Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-12-2020
Ran by Vlado (administrator) on DESKTOP-2QCS2VS (ASUSTeK COMPUTER INC. X556UQK) (04-12-2020 08:37:30)
Running from C:\Users\Vlado\Desktop
Loaded Profiles: Vlado
Platform: Windows 10 Home Version 2004 19041.630 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acer Incorporated -> ) C:\Program Files\DriverSetupUtility\FUB\LiveUpdateChecker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.621_none_e7694895260e0b6d\TiWorker.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-06-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 0
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32281272 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Run: [Opera Browser Assistant] => C:\Users\Vlado\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3565080 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Policies\Explorer: [HideSCAHealth] 0
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\yowindow.scr [859080 2017-03-23] (RepkaSoft -> repkasoft)
HKLM\Software\...\AppCompatFlags\Custom\Df.exe: [{7d3898dd-a465-4240-86f0-10de97a908e3}.sdb] -> [SDB] Delta Force
HKLM\Software\...\AppCompatFlags\InstalledSDB\{7d3898dd-a465-4240-86f0-10de97a908e3}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{7d3898dd-a465-4240-86f0-10de97a908e3}.sdb [2017-03-22]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-17] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Image Transfer Utility.lnk [2019-03-09]
ShortcutTarget: Image Transfer Utility.lnk -> C:\Program Files (x86)\Canon\ImageTransferUtility\ImageTransferUtility.exe (CANON INC.) [File not signed]
Startup: C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\YoWindow.lnk [2019-11-15]
ShortcutTarget: YoWindow.lnk -> C:\Program Files (x86)\YoWindow\yowindow.exe (RepkaSoft -> Repkasoft)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03378697-9878-4752-9EF5-AD9713DB721D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19786024 2016-02-23] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {09D1642F-E1C1-4676-BFF8-778903218A5C} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [610120 2020-09-23] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {0EA95C1C-B277-4FE9-AEF0-3F98A19B46D3} - System32\Tasks\Opera scheduled Autoupdate 1586585190 => C:\Users\Vlado\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software)
Task: {14D34F26-FE2D-4685-B793-72B890667251} - System32\Tasks\Opera scheduled Autoupdate 1604600915 => C:\Users\Guest home\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-10] (Opera Software AS -> Opera Software)
Task: {216B0568-5959-4F8F-B0A2-9F6CDC2ACA65} - System32\Tasks\CorelUpdateHelperTask-1766BB96E0164782B62390DD33A75324 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe
Task: {2BA9591B-6006-4D8D-87BB-664E9D1790A9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {352BFDFA-49ED-4093-BAE3-C9E19CB02B81} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {3C2B8BED-3817-41E1-89C1-C3CED0B05954} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {44079221-69C8-4CAC-AB43-156B3A1579AF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {4498B34D-802E-42D9-96DE-D50B6F8526DA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A4A512C-2BED-4657-B4B9-231276E86408} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {4FD4EC8B-3CD9-47CB-BED0-D8F6385E68B9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50019E07-D456-4C67-8D44-902C2ACDF196} - System32\Tasks\Opera scheduled assistant Autoupdate 1604600923 => C:\Users\Guest home\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-10] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Guest home\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {50F1031C-F553-4E25-AEF9-DFD5ED448C7C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {55554FC4-0E9E-4541-81B1-D20BDD14EEBF} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-12] (Adobe Inc. -> Adobe)
