spomalený pc plus wifi

[Timur]

Zdravím, chcem Vás poprosiť o kontrolu, notebook je pomalý a ďalším problémom je, že pri pripojení cez wifi klesne rýchlosť na max 3 Mb/s z povodných 70Mb/s cez kábel. Iné notebooky a mobily pripojené na ten istý router tej istej sieti bez problémov. Výskúšané rôzne wifi siete. Wifi adapter preinštalovaný, ovládače aktualizované, router reštartovaný
Ďakujem

logy.rar

(25.19 KiB) Staženo 54 x

[Rudy]

Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

[Timur]

Logy su hore v prvom príspevku

[Rudy]

Promiňte, přehlédl jsem. Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Timur]

# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-11-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-04-2020
# Duration: 00:00:04
# OS: Windows 10 Home
# Cleaned: 8
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3248 octets] - [11/08/2019 12:04:14]
AdwCleaner[C00].txt - [3201 octets] - [11/08/2019 12:07:52]
AdwCleaner[S01].txt - [5381 octets] - [08/04/2020 19:40:42]
AdwCleaner[S02].txt - [5442 octets] - [08/04/2020 19:44:06]
AdwCleaner[C02].txt - [2919 octets] - [08/04/2020 19:44:27]
AdwCleaner[S03].txt - [5564 octets] - [30/10/2020 20:32:18]
AdwCleaner[C03].txt - [5749 octets] - [30/10/2020 20:35:13]
AdwCleaner[S04].txt - [1833 octets] - [30/10/2020 20:42:46]
AdwCleaner[S05].txt - [2115 octets] - [12/11/2020 17:27:23]
AdwCleaner[C05].txt - [2247 octets] - [12/11/2020 17:35:26]
AdwCleaner[S06].txt - [3114 octets] - [04/12/2020 16:32:46]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[Timur]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-12-2020
Ran by Vlado (administrator) on DESKTOP-2QCS2VS (ASUSTeK COMPUTER INC. X556UQK) (04-12-2020 18:31:21)
Running from C:\Users\Vlado\Desktop
Loaded Profiles: Vlado & Guest home
Platform: Windows 10 Home Version 2004 19041.630 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Guest home\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Opera Software AS -> Opera Software) C:\Users\Guest home\AppData\Local\Programs\Opera\72.0.3815.320\opera_autoupdate.exe <2>
(Opera Software AS -> Opera Software) C:\Users\Guest home\AppData\Local\Programs\Opera\launcher.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-06-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 0
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32281272 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Run: [Opera Browser Assistant] => C:\Users\Vlado\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3565080 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Policies\Explorer: [HideSCAHealth] 0
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\yowindow.scr [859080 2017-03-23] (RepkaSoft -> repkasoft)
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\Run: [Opera Browser Assistant] => C:\Users\Guest home\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Guest home\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Guest home\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\RunOnce: [Uninstall 20.169.0823.0008\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Guest home\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64"
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\RunOnce: [Uninstall 20.169.0823.0008] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Guest home\AppData\Local\Microsoft\OneDrive\20.169.0823.0008"
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\yowindow.scr [859080 2017-03-23] (RepkaSoft -> repkasoft)
HKLM\Software\...\AppCompatFlags\Custom\Df.exe: [{7d3898dd-a465-4240-86f0-10de97a908e3}.sdb] -> [SDB] Delta Force
HKLM\Software\...\AppCompatFlags\InstalledSDB\{7d3898dd-a465-4240-86f0-10de97a908e3}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{7d3898dd-a465-4240-86f0-10de97a908e3}.sdb [2017-03-22]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-17] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Image Transfer Utility.lnk [2019-03-09]
ShortcutTarget: Image Transfer Utility.lnk -> C:\Program Files (x86)\Canon\ImageTransferUtility\ImageTransferUtility.exe (CANON INC.) [File not signed]
Startup: C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\YoWindow.lnk [2019-11-15]
