Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-03-2021
Ran by Karolína (administrator) on KAROLINA-PC (LENOVO IdeaPad Z580) (31-03-2021 10:49:10)
Running from C:\Users\Karolína\Desktop
Loaded Profiles: Karolína
Platform: Windows 10 Home Version 1903 18362.900 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Safe Mode (minimal)

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2012-01-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712 2011-11-15] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink -> CyberLink Corp.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2012-06-25] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6202416 2012-06-25] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-06-25] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117472 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2429664 2021-03-20] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [Lenovo EasyCamera_Monitor] => C:\Program Files (x86)\Lenovo EasyCamera\monitor.exe [258936 2012-02-06] (Sunplus Innovation Technology Inc. -> ) [File not signed]
HKLM-x32\...\Run: [MuteSync] => C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe [343040 2012-02-04] (Lenovo) [File not signed]
HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2012-01-26] (Leader Technologies Inc -> Lenovo, Inc.)
HKLM-x32\...\Run: [Intelligent Touchpad] => C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe [291272 2011-12-08] (Lenovo (Beijing) Limited -> )
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink -> CyberLink Corp.) [File not signed]
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-27] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [CAPOSD] => C:\Program Files (x86)\Lenovo\Lenovo CAPOSD\CAPOSD.exe [1876992 2012-02-09] (LENOVO) [File not signed]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [68920 2018-08-22] (Apple Inc. -> Apple Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-677854803-1527549499-2823720256-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-677854803-1527549499-2823720256-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-677854803-1527549499-2823720256-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-677854803-1527549499-2823720256-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2018-06-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-677854803-1527549499-2823720256-1001\...\Run: [BingSvc] => C:\Users\Karolína\AppData\Local\Microsoft\BingSvc\BingSvc.exe [146312 2020-08-18] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon TS5000 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDF.DLL [30720 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5000 series: C:\WINDOWS\system32\CNMLMDF.DLL [485376 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2012-02-02] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> 
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinitx.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinitx.dll [183144 2017-01-17] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinit.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinit.dll [161016 2017-01-17] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2021-03-21]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk * icarus_rvrt.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00A0A0E0-BB90-4551-A6CC-2C7A4EF9B61A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {05514F80-5D38-4AAD-A338-14B9D63524D5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {05760699-B3A9-4536-B64C-4455202345A8} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink -> CyberLink)
Task: {0B15C1A8-0A5E-41DF-BE20-33D12AF4A2A3} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {11784B6B-8046-45CD-9E97-D820B86B7CB8} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {194CAF64-420E-4273-9348-9DDB9AF1EFD3} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {1B65159B-FF2B-4D46-A141-01E7208240B0} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1D24BD3C-4EC5-4C0B-83C8-0C07E7C2A425} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {2926A798-6362-425D-BCBC-669FFC689E84} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {2A494142-C928-47ED-8F6A-717753279E5E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {30A7BE82-79C9-4F51-BBBB-84AC5F2C925D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {38674D69-BBC6-4383-B2DC-0147113A9BF5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {388FB9C0-0F90-48CC-B0FF-4DA63C10E0CA} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C9B6891-FA8A-4824-88B1-F4220C82F26A} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {43FBF628-07A5-40CD-BC96-A5C53992769C} - System32\Tasks\{206B075F-172E-49FC-8423-F5629755290C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Torntv V9.0\Uninstall.exe" -c /fromcontrolpanel=1