Task: {5EDFED08-AB9D-4934-94A8-A2902215CB6B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E96D13A-E713-4490-9F8F-36302A65D1A5} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {6FC73785-91C4-4B10-B4D6-42A6889EEFF1} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {78890DA2-8BC2-4B37-9538-70468094AF65} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {78A2B99F-1A19-4E89-8366-00A627D84BE4} - System32\Tasks\Opera scheduled assistant Autoupdate 1586585197 => C:\Users\Vlado\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Vlado\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {78A4E3BC-08DD-4FC5-B4C1-08143CF3F9CF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82472771-EF8C-444D-8C8F-ADA33676AC7F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83294D31-F486-46EC-9127-8848EF567D23} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1484288 2000-01-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8BD7E802-62F9-4AB0-A1EB-70CBE299CF22} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8C9259AD-C79D-4EA1-973C-1FFDE431A66A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9D965108-508B-46FD-9A9D-024FF1E07AFE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {9F4CF6F8-2E62-46FB-B25E-7F6046717389} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1484288 2000-01-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {A0D6F61A-D834-4A6D-B176-C07B8CD81955} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-12] (Adobe Inc. -> Adobe)
Task: {A9B7CFBA-F85B-4743-AFAB-8EC7F66D29B7} - System32\Tasks\SmartGameBooster SkipUAC (Vlado) => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\SgbMain.exe
Task: {AD9F14F2-EEF2-4228-A213-F4E249080F65} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26781880 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BC8DF612-B311-4083-9483-A94E164DC7DA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BDE0FD31-BF70-4D2E-AB98-D73111745841} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {BEDA3B9F-CFC0-4D19-BD97-EC66569E6074} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BF458E98-F92A-4AF7-A44C-4FF8B8438F58} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {C29CAE5F-F0A8-4BC4-918B-8788C27F024D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [670928 2020-11-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {C525586B-BAE3-4E56-BA50-B8C9E6157880} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-96550828-3074443609-3424243486-1004 => C:\Users\Vlado\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {D712CFAC-20CF-4878-B140-0BD5256B9CF1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
Task: {D81FF288-7101-479D-A50C-96F80DAFDC0C} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
Task: {D9CEFBBF-2DF9-4667-B568-F7036C2886D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
Task: {DC0283EC-C599-40DE-9572-E7D687C639CF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E4EEA53E-0D97-4539-B848-D833A1640C09} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E897D035-0748-46BC-8B0B-40DCBC4080C5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {F07B23B3-90DE-46B1-8B76-1A876FCBD6DA} - System32\Tasks\Mozilla\Firefox Default Browser Agent A2874C62D2997EFF => C:\Users\Guest home\AppData\Local\Mozilla Firefox\default-browser-agent.exe [660688 2020-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {F63C54FE-5AE1-44F9-8DCE-B65C7A9AFC1C} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2331 2015-06-22] () [File not signed]
Task: {FE076CAC-6B80-4612-9331-006FE0059C4C} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{52c5679a-365b-4719-b7b8-03ef00295e7a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{f1332a8b-2f5b-4551-8031-18845be03446}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF DefaultProfile: vns5rwbc.default
FF ProfilePath: C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default [2020-12-04]
FF user.js: detected! => C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\user.js [2018-10-12]
FF Homepage: Mozilla\Firefox\Profiles\vns5rwbc.default -> www.shmu.sk/
FF Extension: (Facebook Container) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\@contain-facebook.xpi [2020-10-03]
FF Extension: (AdGuard blokovač reklamy) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\adguardadblocker@adguard.com.xpi [2020-11-19]
FF Extension: (Browsec VPN - Free VPN for Firefox) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\browsec@browsec.com.xpi [2020-11-03]
FF Extension: (Forecastfox (fix version)) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\forecastfox@s3_fix_version.xpi [2020-11-23]
FF Extension: (To Google Translate) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-11-11]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2020-11-23]
FF Extension: (Kaspersky Protection) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com.xpi [2020-11-06]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\sp@avast.com.xpi [2020-07-12]
FF Extension: (uBlock Origin) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\uBlock0@raymondhill.net.xpi [2020-11-20]
