Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-01-2021
Ran by adria (administrator) on DESKTOP-COSN14B (MSI MS-7979) (18-01-2021 11:16:35)
Running from C:\Users\adria\AppData\Local\Temp\scoped_dir14608_1255443358
Loaded Profiles: adria
Platform: Windows 10 Pro Version 1909 18363.1316 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] D:\Torrenty\Wallpaper Engine\wallpaper32.exe
(AltStore LLC) [File not signed] C:\Program Files (x86)\AltServer\AltServer.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\112.4.321\QtWebEngineProcess.exe <2>
(Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel(R) Software -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2101.1001.5.0_x64__8wekyb3d8bbwe\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe <2>
(Mobisystems) C:\Program Files\WindowsApps\MobiSystems.OfficeSuitePersonalFree_5.0.36140.0_x64__8m57vzdwnbybp\OfficeSuite\Cef\OfficeSuite.WorkerProcess.exe <2>
(Mobisystems) C:\Program Files\WindowsApps\MobiSystems.OfficeSuitePersonalFree_5.0.36140.0_x64__8m57vzdwnbybp\OfficeSuite\MobiDrive.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Open Source Developer, Birunthan Mohanathas -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\73.0.3856.329\opera.exe <31>
(Opera Software AS -> Opera Software) C:\Program Files\Opera\73.0.3856.329\opera_crashreporter.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Users\adria\AppData\Local\Kingsoft\WPS Office\11.2.0.9937\office6\wpscenter.exe <2>
(Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Users\adria\AppData\Local\Kingsoft\WPS Office\11.2.0.9937\office6\wpscloudsvr.exe
Failed to access process -> MSI_LiveUpdate_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8520448 2015-07-29] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992832 2020-12-15] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [1860480 2020-09-24] (Famatech Corp. -> Famatech Corp.)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [107879704 2020-10-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [Discord] => C:\Users\adria\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [Spotify] => C:\Users\adria\AppData\Roaming\Spotify\Spotify.exe [23233936 2020-12-05] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [WallpaperEngine] => D:\Torrenty\Wallpaper Engine\wallpaper32.exe [735232 2018-04-16] () [File not signed]
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [698328 2019-02-20] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [MP3Studio YouTube Downloader] => "C:\Users\adria\AppData\Local\Flvto Youtube Downloader\MP3StudioDownloader.exe" /minimize
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [AltServer] => C:\Program Files (x86)\AltServer\AltServer.exe [1736704 2020-11-11] (AltStore LLC) [File not signed]
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\adria\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2496206602-2472622645-179794546-1001\...\MountPoints2: {ceacc557-ea45-11e6-82b1-d8cb8ac65195} - "E:\setup.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-11] (Google LLC -> Google LLC)
Startup: C:\Users\adria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2018-04-17]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Open Source Developer, Birunthan Mohanathas -> Rainmeter)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk [2017-01-25]
ShortcutTarget: ScpToolkit Tray Notifications.lnk -> C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe (Scarlet.Crush Productions) [File not signed]
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0073474A-6BD2-40E8-BFD7-A0EE28A0E0BB} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
Task: {061D4C02-C133-41DA-B35E-2DEFDC3454D1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {074349FD-B550-420B-9132-529F41770078} - System32\Tasks\WpsExternal_adria_20210111174441 => C:\Users\adria\AppData\Local\Kingsoft\WPS Office\11.2.0.9937\office6\wpscloudsvr.exe [1666280 2021-01-11] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {119F7879-8018-4D9D-8EAF-F387A8FF88A2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {134F5590-1C68-4300-ADCC-56AB746E8F7A} - System32\Tasks\Vypnut => shutdown [Argument = /s]
Task: {15C6A27A-A581-4C7F-819B-6B9A355F696A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {16D1ADAA-F44C-405C-9C87-E9E26C4F85BB} - System32\Tasks\Opera scheduled Autoupdate 1520951350 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-05] (Opera Software AS -> Opera Software)
Task: {1F642930-E99E-4988-8A7F-E41A39209990} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1286840 2015-05-05] (Intel(R) Software -> Intel Corporation)
Task: {20621D18-C4E0-4041-8323-9CB805508BE1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {236C16AB-5EE6-41CD-BB20-C0607D8794FB} - System32\Tasks\MSISW_Host => C:\Windows\SysWoW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {32F0B624-3996-4A75-9CEB-761CC4A867A5} - System32\Tasks\ASUS Live Update Task Schedule => C:\Program Files (x86)\ASUS\GPU Tweak\ASUSLiveUpdate.exe
Task: {48C11A77-9AAE-4E55-8AF5-53EB99D42A03} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4D5D71B1-9EBB-419B-AD53-4D50F4B6D570} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C315423-7CB4-46AF-99BD-62A94BD48BE9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-22] (Google Inc -> Google Inc.)