ShortcutTarget: YoWindow.lnk -> C:\Program Files (x86)\YoWindow\yowindow.exe (RepkaSoft -> Repkasoft)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03378697-9878-4752-9EF5-AD9713DB721D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19786024 2016-02-23] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {09D1642F-E1C1-4676-BFF8-778903218A5C} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [610120 2020-09-23] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {0EA95C1C-B277-4FE9-AEF0-3F98A19B46D3} - System32\Tasks\Opera scheduled Autoupdate 1586585190 => C:\Users\Vlado\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software)
Task: {14D34F26-FE2D-4685-B793-72B890667251} - System32\Tasks\Opera scheduled Autoupdate 1604600915 => C:\Users\Guest home\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-10] (Opera Software AS -> Opera Software)
Task: {216B0568-5959-4F8F-B0A2-9F6CDC2ACA65} - System32\Tasks\CorelUpdateHelperTask-1766BB96E0164782B62390DD33A75324 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe
Task: {2BA9591B-6006-4D8D-87BB-664E9D1790A9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {352BFDFA-49ED-4093-BAE3-C9E19CB02B81} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {3C2B8BED-3817-41E1-89C1-C3CED0B05954} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {44079221-69C8-4CAC-AB43-156B3A1579AF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {4498B34D-802E-42D9-96DE-D50B6F8526DA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A4A512C-2BED-4657-B4B9-231276E86408} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {4FD4EC8B-3CD9-47CB-BED0-D8F6385E68B9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50F1031C-F553-4E25-AEF9-DFD5ED448C7C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {55554FC4-0E9E-4541-81B1-D20BDD14EEBF} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-12] (Adobe Inc. -> Adobe)
Task: {5EDFED08-AB9D-4934-94A8-A2902215CB6B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {6B4218A6-AA3D-474E-9F1C-6C15D44611C8} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-96550828-3074443609-3424243486-1004 => C:\Users\Vlado\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {6E96D13A-E713-4490-9F8F-36302A65D1A5} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {6FC73785-91C4-4B10-B4D6-42A6889EEFF1} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {78890DA2-8BC2-4B37-9538-70468094AF65} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {78A2B99F-1A19-4E89-8366-00A627D84BE4} - System32\Tasks\Opera scheduled assistant Autoupdate 1586585197 => C:\Users\Vlado\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Vlado\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {78A4E3BC-08DD-4FC5-B4C1-08143CF3F9CF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82472771-EF8C-444D-8C8F-ADA33676AC7F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83294D31-F486-46EC-9127-8848EF567D23} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1484288 2000-01-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8BD7E802-62F9-4AB0-A1EB-70CBE299CF22} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8C9259AD-C79D-4EA1-973C-1FFDE431A66A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9D965108-508B-46FD-9A9D-024FF1E07AFE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {9F4CF6F8-2E62-46FB-B25E-7F6046717389} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1484288 2000-01-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {A0D6F61A-D834-4A6D-B176-C07B8CD81955} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-12] (Adobe Inc. -> Adobe)
Task: {A9B7CFBA-F85B-4743-AFAB-8EC7F66D29B7} - System32\Tasks\SmartGameBooster SkipUAC (Vlado) => C:\Program Files (x86)\PCGameBoost\Smart Game Booster\SgbMain.exe
Task: {AD9F14F2-EEF2-4228-A213-F4E249080F65} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26781880 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BC8DF612-B311-4083-9483-A94E164DC7DA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BDE0FD31-BF70-4D2E-AB98-D73111745841} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {BEDA3B9F-CFC0-4D19-BD97-EC66569E6074} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BF458E98-F92A-4AF7-A44C-4FF8B8438F58} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {C29CAE5F-F0A8-4BC4-918B-8788C27F024D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [670928 2020-11-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {D5D27714-7896-472F-94AE-AA999055AB5E} - System32\Tasks\Opera scheduled assistant Autoupdate 1604600923 => C:\Users\Guest home\AppData\Local\Programs\Opera\launcher.exe [1721368 2020-11-10] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Guest home\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {D712CFAC-20CF-4878-B140-0BD5256B9CF1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