Task: {441C7503-40A7-435E-9F83-0B1605DA896C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D98BD8B-314B-4F1D-881A-F72DB16E010F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {5075B7F4-5FCA-402D-B453-4CBF1A8E7D7F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {55244F1A-95A8-40C1-969E-F706ECC9075D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {592D890E-3142-44B2-98CF-A595E41640E6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1791712 2021-02-24] (Avast Software s.r.o. -> Avast Software)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5F7F9524-1141-4F88-8E64-33CE1232DB84} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {663BA5CA-4951-494A-A9DE-D8A4C2FC55E0} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {6AC414B1-B297-4B2E-9DE1-6906047D6ABE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {6ACC08B7-0289-4B09-9DB9-B9E843B2881B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {73410C66-CCE2-4B58-8D4B-2329DA74587E} - System32\Tasks\{B5648FB1-A11D-4C89-ACCA-6A6506D03402} => C:\Windows\system32\pcalua.exe -a C:\Users\Karolína\Desktop\eduroamczu.exe -d C:\Users\Karolína\Desktop
Task: {740DD493-2177-4EEF-A4DE-8D21A21688F4} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {759007E4-3E8D-4FD2-A7AB-9C22BF26D65B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {76B12470-3312-4CC1-A062-4DFB4F5A1214} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7852F50B-B95C-4B7D-A5E0-4A9D0E82B0DB} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7C86B81B-9710-4684-B6C6-442CA1540408} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {7F181B0B-440C-413A-B208-209CDD5D8D57} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8182DF11-C708-452E-9CFD-AFCDD9322C56} - System32\Tasks\{8BCFFE04-AE48-4E83-AFF6-B0CD1A4F2E02} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA GAMES\The Sims 2\EAUninstall.exe"
Task: {89F5CB92-EF56-4C60-8FC4-D5F18FB76AB7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {8B59FEC1-4BCB-43A9-96AE-930108E92DA3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8BE32A5D-A2EF-452D-9BB1-8E33E34D9B9E} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1191136 2021-03-20] (Avast Software s.r.o. -> AVAST Software)
Task: {8C81EF3E-D287-41B9-BECC-45DD59FE82F8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {8CCA53D5-DCBD-492C-9D46-44FF0E3DC11E} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [5493472 2021-03-16] (Avast Software s.r.o. -> Avast Software)
Task: {8FB839CF-7C72-4466-B653-44F0EF46E3FC} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4731616 2021-03-20] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 98d4908b-a7b4-409a-ac47-d1b06a7e773e
Task: {96BF8765-D63F-47AB-944E-097C48596B45} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-01] (Google Inc -> Google Inc.)
Task: {9A2BFE24-F5BE-477D-95D4-6A96437264FE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-01] (Google Inc -> Google Inc.)
Task: {9ACD3D5A-51D9-49D6-8A82-ABC750567A3D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9D957CB3-133D-4575-88F0-3B0C039EAB97} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A0C7ACD9-6D70-4C3E-A136-9195B0D741D1} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {ABB38639-AAC8-4108-82C8-34788F9857BD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {ACC7855B-F351-41FA-B27F-537CAFCC7026} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {ACEF328E-720E-4AF9-863D-67337FCB01F3} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4665568 2021-03-20] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log"  --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 2ab5bec0-3c69-4e49-b8af-edf841decdca
Task: {AF9AAA13-FDC7-46AA-AA9A-E303532F5202} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B1E434E9-2ED4-4FCA-B7B6-80A3A4085A90} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {B44452D0-F5D6-4D91-B4D9-8F5643592B3C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {C2AB476B-9B76-45E9-AD79-6E2688643B36} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {C7233B20-27FA-4FB5-9D8F-23493D8FDF68} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4686560 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
Task: {CC36533E-9437-4AEA-8553-97D1778E58AB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D0999EA7-8989-4FC7-8806-C4767D476E0C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DF432E29-EE7A-4073-B44B-17B483F0DB68} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5AD042D-4812-4EB1-BDBA-78381512482B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E6D18834-F3A7-4EE4-AC64-D75A474C7F9C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EDF4A0DD-D43C-4ACF-B1B8-B4D2E79ABE2A} - System32\Tasks\{DCB17B75-5E9E-4F62-AE54-152216FAFEE2} => C:\Windows\system32\pcalua.exe -a C:\Users\Karolína\AppData\Roaming\BitTorrent\BitTorrent.exe -c /UNINSTALL
Task: {EEC14DBB-1C99-4F10-9A5F-C5C8F1B8B859} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F440CDB3-7591-41F9-9948-2B5934773734} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [5493472 2021-03-08] (Avast Software s.r.o. -> Avast Software)
Task: {F4FDE4C9-4228-4C31-8D91-3DFC6B4BDD1C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F8E31A7D-948E-4093-9246-30A63F01DF64} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {FE617274-43FB-417A-A447-1862D9EDC38C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 193.17.47.1 185.43.135.1
Tcpip\..\Interfaces\{52f1d841-650e-45ff-9c43-65bce4b7fb46}: [DhcpNameServer] 193.17.47.1 185.43.135.1
Tcpip\..\Interfaces\{6a164431-a889-4b7a-ad79-d253c364d040}: [NameServer] 8.8.8.8,8.8.4.4