FF Extension: (Worldwide Radio) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\worldwide@radio.xpi [2020-05-15]
FF Extension: (Avast Online Security) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\wrc@avast.com.xpi [2020-07-12]
FF Extension: (Autumn in the Mountains) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{106bd4d1-70c5-437b-9594-2d1de52c59d7}.xpi [2020-04-21]
FF Extension: (Autumn by CP) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{14e8938b-08f9-498b-9d1d-d2be642803b4}.xpi [2020-10-03]
FF Extension: (November's Deer by M♥Donna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{22887dcd-d1d2-4bd9-86a5-1a956e0fcc60}.xpi [2020-11-26]
FF Extension: (Halloween Witching Hour - animated) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{35825ba7-27b6-40bf-91bc-eb7baf6d39c6}.xpi [2020-04-21]
FF Extension: (Automne en couleurs - Autumn Colours) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{3c10252d-4881-4012-b790-2f09297a3a10}.xpi [2020-10-03]
FF Extension: (Best Bright Christmas by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{3ce68e94-0685-4b09-84c0-0d2cff4301a1}.xpi [2020-04-21]
FF Extension: (Frost-скреж) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{48380a38-0657-4c71-ab5e-f2d302c1a4a1}.xpi [2020-04-21]
FF Extension: (My Garden Tulips) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{4b25dc41-14f4-46c9-b0da-14bc60016100}.xpi [2020-05-15]
FF Extension: (Bird for May) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{4fd7ea0a-fd7a-4591-8d97-985d48b6a2fe}.xpi [2020-04-21]
FF Extension: (autumn path) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{535071e4-c2fd-4292-9006-21d2ac08869d}.xpi [2020-10-03]
FF Extension: (November Rain) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{6da92269-1a57-428e-bd04-0e5109120663}.xpi [2020-11-26]
FF Extension: (Autumn Morning Serenity by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{6f013887-2c7e-4c48-bea9-082291bc66c7}.xpi [2020-09-10]
FF Extension: (C.E. Spring Mountain Lake) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{708258fe-6c71-421e-8b84-2f217b50538c}.xpi [2020-05-06]
FF Extension: (Fresh Spring by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{73c810a8-1c4b-4767-b6e4-31da45365d81}.xpi [2020-07-19]
FF Extension: (Sunflower Honey Bee) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{80496d75-4e04-4bc8-b4a4-f4c2087fb58b}.xpi [2020-04-21]
FF Extension: (Sakura Blossoms & Birds by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{82f753d5-3a7c-4b9e-9bd3-675331e8250f}.xpi [2020-07-19]
FF Extension: (May Apple) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{9e894d32-ea7c-4ec6-a894-82c8d94862ea}.xpi [2020-05-15]
FF Extension: (Snowing on Bird) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{a2effc89-7b4b-4ef1-9316-05270fea7fc9}.xpi [2020-04-21]
FF Extension: (transparent amber leaves) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{a4502e6b-70ff-4a12-bcd4-7deaac9cbdb2}.xpi [2020-10-05]
FF Extension: (Hay After Harvest) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{ad1a7ca0-8f26-4051-af31-f47e55ab3293}.xpi [2020-08-31]
FF Extension: (Autumn Equinox) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{bfc42827-67f0-409d-921c-d4198ce215a7}.xpi [2020-04-21]
FF Extension: (Wheat Sky) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{ca71d2c0-4472-4ebc-8fec-d11e84d62f0b}.xpi [2020-04-21]
FF Extension: (ANIMATED White Christmas) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{cf5dfd30-5846-42f8-8701-78eec9ca389e}.xpi [2020-04-21]
FF Extension: (Spring Singer) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{cfaa60c2-536c-4035-b23b-3b10d9517577}.xpi [2020-07-19]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-11-17]
FF Extension: (Harvest Time by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{df56c75e-95dd-4827-b515-559124a442ee}.xpi [2020-08-28]
FF Extension: (Sakura Sunlight by M♥Donna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{e292d5d0-f3c8-45d5-b12e-6731ca852f7c}.xpi [2020-05-23]
FF Extension: (Thunderstorm by M♥Donna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{e453c6be-722b-4d96-a077-378d9f4b30cd}.xpi [2020-07-19]
FF Extension: (Forest in Winter) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{ebbf909c-010a-4f5a-aca7-9eef912b3a97}.xpi [2020-04-21]