Task: {D81FF288-7101-479D-A50C-96F80DAFDC0C} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
Task: {D9CEFBBF-2DF9-4667-B568-F7036C2886D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
Task: {DC0283EC-C599-40DE-9572-E7D687C639CF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E4EEA53E-0D97-4539-B848-D833A1640C09} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E897D035-0748-46BC-8B0B-40DCBC4080C5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {F07B23B3-90DE-46B1-8B76-1A876FCBD6DA} - System32\Tasks\Mozilla\Firefox Default Browser Agent A2874C62D2997EFF => C:\Users\Guest home\AppData\Local\Mozilla Firefox\default-browser-agent.exe [660688 2020-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {F63C54FE-5AE1-44F9-8DCE-B65C7A9AFC1C} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2331 2015-06-22] () [File not signed]
Task: {FE076CAC-6B80-4612-9331-006FE0059C4C} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{52c5679a-365b-4719-b7b8-03ef00295e7a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{f1332a8b-2f5b-4551-8031-18845be03446}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF DefaultProfile: vns5rwbc.default
FF ProfilePath: C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default [2020-12-04]
FF user.js: detected! => C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\user.js [2018-10-12]
FF Homepage: Mozilla\Firefox\Profiles\vns5rwbc.default -> www.shmu.sk/
FF Extension: (Facebook Container) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\@contain-facebook.xpi [2020-10-03]
FF Extension: (AdGuard blokovač reklamy) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\adguardadblocker@adguard.com.xpi [2020-11-19]
FF Extension: (Browsec VPN - Free VPN for Firefox) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\browsec@browsec.com.xpi [2020-11-03]
FF Extension: (Forecastfox (fix version)) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\forecastfox@s3_fix_version.xpi [2020-11-23]
FF Extension: (To Google Translate) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-11-11]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2020-11-23]
FF Extension: (Kaspersky Protection) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com.xpi [2020-11-06]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\sp@avast.com.xpi [2020-07-12]
FF Extension: (uBlock Origin) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\uBlock0@raymondhill.net.xpi [2020-11-20]
FF Extension: (Worldwide Radio) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\worldwide@radio.xpi [2020-05-15]
FF Extension: (Avast Online Security) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\wrc@avast.com.xpi [2020-07-12]
FF Extension: (Autumn in the Mountains) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{106bd4d1-70c5-437b-9594-2d1de52c59d7}.xpi [2020-04-21]
FF Extension: (Autumn by CP) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{14e8938b-08f9-498b-9d1d-d2be642803b4}.xpi [2020-10-03]
FF Extension: (November's Deer by M♥Donna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{22887dcd-d1d2-4bd9-86a5-1a956e0fcc60}.xpi [2020-11-26]
FF Extension: (Halloween Witching Hour - animated) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{35825ba7-27b6-40bf-91bc-eb7baf6d39c6}.xpi [2020-04-21]
FF Extension: (Automne en couleurs - Autumn Colours) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{3c10252d-4881-4012-b790-2f09297a3a10}.xpi [2020-10-03]
FF Extension: (Best Bright Christmas by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{3ce68e94-0685-4b09-84c0-0d2cff4301a1}.xpi [2020-04-21]
FF Extension: (Frost-скреж) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{48380a38-0657-4c71-ab5e-f2d302c1a4a1}.xpi [2020-04-21]
FF Extension: (My Garden Tulips) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{4b25dc41-14f4-46c9-b0da-14bc60016100}.xpi [2020-05-15]
FF Extension: (Bird for May) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{4fd7ea0a-fd7a-4591-8d97-985d48b6a2fe}.xpi [2020-04-21]