Task: {62AF2BAD-75DD-4ECB-83BC-96998113209C} - System32\Tasks\Opera scheduled assistant Autoupdate 1583060109 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-05] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {66DAF61A-8283-46CD-B8A3-20D906B1B8B9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C5FC908-E94D-4EE1-9F40-35959CA85AF6} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4621920 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
Task: {6F158CF1-FFAB-4ABB-A1E5-E68EB339913E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {90102F21-171A-442B-A13F-B674174C274E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {9BE6B783-617B-4A21-A7B5-CD7206691473} - System32\Tasks\updater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [464384 2016-01-10] (Nefarius Software Solutions) [File not signed]
Task: {9FAC8445-4CA0-4F89-A554-CA1FBFDA5DF2} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-07-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A3467F04-7FB7-4B5C-8DB4-29B210D7CD39} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A63E4E8A-EFE2-4A57-95CD-CC016BE71925} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A6B7AE49-5C10-4023-AD74-B3159DC5C28E} - System32\Tasks\WpsUpdateTask_adria => C:\Users\adria\AppData\Local\Kingsoft\WPS Office\11.2.0.9937\office6\wpsupdate.exe [164584 2021-01-11] (Zhuhai Kingsoft Office Software Co., Ltd. -> )
Task: {A9E45E52-00DF-4627-B0DA-2B6E08873E5B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABFF8CA4-6A72-4640-9F45-6A843A6DBA92} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B064D35B-9677-4BB3-B2EC-2DAE4947844D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5737DE8-59FD-46BB-9FDA-BAC78E20C301} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-07-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {C19249BE-4178-468B-80A3-9CA105E4E30E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-12-29] (Avast Software s.r.o. -> Avast Software)
Task: {C311BB70-F976-456A-9DDC-DC29D35E97C1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7456984 2017-04-11] (Piriform Ltd -> Piriform Ltd)
Task: {C3D0B885-5E5A-47F2-880D-A16EFB7FB9FE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {D4788FBC-45B5-443B-8FE2-A20F6118E108} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-22] (Google Inc -> Google Inc.)