FF Extension: (Northern Lake by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{fcebb804-5eb9-43d9-a12a-30f6ca1b9b1b}.xpi [2020-08-02]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-11-06] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-11-06] <==== ATTENTION

Chrome: 
=======
CHR Profile: C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default [2020-11-12]
CHR HomePage: Default -> hxxp://www.shmu.sk/
CHR StartupUrls: Default -> "hxxp://www.shmu.sk/"
CHR Extension: (Prezentácie) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-22]
CHR Extension: (Dokumenty) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-22]
CHR Extension: (Disk Google) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-30]
CHR Extension: (YouTube) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-22]
CHR Extension: (Adblock pre Youtube™) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-10-30]
CHR Extension: (Tabuľky) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-22]
CHR Extension: (Full Screen Weather) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2019-10-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-30]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-10-30]
CHR Extension: (Christmas Tree and Fireplace [LSP]) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhfeikhcmipmmnkbggecdibdoeijcklm [2019-12-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-30]
CHR Extension: (Chrome Media Router) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-30]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

Opera: 
=======
OPR Extension: (AdBlock) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2018-08-23]
OPR Extension: (AdBlocker for YouTube™) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\cgdogbijachehheddakopmfjahhgmmma [2019-12-23]
OPR Extension: (Adblock for Youtube™) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-10-11]
OPR Extension: (Dark theme for new tab page and all websites) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\egopeokecbgdiiofbemdgbofafjepang [2020-10-30]
OPR Extension: (Rich Hints Agent) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-24]
OPR Extension: (Install Chrome Extensions) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2019-12-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-12] (Adobe Inc. -> Adobe)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-08-11] (Mixbyte Inc -> Freemake)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
S2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-03-02] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-02] (Intel Corporation) [File not signed]
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-09-23] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2019-11-23] (Even Balance, Inc. -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [22656 2016-02-23] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [143856 2017-04-11] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [659768 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1341232 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [244768 2020-12-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998808 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [257208 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [310232 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [117456 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [207352 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [233368 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-31] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-31] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-04 08:37 - 2020-12-04 08:39 - 000038608 _____ C:\Users\Vlado\Desktop\FRST.txt
2020-12-04 08:37 - 2020-12-04 08:37 - 000000000 ____D C:\Users\Vlado\Desktop\FRST-OlderVersion
2020-11-27 20:16 - 2020-11-27 20:16 - 004594522 _____ C:\Users\Vlado\Desktop\Facebook.html
2020-11-27 20:13 - 2020-11-27 20:13 - 000000000 ____D C:\Users\Vlado\Desktop\Facebook_subory
2020-11-21 10:09 - 2020-11-21 10:09 - 000004510 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1604600923
2020-11-21 10:05 - 2020-11-21 10:05 - 000000000 ____D C:\Users\Guest home\AppData\Local\Kaspersky Lab
2020-11-17 20:47 - 2020-11-20 18:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-11-17 12:13 - 2020-11-17 12:13 - 000017348 _____ C:\Users\Vlado\Downloads\[SkT]Pozemstan___The_Man_from_Earth_(2007)(CZ)_=_CSFD_82%.torrent