FF Extension: (autumn path) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{535071e4-c2fd-4292-9006-21d2ac08869d}.xpi [2020-10-03]
FF Extension: (November Rain) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{6da92269-1a57-428e-bd04-0e5109120663}.xpi [2020-11-26]
FF Extension: (Autumn Morning Serenity by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{6f013887-2c7e-4c48-bea9-082291bc66c7}.xpi [2020-09-10]
FF Extension: (C.E. Spring Mountain Lake) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{708258fe-6c71-421e-8b84-2f217b50538c}.xpi [2020-05-06]
FF Extension: (Fresh Spring by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{73c810a8-1c4b-4767-b6e4-31da45365d81}.xpi [2020-07-19]
FF Extension: (Sunflower Honey Bee) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{80496d75-4e04-4bc8-b4a4-f4c2087fb58b}.xpi [2020-04-21]
FF Extension: (Sakura Blossoms & Birds by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{82f753d5-3a7c-4b9e-9bd3-675331e8250f}.xpi [2020-07-19]
FF Extension: (May Apple) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{9e894d32-ea7c-4ec6-a894-82c8d94862ea}.xpi [2020-05-15]
FF Extension: (Snowing on Bird) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{a2effc89-7b4b-4ef1-9316-05270fea7fc9}.xpi [2020-04-21]
FF Extension: (transparent amber leaves) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{a4502e6b-70ff-4a12-bcd4-7deaac9cbdb2}.xpi [2020-10-05]
FF Extension: (Hay After Harvest) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{ad1a7ca0-8f26-4051-af31-f47e55ab3293}.xpi [2020-08-31]
FF Extension: (Autumn Equinox) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{bfc42827-67f0-409d-921c-d4198ce215a7}.xpi [2020-04-21]
FF Extension: (Wheat Sky) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{ca71d2c0-4472-4ebc-8fec-d11e84d62f0b}.xpi [2020-04-21]
FF Extension: (ANIMATED White Christmas) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{cf5dfd30-5846-42f8-8701-78eec9ca389e}.xpi [2020-04-21]
FF Extension: (Spring Singer) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{cfaa60c2-536c-4035-b23b-3b10d9517577}.xpi [2020-07-19]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-11-17]
FF Extension: (Harvest Time by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{df56c75e-95dd-4827-b515-559124a442ee}.xpi [2020-08-28]
FF Extension: (Sakura Sunlight by M♥Donna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{e292d5d0-f3c8-45d5-b12e-6731ca852f7c}.xpi [2020-05-23]
FF Extension: (Thunderstorm by M♥Donna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{e453c6be-722b-4d96-a077-378d9f4b30cd}.xpi [2020-07-19]
FF Extension: (Forest in Winter) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{ebbf909c-010a-4f5a-aca7-9eef912b3a97}.xpi [2020-04-21]
FF Extension: (Northern Lake by MaDonna) - C:\Users\Vlado\AppData\Roaming\Mozilla\Firefox\Profiles\vns5rwbc.default\Extensions\{fcebb804-5eb9-43d9-a12a-30f6ca1b9b1b}.xpi [2020-08-02]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-11-06] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-11-06] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default [2020-11-12]
CHR HomePage: Default -> hxxp://www.shmu.sk/
CHR StartupUrls: Default -> "hxxp://www.shmu.sk/"
CHR Extension: (Prezentácie) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-22]
CHR Extension: (Dokumenty) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-22]
CHR Extension: (Disk Google) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-30]
CHR Extension: (YouTube) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-22]
CHR Extension: (Adblock pre Youtube™) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-10-30]
CHR Extension: (Tabuľky) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-22]
CHR Extension: (Full Screen Weather) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2019-10-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-30]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-10-30]
CHR Extension: (Christmas Tree and Fireplace [LSP]) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhfeikhcmipmmnkbggecdibdoeijcklm [2019-12-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-30]
CHR Extension: (Chrome Media Router) - C:\Users\Vlado\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-30]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

