulátory.lnk
2020-11-02 18:13 - 2020-11-02 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ČSOBP Kalkulátory
2020-11-02 18:12 - 2020-11-02 18:12 - 000000000 ____D C:\Aplikace
2020-11-02 18:01 - 2020-11-02 18:01 - 000000000 ____D C:\Users\Anjela\AppData\Local\MetLife
2020-11-02 17:57 - 2020-11-02 18:04 - 000000000 ____D C:\Users\Anjela\AppData\Local\eModel
2020-11-02 17:57 - 2020-11-02 17:57 - 000002209 _____ C:\Users\Anjela\Desktop\eModel - MetLife.lnk
2020-11-02 17:57 - 2020-11-02 17:57 - 000000000 ____D C:\Users\Anjela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetLife
2020-11-02 17:57 - 2020-11-02 17:57 - 000000000 ____D C:\Users\Anjela\AppData\Local\SquirrelTemp
2020-11-01 15:13 - 2020-11-01 15:14 - 008447152 _____ (Malwarebytes) C:\Users\Anjela\Desktop\adwcleaner_8.0.8.exe
2020-10-30 14:28 - 2020-11-02 20:30 - 002298368 _____ (Farbar) C:\Users\Anjela\Desktop\FRST64.exe
2020-10-29 14:39 - 2020-10-29 14:39 - 000000000 ____D C:\Users\Anjela\AppData\Roaming\Zoom
2020-10-29 14:39 - 2020-10-29 14:39 - 000000000 ____D C:\Users\Anjela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-10-28 12:40 - 2020-10-28 12:40 - 000248968 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2020-10-26 10:51 - 2020-10-26 10:50 - 000339552 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2020-10-26 10:51 - 2020-10-26 10:50 - 000217336 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2020-10-26 10:51 - 2020-10-26 10:50 - 000175720 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2020-10-22 11:22 - 2020-11-02 19:10 - 000000000 ____D C:\Users\Anjela\Desktop\synergy