Edge: 
=======
Edge Profile: C:\Users\Karolína\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-30]

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-677854803-1527549499-2823720256-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Karolína\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-11-06] (Unity Technologies ApS -> Unity Technologies ApS)

Chrome: 
=======
CHR Profile: C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default [2021-03-30]
CHR Extension: (Prezentace) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-14]
CHR Extension: (Dokumenty) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-21]
CHR Extension: (Disk Google) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-02]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-08-03]
CHR Extension: (Tabulky) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-14]
CHR Extension: (Záložky na iCloudu) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-18]
CHR Extension: (Gmail) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Karolína\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-13]
CHR HKU\S-1-5-21-677854803-1527549499-2823720256-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7888408 2021-03-29] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [623216 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [353504 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56920 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [12414176 2021-03-20] (Avast Software s.r.o. -> AVAST Software)
S2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [8059104 2021-03-20] (Avast Software s.r.o. -> AVAST Software)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35680 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208552 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [365520 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250328 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99288 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41304 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [177872 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524416 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107808 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83368 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850120 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [466696 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216376 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2017-02-07] (AVAST Software s.r.o. -> The OpenVPN Project)
S0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-03-26] (Avast Software s.r.o. -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [59312 2020-07-28] (Avast Software s.r.o. -> Avast Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-15] (Microsoft Corporation) [File not signed]
S3 clwvd; C:\WINDOWS\System32\drivers\clwvd.sys [31088 2011-01-29] (CyberLink -> CyberLink Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-26] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-31 10:17 - 2021-03-31 10:50 - 000028561 _____ C:\Users\Karolína\Desktop\FRST.txt
2021-03-31 09:52 - 2021-03-31 10:49 - 000000000 ____D C:\FRST
2021-03-31 09:49 - 2021-03-31 09:44 - 002298368 _____ (Farbar) C:\Users\Karolína\Desktop\FRST64.exe
2021-03-30 22:31 - 2021-03-30 22:31 - 616008990 _____ C:\WINDOWS\MEMORY.DMP
2021-03-30 22:31 - 2021-03-30 22:31 - 000000000 _____ C:\WINDOWS\Minidump\033021-51250-01.dmp
2021-03-30 22:12 - 2021-03-30 22:41 - 000000000 ____D C:\AdwCleaner
2021-03-30 22:10 - 2021-03-30 22:06 - 008534696 _____ (Malwarebytes) C:\Users\Karolína\Desktop\adwcleaner_8.2.exe
2021-03-30 21:53 - 2021-03-31 10:47 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-03-30 21:52 - 2021-03-31 10:49 - 000315282 _____ C:\WINDOWS\ntbtlog.txt
2021-03-30 04:21 - 2021-03-30 04:21 - 000000000 ____D C:\Program Files\DTU
2021-03-26 10:56 - 2021-03-26 10:54 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-03-26 10:56 - 2021-03-26 10:54 - 000216376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-03-22 11:26 - 2021-03-22 11:33 - 000981716 _____ C:\WINDOWS\Minidump\032221-53093-01.dmp
2021-03-20 11:33 - 2021-03-20 11:44 - 001311852 _____ C:\WINDOWS\Minidump\032021-45515-01.dmp
2021-03-20 09:48 - 2021-03-20 09:48 - 000000000 _____ C:\Users\Karolína\AppData\Local\{5526B66B-2E8D-47FC-B790-C4F0E2BED389}
2021-03-19 12:56 - 2021-03-19 12:56 - 000000000 ____D C:\WINDOWS\%LOCALAPPDATA%
2021-03-18 10:00 - 2021-03-30 22:31 - 000000000 ____D C:\WINDOWS\Minidump
2021-03-18 10:00 - 2021-03-18 10:00 - 000000000 _____ C:\WINDOWS\Minidump\031821-44968-01.dmp