Opera:
=======
OPR Extension: (AdBlock) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2018-08-23]
OPR Extension: (AdBlocker for YouTube™) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\cgdogbijachehheddakopmfjahhgmmma [2019-12-23]
OPR Extension: (Adblock for Youtube™) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-10-11]
OPR Extension: (Dark theme for new tab page and all websites) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\egopeokecbgdiiofbemdgbofafjepang [2020-10-30]
OPR Extension: (Rich Hints Agent) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-24]
OPR Extension: (Install Chrome Extensions) - C:\Users\Vlado\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2019-12-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-12] (Adobe Inc. -> Adobe)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-08-11] (Mixbyte Inc -> Freemake)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-03-02] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-02] (Intel Corporation) [File not signed]
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-09-23] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2019-11-23] (Even Balance, Inc. -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [22656 2016-02-23] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [143856 2017-04-11] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [659768 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1341232 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [244768 2020-12-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998808 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [257208 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [310232 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [117456 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [207352 2020-11-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-05-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [233368 2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-31] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-31] (Microsoft Windows -> Microsoft Corporation)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-04 18:00 - 2020-12-04 18:00 - 000000000 _____ C:\WINDOWS\Minidump\120420-65593-01.dmp
2020-12-04 17:54 - 2020-12-04 17:54 - 000000000 _____ C:\WINDOWS\Minidump\120420-53906-01.dmp
2020-12-04 17:24 - 2020-12-04 17:24 - 000000000 ____D C:\Users\Vlado\AppData\LocalLow\IGDump
2020-12-04 17:14 - 2020-12-04 17:19 - 001680004 _____ C:\WINDOWS\Minidump\120420-55843-01.dmp
2020-12-04 16:30 - 2020-12-04 16:30 - 008447152 _____ (Malwarebytes) C:\Users\Vlado\Desktop\adwcleaner_8.0.8.exe
2020-12-04 16:18 - 2020-12-04 18:00 - 788093594 _____ C:\WINDOWS\MEMORY.DMP
2020-12-04 16:18 - 2020-12-04 18:00 - 000000000 ____D C:\WINDOWS\Minidump
2020-12-04 16:18 - 2020-12-04 16:29 - 002016372 _____ C:\WINDOWS\Minidump\120420-72578-01.dmp
2020-12-04 15:17 - 2020-12-04 15:17 - 000000000 ____D C:\Users\Vlado\AppData\Local\mbam
2020-12-04 15:15 - 2020-12-04 15:15 - 002077136 _____ (Malwarebytes) C:\Users\Vlado\Desktop\MBSetup.exe
2020-12-04 08:55 - 2020-12-04 08:55 - 000025793 _____ C:\Users\Vlado\Desktop\logy.rar
2020-12-04 08:45 - 2020-12-04 08:49 - 000050945 _____ C:\Users\Vlado\Desktop\Addition.txt
2020-12-04 08:37 - 2020-12-04 18:36 - 000040414 _____ C:\Users\Vlado\Desktop\FRST.txt
2020-12-04 08:37 - 2020-12-04 08:37 - 000000000 ____D C:\Users\Vlado\Desktop\FRST-OlderVersion
2020-11-27 20:16 - 2020-11-27 20:16 - 004594522 _____ C:\Users\Vlado\Desktop\Facebook.html
2020-11-27 20:13 - 2020-11-27 20:13 - 000000000 ____D C:\Users\Vlado\Desktop\Facebook_subory
2020-11-21 10:09 - 2020-12-04 18:33 - 000004510 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1604600923
2020-11-21 10:05 - 2020-11-21 10:05 - 000000000 ____D C:\Users\Guest home\AppData\Local\Kaspersky Lab
2020-11-17 20:47 - 2020-11-20 18:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-11-17 12:13 - 2020-11-17 12:13 - 000017348 _____ C:\Users\Vlado\Downloads\[SkT]Pozemstan___The_Man_from_Earth_(2007)(CZ)_=_CSFD_82%.torrent
2020-11-15 06:33 - 2019-10-30 07:15 - 000168976 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll
2020-11-15 06:33 - 2019-10-30 07:15 - 000141840 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll
2020-11-15 06:33 - 2019-10-30 07:15 - 000136720 _____ C:\WINDOWS\SysWOW64\libEGL.dll
2020-11-15 06:32 - 2019-10-30 07:15 - 000281616 _____ C:\WINDOWS\system32\igfxCPL.cpl
2020-11-15 06:32 - 2019-10-30 04:16 - 000212464 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2020-11-15 06:32 - 2019-10-30 04:16 - 000184144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2020-11-14 23:04 - 2020-11-14 23:04 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-14 23:02 - 2020-11-14 23:02 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-14 23:01 - 2020-11-14 23:01 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-14 23:00 - 2020-11-14 23:00 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-14 23:00 - 2020-11-14 23:00 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-12 20:16 - 2020-11-12 20:16 - 000453905 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20201112-201641.backup