Task: {DAB19118-3E62-41C4-8374-84D597102252} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E4EEC546-318B-4A33-9345-235A26554C53} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E53E9FF3-0974-45AE-811C-E1556DBE5F34} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {E547DE60-3977-44BE-A8C0-85814FDA908A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF1BEFE9-803C-46CB-93FF-129C77DA38C4} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EFE4BE29-FBBE-4F85-B998-A9B33C94E4CD} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-08] (Adobe Inc. -> Adobe)
Task: {FA94F8B2-F8D7-4AC6-BEB5-2D868B9D4A84} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
Task: C:\WINDOWS\Tasks\WpsExternal_adria_20210111174441.job => C:\Users\adria\AppData\Local\Kingsoft\WPS Office\11.2.0.9937\office6\wpscloudsvr.exe/wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll
Task: C:\WINDOWS\Tasks\WpsUpdateTask_adria.job => C:\Users\adria\AppData\Local\Kingsoft\WPS Office\11.2.0.9937\office6\wpsupdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.101.1
Tcpip\..\Interfaces\{297999f9-652f-4af9-8188-bd901f98a0d5}: [DhcpNameServer] 192.168.101.1
Tcpip\..\Interfaces\{39ebb8c1-c693-4a90-a0cd-85903ea39887}: [DhcpNameServer] 172.20.10.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\adria\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-12]
Edge Extension: (Default Search Engine) - C:\Users\adria\AppData\Local\app [2020-08-09]

FireFox:
========
FF DefaultProfile: hd70jx18.default
FF ProfilePath: C:\Users\adria\AppData\Roaming\Mozilla\Firefox\Profiles\hd70jx18.default [2021-01-12]
FF ProfilePath: C:\Users\adria\AppData\Roaming\Mozilla\Firefox\Profiles\08c97nom.default-release [2021-01-16]
FF Extension: (No Name) - C:\Users\adria\AppData\Roaming\Mozilla\Firefox\Profiles\08c97nom.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-01-12]
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default [2020-10-24]
CHR Extension: (Prezentace) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-06]
CHR Extension: (Dokumenty) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-06]
CHR Extension: (Disk Google) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-06]
CHR Extension: (YouTube) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-06]
CHR Extension: (AHA Music - Song Finder for Browser) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2020-07-19]
CHR Extension: (Tabulky) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-06]
CHR Extension: (Video Downloader PLUS) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-07-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-07-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-18]
CHR Extension: (Gmail) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-06]
CHR Extension: (Chrome Media Router) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-21]

Opera: 
=======
OPR Profile: C:\Users\adria\AppData\Roaming\Opera Software\Opera Stable [2021-01-18]
OPR DownloadDir: C:\Users\adria\Desktop
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\adria\AppData\Roaming\Opera Software\Opera Stable\Extensions\ekmmelpnmfdegjhnmadddcfjcahpajnm [2020-11-28]
OPR Extension: (Rich Hints Agent) - C:\Users\adria\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-24]
OPR Extension: (DotVPN — a better way to VPN) - C:\Users\adria\AppData\Roaming\Opera Software\Opera Stable\Extensions\hiegahbgoabbpoieploedhfnobmpgbeg [2019-06-08]
OPR Extension: (YouTube Downloader) - C:\Users\adria\AppData\Roaming\Opera Software\Opera Stable\Extensions\kclijeogghhkmenkommbnjobhnndpfba [2018-09-02]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\adria\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-12-15]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-29] () [File not signed]
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [726952 2015-08-20] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-07-26] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-07-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-12-15] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
S2 Ds3Service; C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe [389632 2016-01-10] (Scarlet.Crush Productions) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-05-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S2 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [31400 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 GamingHotkey_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingHotkey_Service.exe [2018768 2015-08-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-02-19] (Hi-Rez Studios) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-11] (Malwarebytes Inc -> Malwarebytes)