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-02 20:34 - 2020-09-06 20:29 - 000000000 ____D C:\FRST
2020-11-02 20:33 - 2015-09-12 21:34 - 000003594 _____ C:\windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-698779785-4081944849-852420755-1001
2020-11-02 20:29 - 2015-09-12 21:35 - 000000000 ___DO C:\Users\Anjela\OneDrive
2020-11-02 20:27 - 2013-08-22 15:45 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-11-02 20:26 - 2015-09-12 21:42 - 000000000 ____D C:\ProgramData\AVAST Software
2020-11-02 20:17 - 2013-08-22 14:36 - 000000000 ____D C:\windows\Inf
2020-11-02 20:09 - 2015-09-12 21:40 - 000003980 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{4A35C363-7C05-420B-ADA4-99E2D5D0D461}
2020-11-02 19:51 - 2020-09-28 09:34 - 000000410 _____ C:\windows\Tasks\update-sys.job
2020-11-02 18:01 - 2020-09-28 09:34 - 000000410 _____ C:\windows\Tasks\update-S-1-5-21-698779785-4081944849-852420755-1001.job
2020-11-02 17:56 - 2015-09-12 21:27 - 000000000 ____D C:\Users\Anjela\AppData\Local\Packages
2020-11-01 21:51 - 2013-08-22 16:36 - 000000000 ____D C:\windows\system32\NDF
2020-11-01 21:35 - 2018-06-12 19:22 - 000000000 ____D C:\Users\Anjela\AppData\LocalLow\Temp
2020-11-01 21:30 - 2013-08-22 16:36 - 000000000 ___HD C:\windows\system32\GroupPolicy
2020-11-01 21:30 - 2013-08-22 16:36 - 000000000 ____D C:\windows\SysWOW64\GroupPolicy
2020-11-01 00:38 - 2020-09-28 09:34 - 000003280 _____ C:\windows\system32\Tasks\update-sys
2020-11-01 00:38 - 2020-09-28 09:34 - 000003260 _____ C:\windows\system32\Tasks\update-S-1-5-21-698779785-4081944849-852420755-1001
2020-11-01 00:38 - 2015-12-04 14:03 - 000000000 ____D C:\windows\system32\Tasks\AVAST Software
2020-11-01 00:38 - 2015-09-13 00:58 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2020-10-30 13:54 - 2020-09-28 09:34 - 000000059 _____ C:\Users\Anjela\AppData\Local\UserProducts.xml
2020-10-30 13:54 - 2020-09-28 09:34 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2020-10-30 13:17 - 2015-09-12 21:24 - 000000000 ____D C:\Users\Anjela
2020-10-30 13:17 - 2013-08-22 14:25 - 000262144 ___SH C:\windows\system32\config\BBI
2020-10-30 12:17 - 2017-03-18 11:51 - 000004168 _____ C:\windows\system32\Tasks\Avast Emergency Update
2020-10-30 12:13 - 2015-11-01 11:21 - 000000000 ____D C:\windows\Minidump
2020-10-30 12:13 - 2015-09-13 05:23 - 000191082 ____N C:\windows\Minidump\103020-40000-01.dmp
2020-10-30 09:12 - 2020-08-02 15:21 - 000000000 ____D C:\Users\Anjela\Desktop\English Emka
2020-10-28 12:40 - 2020-09-06 18:02 - 000001987 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-28 12:40 - 2020-09-06 18:02 - 000001975 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-28 12:40 - 2020-09-06 18:02 - 000001975 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-28 12:39 - 2020-09-06 18:02 - 000153312 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2020-10-27 09:20 - 2014-11-01 04:12 - 000968046 _____ C:\windows\system32\perfh005.dat
2020-10-27 09:20 - 2014-11-01 04:12 - 000232670 _____ C:\windows\system32\perfc005.dat
2020-10-27 09:20 - 2014-03-18 10:53 - 002059262 _____ C:\windows\system32\PerfStringBackup.INI
2020-10-26 10:52 - 2020-08-02 15:10 - 000518664 _____ (AVAST Software) C:\windows\system32\Drivers\aswNetHub.sys
2020-10-26 10:50 - 2020-08-02 15:10 - 000037152 _____ (AVAST Software) C:\windows\system32\Drivers\aswArDisk.sys
2020-10-26 10:50 - 2019-06-13 21:12 - 000109280 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2020-10-26 10:50 - 2019-01-17 18:42 - 000236112 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsdriver.sys
2020-10-26 10:50 - 2019-01-17 18:42 - 000195664 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsh.sys
2020-10-26 10:50 - 2019-01-17 18:42 - 000060496 _____ (AVAST Software) C:\windows\system32\Drivers\aswbuniv.sys
2020-10-26 10:50 - 2018-10-25 17:41 - 000042784 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2020-10-26 10:50 - 2017-11-22 14:00 - 000206408 _____ (AVAST Software) C:\windows\system32\Drivers\aswArPot.sys
2020-10-26 10:50 - 2016-05-03 17:16 - 000851608 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2020-10-26 10:50 - 2016-05-03 17:16 - 000470912 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2020-10-26 10:50 - 2016-05-03 17:16 - 000326928 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2020-10-26 10:50 - 2016-05-03 17:16 - 000084856 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2020-10-23 11:55 - 2015-09-27 19:40 - 000000000 ____D C:\Users\Anjela\Desktop\Fotky
2020-10-03 10:57 - 2016-11-05 21:22 - 000000000 ____D C:\Users\Anjela\AppData\Local\CrashDumps

==================== Files in the root of some directories ========

2016-01-23 21:15 - 2016-01-23 21:16 - 000001197 _____ () C:\Users\Anjela\AppData\Roaming\dj.log
2016-10-26 15:15 - 2016-10-26 15:35 - 000000600 _____ () C:\Users\Anjela\AppData\Roaming\winscp.rnd
2017-12-14 16:59 - 2017-12-14 16:59 - 000006635 _____ () C:\Users\Anjela\AppData\Local\recently-used.xbel
2015-09-25 10:44 - 2016-02-27 11:32 - 000007607 _____ () C:\Users\Anjela\AppData\Local\Resmon.ResmonCfg
2020-09-28 09:34 - 2020-09-28 09:34 - 000000003 _____ () C:\Users\Anjela\AppData\Local\updater.log
2020-09-28 09:34 - 2020-10-30 13:54 - 000000059 _____ () C:\Users\Anjela\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-10-28 18:35
==================== End of FRST.txt ========================