2020-11-12 20:16 - 2020-10-30 22:37 - 000453905 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20201112-201619.backup
2020-11-06 23:21 - 2020-11-06 23:21 - 000321618 _____ C:\Users\Vlado\Nepomenovaný projekt.osp
2020-11-06 23:21 - 2020-11-06 23:21 - 000000000 ____D C:\Users\Vlado\Nepomenovaný projekt_assets
2020-11-06 19:31 - 2020-11-12 17:25 - 000004370 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-11-06 19:27 - 2020-11-06 19:27 - 000073753 _____ C:\Users\Vlado\Downloads\[SkT]Dumbo_(2019)(CZ_SK)_=_CSFD_64%.torrent
2020-11-06 19:24 - 2020-11-06 19:24 - 000035656 _____ C:\Users\Vlado\Downloads\[SkT]Dumbo_(2019)(CZ_EN)[720p]_=_CSFD_64%.torrent
2020-11-06 18:46 - 2020-11-06 18:46 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm
2020-11-06 18:46 - 2020-11-06 18:46 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm
2020-11-06 18:46 - 2020-11-06 18:46 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm
2020-11-06 18:46 - 2020-11-06 18:46 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb
2020-11-06 18:46 - 2020-11-06 18:46 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb
2020-11-06 18:46 - 2020-11-06 18:46 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 ____D C:\Users\Vlado\AppData\Local\Kaspersky Lab
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-wal
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-wal
2020-11-06 18:46 - 2020-11-06 18:46 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-wal
2020-11-05 22:56 - 2020-11-05 22:56 - 000003192 _____ C:\WINDOWS\system32\Tasks\kpm_tray.exe
2020-11-05 22:56 - 2020-11-05 22:56 - 000001229 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2020-11-05 22:56 - 2020-11-05 22:56 - 000001229 _____ C:\ProgramData\Desktop\Kaspersky Password Manager.lnk
2020-11-05 22:55 - 2020-11-05 22:55 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab
2020-11-05 22:55 - 2020-11-05 22:55 - 000000000 ____D C:\Users\Default User\AppData\Local\Kaspersky Lab
2020-11-05 22:55 - 2020-11-05 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2020-11-05 22:49 - 2020-11-05 22:49 - 000310232 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000207352 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000117456 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000099152 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2020-11-05 22:47 - 2020-11-05 22:47 - 000003240 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2020-11-05 22:47 - 2020-11-05 22:47 - 000000000 ____D C:\Program Files\Common Files\AV
2020-11-05 22:46 - 2020-11-05 22:46 - 000001263 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2020-11-05 22:46 - 2020-11-05 22:46 - 000001263 _____ C:\ProgramData\Desktop\Kaspersky Secure Connection.lnk
2020-11-05 22:46 - 2020-11-05 22:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2020-11-05 22:45 - 2020-11-05 22:45 - 000002217 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2020-11-05 22:45 - 2020-11-05 22:45 - 000002217 _____ C:\ProgramData\Desktop\Kaspersky Internet Security.lnk
2020-11-05 22:45 - 2020-11-05 22:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2020-11-05 22:45 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2020-11-05 22:44 - 2020-12-04 18:34 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-11-05 22:44 - 2020-11-05 23:02 - 000998808 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2020-11-05 22:44 - 2020-11-05 23:02 - 000251800 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2020-11-05 22:44 - 2020-11-05 22:55 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2020-11-05 22:44 - 2020-11-05 22:44 - 000257208 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2020-11-05 22:29 - 2020-11-05 22:30 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-11-05 22:12 - 2020-11-05 22:12 - 000014952 _____ C:\Users\Vlado\Downloads\[SkT]Kaspersky_Internet_Security_Multi-Device_2020_CZ!.torrent
2020-11-05 19:51 - 2020-11-05 19:51 - 000011359 _____ C:\Users\Vlado\Downloads\[SkT]Vanocni_vysadek___Operation_Christmas_Drop_(2020)(CZ)[1080p][WEBrip]_=_CSFD_60%.torrent
2020-11-05 19:28 - 2020-12-04 18:33 - 000004258 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1604600915
2020-11-05 19:28 - 2020-12-04 18:33 - 000001531 _____ C:\Users\Guest home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2020-11-05 19:28 - 2020-11-05 19:28 - 000001473 _____ C:\Users\Guest home\Desktop\Prehliadač Opera.lnk
2020-11-05 19:28 - 2020-11-05 19:28 - 000000000 ____D C:\Users\Guest home\AppData\Local\Opera Software
2020-11-05 19:26 - 2020-11-05 19:26 - 000000000 ____D C:\Users\Guest home\AppData\Roaming\Opera Software
2020-11-04 07:44 - 2020-11-04 07:44 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-11-04 07:40 - 2020-11-04 07:40 - 000000020 ___SH C:\Users\Guest home\ntuser.ini