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2106832 2015-06-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4050384 2015-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2123216 2015-07-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4177360 2015-08-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2002896 2015-07-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2284496 2015-07-30] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2072528 2015-06-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [599504 2015-07-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_Cloud_Service; C:\Program Files (x86)\MSI\MSI M-Cloud\MSI_Cloud_Service.exe [97232 2015-06-30] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [105296 2015-06-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2286032 2017-03-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_RAMDisk_Service; C:\Program Files (x86)\MSI\MSI RAMDisk\MSI_RAMDisk_Service.exe [69072 2015-07-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2298688 2019-02-16] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3171144 2019-02-16] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1352832 2020-11-15] (Rockstar Games, Inc. -> Rockstar Games)
S2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [967552 2020-09-24] (Famatech Corp. -> Famatech Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH -> TeamViewer GmbH)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [873968 2017-06-30] (Tunngle.net GmbH -> Tunngle.net GmbH) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36792 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-29] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522480 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2020-12-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-09] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-10] (Microsoft Corporation) [File not signed]
R1 cfosspeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [2004392 2015-08-20] (cFos Software GmbH -> cFos Software GmbH)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-04] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-04] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2021-01-11] (Malwarebytes Corporation -> Malwarebytes)
S3 EvolveVirtualAdapter; C:\WINDOWS\System32\drivers\evolve.sys [21656 2018-07-26] (Echobit, LLC -> Echobit, LLC)
S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [102920 2019-06-03] (Hans Roes -> Multi Theft Auto)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2017-05-22] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
S3 ipadtst; C:\Program Files (x86)\MSI\Super Charger\ipadtst_64.sys [20464 2013-11-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Windows (R) Win 7 DDK provider)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47200 2018-05-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-11] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2021-01-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-01-16] (Malwarebytes Inc -> Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2021-01-11] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [139424 2021-01-16] (Malwarebytes Inc -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [40448 2014-05-23] (USBHostDriver(Test003) -> QUALCOMM Incorporated)
R3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [69048 2019-02-18] (Famatech Corp. -> Famatech Corp.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [25088 2015-04-14] (SteelSeries ApS -> SteelSeries ApS)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-04-24] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [48824 2016-04-26] (Tunngle.net GmbH -> Tunngle.net GmbH)
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2018-11-22] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [37344 2018-02-20] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-18 11:11 - 2021-01-18 11:12 - 000000000 ___DC C:\Users\adria\Desktop\FRST-OlderVersion
2021-01-17 14:27 - 2021-01-17 14:27 - 008458096 ____C (Malwarebytes) C:\Users\adria\Desktop\adwcleaner_8.0.9.exe
2021-01-17 14:26 - 2021-01-17 14:26 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2021-01-16 16:45 - 2021-01-16 16:46 - 000198254 ____C C:\Users\adria\Desktop\TDSSKiller.zip
2021-01-16 16:45 - 2021-01-16 16:45 - 000604100 ____C C:\Users\adria\Desktop\TDSSKiler.txt
2021-01-16 16:42 - 2021-01-16 16:50 - 001208290 _____ C:\TDSSKiller.3.1.0.28_16.01.2021_16.42.26_log.txt
2021-01-16 16:42 - 2021-01-16 16:42 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-01-16 16:42 - 2021-01-16 16:42 - 000139424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-01-16 16:42 - 2021-01-16 16:42 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-01-16 16:41 - 2021-01-16 16:41 - 000008714 _____ C:\TDSSKiller.3.1.0.28_16.01.2021_16.41.08_log.txt
2021-01-16 16:40 - 2021-01-16 16:41 - 005054744 ____C (AO Kaspersky Lab) C:\Users\adria\Desktop\tdsskiller.exe