2020-11-15 06:33 - 2019-10-30 07:15 - 000168976 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2020-11-15 06:33 - 2019-10-30 07:15 - 000141840 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2020-11-15 06:33 - 2019-10-30 07:15 - 000136720 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2020-11-15 06:32 - 2019-10-30 07:15 - 000281616 _____ C:\WINDOWS\system32\igfxCPL.cpl
2020-11-15 06:32 - 2019-10-30 04:16 - 000212464 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2020-11-15 06:32 - 2019-10-30 04:16 - 000184144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2020-11-14 23:04 - 2020-11-14 23:04 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-14 23:02 - 2020-11-14 23:02 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-14 23:01 - 2020-11-14 23:01 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-14 23:00 - 2020-11-14 23:00 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-14 23:00 - 2020-11-14 23:00 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-12 20:16 - 2020-11-12 20:16 - 000453905 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20201112-201641.backup
2020-11-12 20:16 - 2020-10-30 22:37 - 000453905 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20201112-201619.backup
2020-11-06 23:21 - 2020-11-06 23:21 - 000321618 _____ C:\Users\Vlado\Nepomenovaný projekt.osp
2020-11-06 23:21 - 2020-11-06 23:21 - 000000000 ____D C:\Users\Vlado\Nepomenovaný projekt_assets
2020-11-06 19:31 - 2020-11-12 17:25 - 000004370 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-11-06 19:27 - 2020-11-06 19:27 - 000073753 _____ C:\Users\Vlado\Downloads\[SkT]Dumbo_(2019)(CZ_SK)_=_CSFD_64%.torrent
2020-11-06 19:24 - 2020-11-06 19:24 - 000035656 _____ C:\Users\Vlado\Downloads\[SkT]Dumbo_(2019)(CZ_EN)[720p]_=_CSFD_64%.torrent
2020-11-06 18:46 - 2020-11-06 18:46 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm
2020-11-06 18:46 - 2020-11-06 18:46 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm
2020-11-06 18:46 - 2020-11-06 18:46 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm
2020-11-06 18:46 - 2020-11-06 18:46 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb
2020-11-06 18:46 - 2020-11-06 18:46 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb
2020-11-06 18:46 - 2020-11-06 18:46 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 ____D C:\Users\Vlado\AppData\Local\Kaspersky Lab
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-wal
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-wal
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-wal
2020-11-05 22:56 - 2020-11-05 22:56 - 000003192 _____ C:\WINDOWS\system32\Tasks\kpm_tray.exe
2020-11-05 22:56 - 2020-11-05 22:56 - 000001229 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2020-11-05 22:56 - 2020-11-05 22:56 - 000001229 _____ C:\ProgramData\Desktop\Kaspersky Password Manager.lnk
2020-11-05 22:55 - 2020-11-05 22:55 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab
2020-11-05 22:55 - 2020-11-05 22:55 - 000000000 ____D C:\Users\Default User\AppData\Local\Kaspersky Lab
2020-11-05 22:55 - 2020-11-05 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2020-11-05 22:49 - 2020-11-05 22:49 - 000310232 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000207352 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000117456 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000099152 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000003240 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2020-11-05 22:47 - 2020-11-05 22:47 - 000000000 ____D C:\Program Files\Common Files\AV
2020-11-05 22:46 - 2020-11-05 22:46 - 000001263 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2020-11-05 22:46 - 2020-11-05 22:46 - 000001263 _____ C:\ProgramData\Desktop\Kaspersky Secure Connection.lnk
2020-11-05 22:46 - 2020-11-05 22:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2020-11-05 22:45 - 2020-11-05 22:45 - 000002217 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2020-11-05 22:45 - 2020-11-05 22:45 - 000002217 _____ C:\ProgramData\Desktop\Kaspersky Internet Security.lnk
2020-11-05 22:45 - 2020-11-05 22:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2020-11-05 22:45 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2020-11-05 22:44 - 2020-12-04 08:38 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-11-05 22:44 - 2020-11-05 23:02 - 000998808 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2020-11-05 22:44 - 2020-11-05 23:02 - 000251800 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2020-11-05 22:44 - 2020-11-05 22:55 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2020-11-05 22:44 - 2020-11-05 22:44 - 000257208 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2020-11-05 22:29 - 2020-11-05 22:30 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-11-05 22:12 - 2020-11-05 22:12 - 000014952 _____ C:\Users\Vlado\Downloads\[SkT]Kaspersky_Internet_Security_Multi-Device_2020_CZ!.torrent