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-31 10:48 - 2012-06-25 20:12 - 000673648 _____ C:\WINDOWS\system32\fastboot.set
2021-03-31 10:46 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-03-31 10:44 - 2019-08-19 12:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-31 10:43 - 2014-04-03 11:58 - 000000000 ____D C:\ProgramData\AVAST Software
2021-03-31 10:42 - 2020-08-10 06:58 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2021-03-31 10:42 - 2019-08-19 12:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-31 10:42 - 2016-09-30 05:37 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-31 10:18 - 2019-08-19 12:18 - 000000000 ____D C:\Users\DefaultAppPool
2021-03-31 10:15 - 2019-08-19 12:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-03-31 10:14 - 2019-08-19 12:31 - 000007138 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-31 10:14 - 2019-03-19 13:55 - 001049426 _____ C:\WINDOWS\system32\perfh005.dat
2021-03-31 10:14 - 2019-03-19 13:55 - 000251844 _____ C:\WINDOWS\system32\perfc005.dat
2021-03-31 10:14 - 2017-04-29 19:13 - 000000000 ___RD C:\Users\Karolína\iCloudDrive
2021-03-31 10:12 - 2019-08-19 12:18 - 000000000 ____D C:\Users\UpdatusUser
2021-03-31 10:10 - 2019-08-19 12:18 - 000000000 ____D C:\Users\Karolína
2021-03-31 09:53 - 2019-08-19 12:50 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-31 09:52 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-31 09:46 - 2018-04-12 07:41 - 000000000 ____D C:\Users\Karolína\AppData\Local\AVAST Software
2021-03-31 09:44 - 2017-04-29 19:15 - 000000000 ____D C:\Users\Karolína\AppData\Local\CrashDumps
2021-03-30 19:44 - 2020-06-08 09:44 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-30 19:44 - 2020-06-08 09:44 - 000003348 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-30 19:44 - 2019-08-19 12:50 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-03-30 19:44 - 2019-08-19 12:50 - 000003236 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-03-30 19:44 - 2019-08-19 12:50 - 000002918 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-677854803-1527549499-2823720256-1001
2021-03-30 19:44 - 2019-08-19 12:50 - 000002578 _____ C:\WINDOWS\system32\Tasks\MirageAgent
2021-03-30 19:44 - 2019-08-19 12:50 - 000002348 _____ C:\WINDOWS\system32\Tasks\{DCB17B75-5E9E-4F62-AE54-152216FAFEE2}
2021-03-30 19:44 - 2019-08-19 12:50 - 000002348 _____ C:\WINDOWS\system32\Tasks\{206B075F-172E-49FC-8423-F5629755290C}
2021-03-30 19:44 - 2019-08-19 12:50 - 000002340 _____ C:\WINDOWS\system32\Tasks\{B5648FB1-A11D-4C89-ACCA-6A6506D03402}
2021-03-30 19:44 - 2019-08-19 12:50 - 000002322 _____ C:\WINDOWS\system32\Tasks\{8BCFFE04-AE48-4E83-AFF6-B0CD1A4F2E02}
2021-03-30 05:51 - 2021-02-19 11:07 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2021-03-30 05:50 - 2019-08-19 12:49 - 000097158 _____ C:\WINDOWS\diagwrn.xml
2021-03-30 05:50 - 2019-08-19 12:49 - 000097158 _____ C:\WINDOWS\diagerr.xml
2021-03-30 05:50 - 2019-03-19 06:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-03-30 05:36 - 2020-11-06 20:49 - 000000000 ___HD C:\$WINDOWS.~BT
2021-03-30 05:36 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Registration
2021-03-30 04:52 - 2019-08-11 19:06 - 000000000 ___DC C:\WINDOWS\Panther
2021-03-29 13:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-28 17:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-03-28 11:54 - 2020-06-08 09:44 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-28 11:54 - 2020-06-08 09:44 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-03-28 11:54 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-26 10:56 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-26 10:55 - 2014-04-03 12:00 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-03-26 10:54 - 2020-10-22 09:51 - 000177872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-03-26 10:54 - 2020-04-15 19:37 - 000524416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-03-26 10:54 - 2019-01-05 20:21 - 000250328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-03-26 10:54 - 2019-01-05 20:21 - 000099288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-03-26 10:54 - 2018-10-10 10:50 - 000041304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-03-26 10:54 - 2014-04-03 12:00 - 000466696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-03-26 10:54 - 2014-04-03 12:00 - 000107808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-03-26 10:54 - 2014-04-03 12:00 - 000083368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-03-26 10:53 - 2019-01-24 19:57 - 000365520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-03-26 10:53 - 2019-01-05 20:21 - 000035680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-03-26 10:53 - 2017-12-10 04:11 - 000208552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-03-26 10:53 - 2014-04-03 12:00 - 000850120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-03-22 16:44 - 2020-11-16 16:56 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-03-22 16:44 - 2013-12-07 10:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-22 16:39 - 2013-12-07 10:36 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-21 08:04 - 2012-06-25 20:10 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-18 10:03 - 2020-06-30 11:01 - 000000000 ____D C:\WINDOWS\system32\%LOCALAPPDATA%
2021-03-06 11:02 - 2016-05-30 14:52 - 000000000 ___RD C:\Users\Karolína\OneDrive
2021-03-06 11:01 - 2020-02-09 21:04 - 000002423 _____ C:\Users\Karolína\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-02 20:17 - 2017-04-29 19:12 - 000000000 ____D C:\Users\Karolína\AppData\Local\634CCBF9-4146-40A8-9EFA-C1EDE1917A59.aplzod

==================== Files in the root of some directories ========

2012-08-19 14:54 - 2012-08-19 14:54 - 000090624 _____ () C:\Users\Public\AlexaNSISPlugin.3952.dll
2014-08-27 18:55 - 2014-08-27 18:58 - 000008192 _____ () C:\Users\Karolína\AppData\Roaming\records_db
2021-03-20 09:48 - 2021-03-20 09:48 - 000000000 _____ () C:\Users\Karolína\AppData\Local\{5526B66B-2E8D-47FC-B790-C4F0E2BED389}
2015-09-03 18:43 - 2015-09-03 18:43 - 000000000 _____ () C:\Users\Karolína\AppData\Local\{F347EBF8-75DF-4ED9-A2B1-B4E08F84EB59}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================