2021-01-13 23:58 - 2021-01-13 23:58 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 23:58 - 2021-01-13 23:58 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 23:58 - 2021-01-13 23:58 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 23:57 - 2021-01-13 23:57 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 23:57 - 2021-01-13 23:57 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 23:57 - 2021-01-13 23:57 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 23:57 - 2021-01-13 23:57 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 23:57 - 2021-01-13 23:57 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 23:57 - 2021-01-13 23:57 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 23:57 - 2021-01-13 23:57 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 23:57 - 2021-01-13 23:57 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 23:57 - 2021-01-13 23:57 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 23:57 - 2021-01-13 23:57 - 000151040 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 23:57 - 2021-01-13 23:57 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 23:57 - 2021-01-13 23:57 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 23:57 - 2021-01-13 23:57 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 23:57 - 2021-01-13 23:57 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 23:57 - 2021-01-13 23:57 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 23:57 - 2021-01-13 23:57 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 23:57 - 2021-01-13 23:57 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-13 23:57 - 2021-01-13 23:57 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-13 23:56 - 2021-01-13 23:56 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 23:56 - 2021-01-13 23:56 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 23:56 - 2021-01-13 23:56 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 23:56 - 2021-01-13 23:56 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 23:56 - 2021-01-13 23:56 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 23:56 - 2021-01-13 23:56 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 23:56 - 2021-01-13 23:56 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 23:56 - 2021-01-13 23:56 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 23:56 - 2021-01-13 23:56 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 23:56 - 2021-01-13 23:56 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 23:55 - 2021-01-13 23:55 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 23:55 - 2021-01-13 23:55 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 23:55 - 2021-01-13 23:55 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 23:55 - 2021-01-13 23:55 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 23:55 - 2021-01-13 23:55 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 23:55 - 2021-01-13 23:55 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 23:55 - 2021-01-13 23:55 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-13 17:43 - 2021-01-13 17:43 - 000020902 _____ C:\1,.txt
2021-01-12 15:40 - 2021-01-16 12:58 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-12 15:40 - 2021-01-12 15:40 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-12 15:40 - 2021-01-12 15:40 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-01-12 15:40 - 2021-01-12 15:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-12 15:40 - 2021-01-12 15:40 - 000000000 ____D C:\Users\adria\AppData\Local\Mozilla
2021-01-12 15:40 - 2021-01-12 15:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-12 15:40 - 2021-01-12 15:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-12 15:39 - 2021-01-12 15:39 - 000333072 ____C (Mozilla) C:\Users\adria\Desktop\Firefox Installer.exe
2021-01-12 08:29 - 2021-01-12 08:29 - 000002409 ____C C:\Users\adria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-12 08:29 - 2021-01-12 08:29 - 000002401 ____C C:\Users\adria\Desktop\Microsoft Teams.lnk
2021-01-12 08:29 - 2021-01-12 08:29 - 000000000 ____D C:\Users\adria\AppData\Roaming\Teams
2021-01-11 17:44 - 2021-01-12 08:28 - 000000712 _____ C:\WINDOWS\Tasks\WpsExternal_adria_20210111174441.job
2021-01-11 17:44 - 2021-01-11 17:44 - 000003756 _____ C:\WINDOWS\system32\Tasks\WpsExternal_adria_20210111174441
2021-01-11 16:46 - 2021-01-11 16:46 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2021-01-11 16:21 - 2021-01-11 16:21 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-11 16:21 - 2021-01-11 16:21 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-01-11 16:21 - 2021-01-11 16:21 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-01-11 16:21 - 2021-01-11 16:21 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-01-11 16:21 - 2021-01-11 16:21 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-01-11 16:21 - 2021-01-11 16:21 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-01-11 16:21 - 2021-01-11 16:21 - 000000000 ____D C:\Users\adria\AppData\Local\mbam