2020-11-05 19:51 - 2020-11-05 19:51 - 000011359 _____ C:\Users\Vlado\Downloads\[SkT]Vanocni_vysadek___Operation_Christmas_Drop_(2020)(CZ)[1080p][WEBrip]_=_CSFD_60%.torrent
2020-11-05 19:28 - 2020-11-21 10:14 - 000004258 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1604600915
2020-11-05 19:28 - 2020-11-21 10:14 - 000001537 _____ C:\Users\Guest home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2020-11-05 19:28 - 2020-11-05 19:28 - 000001473 _____ C:\Users\Guest home\Desktop\Prehliadač Opera.lnk
2020-11-05 19:28 - 2020-11-05 19:28 - 000000000 ____D C:\Users\Guest home\AppData\Local\Opera Software
2020-11-05 19:26 - 2020-11-05 19:26 - 000000000 ____D C:\Users\Guest home\AppData\Roaming\Opera Software
2020-11-04 07:44 - 2020-11-04 07:44 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-11-04 07:40 - 2020-11-04 07:40 - 000000020 ___SH C:\Users\Guest home\ntuser.ini

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-04 08:38 - 2019-08-11 08:29 - 000000000 ____D C:\FRST
2020-12-04 08:37 - 2020-04-08 13:33 - 002288640 _____ (Farbar) C:\Users\Vlado\Desktop\FRST64.exe
2020-12-04 08:33 - 2020-11-03 02:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-04 08:23 - 2020-11-03 02:06 - 000000000 ____D C:\Windows.old
2020-12-04 08:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-04 08:08 - 2020-10-31 09:10 - 000000000 ___DC C:\WINDOWS\Panther
2020-12-04 07:51 - 2018-09-20 15:40 - 000000000 ____D C:\Users\Vlado\AppData\LocalLow\Mozilla
2020-12-04 07:39 - 2018-10-27 12:59 - 000000000 ____D C:\ProgramData\updater2
2020-12-04 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-04 07:15 - 2020-05-18 16:22 - 000000000 ____D C:\Program Files\CCleaner
2020-12-04 07:14 - 2020-11-03 02:58 - 000003456 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 07:14 - 2020-11-03 02:58 - 000003332 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-04 07:14 - 2017-10-31 14:50 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-04 07:13 - 2018-08-23 20:13 - 000000000 ____D C:\Users\Vlado\AppData\Local\PlaceholderTileLogoFolder
2020-12-04 07:12 - 2018-08-23 14:49 - 000000000 __SHD C:\Users\Vlado\IntelGraphicsProfiles
2020-12-03 18:39 - 2018-08-24 18:28 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\vlc
2020-12-03 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-03 12:57 - 2018-08-23 14:49 - 000000000 ____D C:\Users\Vlado\AppData\Local\Packages
2020-12-02 21:49 - 2018-08-23 15:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-02 21:44 - 2018-08-23 15:15 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-12-01 19:51 - 2020-11-03 02:58 - 000004464 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1586585197
2020-12-01 19:51 - 2020-11-03 02:58 - 000004222 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1586585190
2020-12-01 19:51 - 2020-04-11 07:06 - 000001448 _____ C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2020-11-26 15:12 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-11-25 23:15 - 2020-11-03 02:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-25 23:14 - 2019-09-30 20:31 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-24 13:48 - 2020-11-03 02:58 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-23 20:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-11-22 18:51 - 2018-11-12 05:51 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-11-22 18:09 - 2020-11-03 02:18 - 000000000 ____D C:\Users\Vlado
2020-11-22 10:44 - 2020-11-03 02:18 - 000000000 ____D C:\Users\Guest home
2020-11-22 10:35 - 2019-08-25 17:50 - 000000000 ____D C:\ProgramData\Mozilla
2020-11-22 10:28 - 2020-11-03 02:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-22 10:28 - 2020-11-03 02:08 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-22 10:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-11-21 15:52 - 2020-04-09 07:16 - 000000000 ____D C:\Users\Guest home\AppData\LocalLow\Mozilla
2020-11-21 15:49 - 2019-06-28 10:31 - 000000000 __SHD C:\Users\Guest home\IntelGraphicsProfiles
2020-11-21 10:13 - 2018-08-22 22:23 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-11-21 10:12 - 2020-11-03 02:58 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-21 10:12 - 2018-08-22 22:23 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-11-21 10:12 - 2017-10-31 14:50 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-11-20 18:15 - 2020-11-03 02:08 - 000433288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-20 18:14 - 2018-09-20 15:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-11-18 21:05 - 2019-08-08 12:11 - 000000000 ____D C:\ProgramData\Corel
2020-11-18 21:03 - 2019-08-08 12:30 - 000000000 ____D C:\Users\Vlado\Documents\Corel VideoStudio Pro
2020-11-18 20:59 - 2020-11-03 13:15 - 000003336 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-1766BB96E0164782B62390DD33A75324
2020-11-18 09:22 - 2020-11-03 02:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-11-18 09:22 - 2018-09-20 15:40 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-11-17 14:01 - 2018-08-23 20:57 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\uTorrent
2020-11-17 12:57 - 2019-03-28 04:52 - 000000000 ____D C:\Users\Vlado\AppData\Local\BitTorrentHelper
2020-11-17 08:31 - 2019-09-22 07:09 - 000002315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-16 20:13 - 2019-10-27 17:49 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\avidemux
2020-11-16 20:10 - 2019-10-27 17:49 - 000000000 ____D C:\Program Files (x86)\Avidemux 2.7 - 32 bits
2020-11-16 14:41 - 2020-05-18 16:22 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-11-16 14:41 - 2020-05-18 16:22 - 000000865 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-11-16 12:45 - 2020-11-03 02:36 - 001899640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-16 12:45 - 2020-11-03 00:19 - 000762354 _____ C:\WINDOWS\system32\perfh019.dat
2020-11-16 12:45 - 2020-11-03 00:19 - 000152046 _____ C:\WINDOWS\system32\perfc019.dat
2020-11-16 12:45 - 2019-08-12 21:13 - 000135154 _____ C:\WINDOWS\system32\perfh01B.dat
2020-11-16 12:45 - 2019-08-12 21:13 - 000029142 _____ C:\WINDOWS\system32\perfc01B.dat
2020-11-16 00:00 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-11-15 23:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-15 23:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-15 23:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-15 08:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-15 07:59 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2020-11-14 23:00 - 2020-11-03 02:13 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-11-14 22:06 - 2016-11-14 03:29 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-11-12 20:23 - 2018-12-15 22:31 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\ViberPC
2020-11-12 19:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ModemLogs
2020-11-12 17:25 - 2020-11-03 02:58 - 000004548 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-11-12 17:25 - 2019-12-07 10:18 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-11-12 17:25 - 2019-12-07 10:18 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-11-12 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-12 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-06 23:21 - 2020-07-12 17:31 - 000000000 ____D C:\Users\Vlado\.openshot_qt
2020-11-06 18:57 - 2018-08-26 14:02 - 000000000 ____D C:\Program Files\WinRAR
2020-11-06 06:38 - 2018-08-26 14:00 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-06 06:38 - 2018-08-26 14:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-06 06:38 - 2018-08-26 14:00 - 000000000 ____D C:\Program Files (x86)\WinRAR
2020-11-06 05:22 - 2020-10-30 21:19 - 000000000 __SHD C:\anti-malware.quarantine
2020-11-06 04:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2020-11-05 23:03 - 2020-05-20 07:35 - 000233368 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kneps.sys
2020-11-05 22:44 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-05 19:47 - 2018-10-11 20:59 - 000000000 ____D C:\Users\Vlado\AppData\Local\D3DSCache
2020-11-04 17:34 - 2019-06-28 10:31 - 000000000 ____D C:\Users\Guest home\AppData\Local\Packages
2020-11-04 07:41 - 2020-02-12 05:57 - 000002346 _____ C:\Users\Guest home\Desktop\Google Chrome.lnk
2020-11-04 07:41 - 2019-06-28 10:31 - 000000000 ___RD C:\Users\Guest home\3D Objects
2020-11-04 07:41 - 2017-10-31 14:41 - 000000000 __RHD C:\Users\Public\AccountPictures

==================== Files in the root of some directories ========

2018-08-23 14:52 - 2019-08-11 06:31 - 000000200 _____ () C:\Users\Vlado\AppData\Roaming\sp_data.sys

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================