2021-01-11 16:21 - 2021-01-11 16:21 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-11 16:19 - 2021-01-11 16:19 - 002086424 ____C (Malwarebytes) C:\Users\adria\Desktop\MBSetup.exe
2021-01-11 16:19 - 2021-01-11 16:19 - 000000000 ____D C:\Program Files\Malwarebytes
2021-01-10 22:26 - 2021-01-10 22:26 - 000172775 ____C C:\Users\adria\Desktop\Addition.txt
2021-01-10 22:25 - 2021-01-10 22:26 - 000063273 ____C C:\Users\adria\Desktop\FRST.txt
2021-01-10 22:15 - 2021-01-18 11:16 - 000000000 ____D C:\rsit
2021-01-10 22:15 - 2021-01-10 22:16 - 000000000 ____D C:\Program Files\trend micro
2021-01-10 22:15 - 2021-01-10 22:15 - 001222144 ____C C:\Users\adria\Desktop\RSITx64.exe
2021-01-06 14:42 - 2020-10-05 14:05 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-01-06 14:42 - 2020-10-05 14:05 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-01-06 14:42 - 2020-10-05 14:05 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-01-06 14:42 - 2020-10-05 14:05 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-01-06 14:42 - 2020-10-05 14:05 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-01-06 14:42 - 2020-10-05 14:05 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-01-06 14:42 - 2020-10-05 14:05 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-01-06 14:42 - 2020-10-05 14:05 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-01-06 14:42 - 2020-10-05 14:05 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-01-06 14:42 - 2020-10-05 14:05 - 000351128 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 001507224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 001161112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 000816368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 000673520 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 000555248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 000543128 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-01-06 14:42 - 2020-10-05 14:03 - 000047424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 007707544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 006860184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 004174064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 002508528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 002098072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 001731824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445671.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 001585560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445671.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 000813464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-01-06 14:42 - 2020-10-05 14:02 - 000657304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-01-06 14:42 - 2020-10-05 14:00 - 005972824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-01-06 14:30 - 2021-01-06 14:30 - 000000000 ____D C:\Users\adria\AppData\Roaming\WeMod
2021-01-01 22:51 - 2021-01-01 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2021-01-01 22:38 - 2021-01-01 22:38 - 000002534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2021-01-01 22:38 - 2021-01-01 22:38 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-12-31 19:02 - 2021-01-03 23:22 - 000011964 _____ C:\Users\adria\Desktop\Podklad pro Mzdu  - Martinů, PROSINEC.xlsx
2020-12-31 19:02 - 2020-12-31 19:02 - 000000000 ___DC C:\Users\adria\Documents\Vlastní šablony Office
2020-12-31 18:58 - 2020-12-31 18:58 - 011237526 ____C C:\Users\adria\Desktop\KMSAuto-Net.zip
2020-12-29 22:28 - 2020-12-29 22:28 - 000000000 ___HD C:\$AV_ASW
2020-12-29 22:25 - 2020-12-29 22:25 - 000002160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-12-29 22:25 - 2020-12-29 22:25 - 000002148 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-12-29 22:25 - 2020-12-29 22:25 - 000000000 ____D C:\Users\adria\AppData\Roaming\Avast Software
2020-12-29 22:24 - 2021-01-18 10:58 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-12-29 22:24 - 2021-01-09 10:48 - 000468888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-12-29 22:24 - 2021-01-07 19:56 - 000214808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-12-29 22:24 - 2021-01-07 14:37 - 000324904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000851256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000522480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000340576 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-12-29 22:24 - 2020-12-29 22:24 - 000332880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000247888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000208672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000176384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000108928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000097360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000084496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000042424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000036792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000016832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-12-29 22:24 - 2020-12-29 22:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-29 22:24 - 2020-12-29 22:24 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-12-29 22:24 - 2020-12-29 22:24 - 000000000 ____D C:\Program Files\Avast Software
2020-12-29 22:23 - 2021-01-16 16:52 - 000000000 ____D C:\ProgramData\Avast Software
2020-12-29 22:23 - 2020-12-29 22:23 - 000220784 ____C (AVAST Software) C:\Users\adria\Desktop\avast_free_antivirus_setup_online.exe
2020-12-26 11:51 - 2021-01-12 08:28 - 000000374 _____ C:\WINDOWS\Tasks\WpsUpdateTask_adria.job
2020-12-25 23:40 - 2020-12-25 23:40 - 009142272 ____C C:\Users\adria\Desktop\hamachi.msi
2020-12-25 23:25 - 2020-12-30 15:37 - 000000000 ____D C:\Users\adria\AppData\Roaming\Factorio
2020-12-25 16:21 - 2020-12-25 16:21 - 000000851 ____C C:\Users\adria\Desktop\Factorio.lnk
2020-12-25 16:21 - 2020-12-25 16:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Factorio
2020-12-25 15:53 - 2020-12-25 15:53 - 000014994 ____C C:\Users\adria\Desktop\Factorio-CODEX.torrent
2020-12-24 15:21 - 2020-12-24 15:22 - 041085161 ____C C:\Users\adria\Desktop\The-Simpsons-Tapped-Out-Hack.ipa
2020-12-24 15:19 - 2020-12-24 15:19 - 000000000 ___DC C:\Users\adria\Desktop\Impactor_0.9.52
2020-12-24 11:59 - 2020-12-24 11:59 - 000000000 ____D C:\Users\adria\Apple
2020-12-24 11:58 - 2020-12-24 11:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple
2020-12-24 11:58 - 2020-12-24 11:58 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2020-12-24 11:53 - 2020-12-24 11:53 - 000003019 ____C C:\Users\adria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AltServer.lnk
2020-12-24 11:53 - 2020-12-24 11:53 - 000000000 ____D C:\Program Files (x86)\AltServer
2020-12-22 13:11 - 2020-12-22 13:11 - 000000000 ____D C:\ProgramData\Knapcode.TorSharp

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-18 11:17 - 2018-11-28 17:03 - 000000000 ____D C:\FRST
2021-01-18 11:15 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-18 10:57 - 2017-05-17 18:18 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-18 10:56 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-17 15:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-17 14:29 - 2017-01-22 11:48 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-01-16 16:42 - 2019-09-04 20:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-16 16:41 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-16 13:37 - 2019-09-04 19:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-16 13:02 - 2019-10-06 20:25 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-01-16 12:57 - 2019-05-25 17:58 - 000000000 ___DC C:\Users\adria\AppData\LocalLow\Mozilla
2021-01-15 18:58 - 2020-08-29 11:00 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-15 18:58 - 2020-08-29 11:00 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-14 19:25 - 2019-09-04 20:09 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-14 19:25 - 2019-03-19 12:57 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-14 19:25 - 2019-03-19 12:57 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-14 19:25 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-14 19:19 - 2019-09-04 19:57 - 005119464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 19:19 - 2017-12-24 16:43 - 000000000 ___RD C:\Users\adria\3D Objects
2021-01-14 19:19 - 2017-01-21 21:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-14 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-14 19:17 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-14 19:17 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-14 19:17 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-14 19:17 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-14 00:05 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-14 00:03 - 2017-01-21 22:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-14 00:01 - 2017-01-21 22:30 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 23:54 - 2019-09-04 19:58 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-12 15:40 - 2019-07-04 22:21 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Mozilla
2021-01-12 08:29 - 2017-02-07 18:50 - 000000000 ___DC C:\Users\adria\AppData\Local\SquirrelTemp
2021-01-12 08:28 - 2019-09-04 20:01 - 000000000 ____D C:\Users\adria
2021-01-12 08:26 - 2020-08-29 11:00 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-12 08:26 - 2020-08-29 11:00 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-12 08:26 - 2017-01-25 15:17 - 000000000 ____D C:\Program Files\MotioninJoy
2021-01-12 08:26 - 2017-01-22 11:56 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-11 17:44 - 2019-09-04 20:06 - 000003328 _____ C:\WINDOWS\system32\Tasks\WpsUpdateTask_adria
2021-01-11 16:46 - 2020-10-18 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-11 16:45 - 2020-10-16 11:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-11 16:21 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-10 23:32 - 2017-02-07 18:50 - 000000000 ___DC C:\Users\adria\AppData\Roaming\discord
2021-01-10 20:12 - 2019-04-01 18:44 - 000000000 ____D C:\Program Files\OpenVPN
2021-01-10 13:38 - 2018-03-13 15:27 - 000000000 ____D C:\Program Files\Opera
2021-01-09 10:51 - 2019-09-04 20:06 - 000003958 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1520951350
2021-01-09 10:51 - 2017-06-30 21:24 - 000001113 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-01-06 14:43 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Help
2021-01-06 14:43 - 2017-05-17 18:18 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-01-06 14:43 - 2017-05-17 18:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-01-06 14:35 - 2018-07-23 19:07 - 000001649 _____ C:\WINDOWS\cFosSpeed_Setup_Log.txt
2021-01-06 14:33 - 2019-07-04 17:07 - 000000000 ____D C:\Program Files (x86)\FastStudio
2021-01-06 14:33 - 2018-01-24 19:51 - 000000000 ___DC C:\Users\adria\AppData\Local\Packages
2021-01-06 14:32 - 2019-04-01 18:36 - 000000000 ____D C:\Program Files\n2n Gui
2021-01-06 14:32 - 2018-09-04 14:34 - 000000000 ____D C:\ProgramData\Nero
2021-01-06 14:31 - 2018-11-15 20:51 - 000000000 ___DC C:\Users\adria\AppData\Roaming\WhatsApp
2021-01-06 14:31 - 2018-11-15 20:51 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-01-06 14:31 - 2018-11-15 20:51 - 000000000 ___DC C:\Users\adria\AppData\Local\WhatsApp
2021-01-06 14:31 - 2017-01-21 21:24 - 000000000 ____D C:\ProgramData\Package Cache
2021-01-06 14:30 - 2020-10-16 16:09 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2021-01-06 14:30 - 2020-10-16 16:09 - 000000000 ____D C:\Users\adria\AppData\Local\WeMod
2021-01-06 14:30 - 2019-07-04 17:06 - 000000000 ____D C:\ProgramData\Ashampoo
2021-01-06 14:29 - 2019-06-20 11:06 - 000000000 ___DC C:\Users\adria\AppData\Local\Battle.net
2021-01-06 14:25 - 2019-11-03 11:40 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Xiaomi
2021-01-06 14:25 - 2019-09-04 20:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\MEGA
2021-01-06 14:24 - 2018-07-30 21:27 - 000000000 ____D C:\Users\adria\Heaven
2021-01-06 14:23 - 2017-07-02 18:24 - 000000000 ___DC C:\Users\adria\AppData\Local\Android
2021-01-06 14:22 - 2017-07-02 18:23 - 000000000 ____D C:\Program Files\Android
2021-01-06 14:19 - 2019-11-21 09:11 - 000018840 _____ C:\Users\adria\AppData\Roaming\downloads.json
2021-01-03 12:27 - 2017-01-21 21:12 - 000000000 ___DC C:\Users\adria\AppData\Local\ConnectedDevicesPlatform
2021-01-02 11:29 - 2020-12-05 14:59 - 000000000 ___DC C:\Users\adria\Desktop\Slayer Leecher v0.6 (1)
2021-01-01 22:48 - 2019-11-21 09:09 - 000000000 ____D C:\Users\adria\AppData\Roaming\FlvtoConverter
2020-12-29 10:58 - 2017-02-18 11:48 - 000000000 ___DC C:\Users\adria\AppData\Roaming\vlc
2020-12-28 12:54 - 2018-05-26 10:33 - 000000000 ___DC C:\Users\adria\AppData\Local\D3DSCache
2020-12-25 23:16 - 2017-02-07 18:50 - 000000000 ___DC C:\Users\adria\AppData\Local\Discord
2020-12-25 18:48 - 2017-02-03 23:31 - 000000000 ___DC C:\Users\adria\AppData\Roaming\BitTorrent
2020-12-25 16:35 - 2020-10-23 18:31 - 000000000 ___DC C:\Users\adria\AppData\LocalLow\BitTorrent
2020-12-24 13:55 - 2017-04-08 08:50 - 000000132 ____C C:\Users\adria\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2020-12-24 12:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-24 11:59 - 2018-07-10 21:42 - 000000000 ____D C:\ProgramData\Packages
2020-12-24 11:59 - 2018-01-31 20:06 - 000000000 ___DC C:\Users\adria\AppData\Local\PlaceholderTileLogoFolder
2020-12-24 11:59 - 2017-07-13 08:51 - 000000000 ____D C:\Program Files\Common Files\Apple
2020-12-24 11:59 - 2017-01-21 21:12 - 000000000 ___DC C:\Users\adria\AppData\Local\Publishers
2020-12-24 11:58 - 2017-07-13 08:52 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Apple Computer
2020-12-24 11:58 - 2017-07-13 08:51 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2020-12-22 16:02 - 2020-10-21 14:40 - 000000000 ____D C:\Users\adria\AppData\Local\Deployment
2020-12-22 16:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Files in the root of some directories ========

2019-07-31 22:02 - 2019-07-31 22:02 - 000000000 _____ () C:\Program Files\izWrTe381751176763403970.tmp
2017-04-08 08:50 - 2020-12-24 13:55 - 000000132 ____C () C:\Users\adria\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2019-11-21 09:11 - 2021-01-06 14:19 - 000018840 _____ () C:\Users\adria\AppData\Roaming\downloads.json
2019-07-04 22:20 - 2019-07-04 22:20 - 000070992 ____C () C:\Users\adria\AppData\Local\Config.xml
2018-07-30 21:27 - 2018-07-30 21:29 - 001065984 ____C () C:\Users\adria\AppData\Local\file__0.localstorage
2018-09-29 20:15 - 2018-09-29 20:15 - 000000000 ____C () C:\Users\adria\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================