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-04 18:36 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-04 18:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-04 18:35 - 2019-08-11 08:29 - 000000000 ____D C:\FRST
2020-12-04 18:29 - 2020-05-23 19:42 - 000000000 ____D C:\Users\Guest home\AppData\Local\CrashDumps
2020-12-04 18:29 - 2020-04-09 07:16 - 000000000 ____D C:\Users\Guest home\AppData\LocalLow\Mozilla
2020-12-04 18:25 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-04 18:24 - 2020-11-03 02:18 - 000000000 ____D C:\Users\Vlado
2020-12-04 18:19 - 2020-05-18 16:22 - 000000000 ____D C:\Program Files\CCleaner
2020-12-04 18:14 - 2017-10-31 14:50 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-04 18:07 - 2019-08-25 17:50 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-04 18:04 - 2020-11-03 02:58 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-96550828-3074443609-3424243486-1004
2020-12-04 18:04 - 2020-11-03 02:18 - 000002415 _____ C:\Users\Guest home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-04 18:04 - 2019-06-28 11:27 - 000000000 ___RD C:\Users\Guest home\OneDrive
2020-12-04 18:02 - 2019-06-28 10:31 - 000000000 __SHD C:\Users\Guest home\IntelGraphicsProfiles
2020-12-04 18:00 - 2020-11-03 02:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-04 18:00 - 2020-11-03 02:08 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-04 18:00 - 2020-11-03 02:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-04 18:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-04 18:00 - 2018-11-12 05:51 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-12-04 17:58 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-04 17:56 - 2018-08-23 14:49 - 000000000 __SHD C:\Users\Vlado\IntelGraphicsProfiles
2020-12-04 17:32 - 2018-10-27 12:59 - 000000000 ____D C:\ProgramData\updater2
2020-12-04 17:20 - 2018-09-20 15:40 - 000000000 ____D C:\Users\Vlado\AppData\LocalLow\Mozilla
2020-12-04 16:30 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-04 16:14 - 2020-08-01 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2020-12-04 16:14 - 2020-08-01 16:53 - 000000000 ____D C:\ProgramData\Auslogics
2020-12-04 16:14 - 2020-08-01 16:53 - 000000000 ____D C:\Program Files (x86)\Auslogics
2020-12-04 08:37 - 2020-04-08 13:33 - 002288640 _____ (Farbar) C:\Users\Vlado\Desktop\FRST64.exe
2020-12-04 08:08 - 2020-10-31 09:10 - 000000000 ___DC C:\WINDOWS\Panther
2020-12-04 07:14 - 2020-11-03 02:58 - 000003456 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 07:14 - 2020-11-03 02:58 - 000003332 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-04 07:13 - 2018-08-23 20:13 - 000000000 ____D C:\Users\Vlado\AppData\Local\PlaceholderTileLogoFolder
2020-12-03 18:39 - 2018-08-24 18:28 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\vlc
2020-12-03 12:57 - 2018-08-23 14:49 - 000000000 ____D C:\Users\Vlado\AppData\Local\Packages
2020-12-02 21:49 - 2018-08-23 15:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-02 21:44 - 2018-08-23 15:15 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-12-01 19:51 - 2020-11-03 02:58 - 000004464 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1586585197
2020-12-01 19:51 - 2020-11-03 02:58 - 000004222 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1586585190
2020-12-01 19:51 - 2020-04-11 07:06 - 000001448 _____ C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2020-11-26 15:12 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-11-25 23:15 - 2020-11-03 02:58 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-25 23:14 - 2019-09-30 20:31 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-24 13:48 - 2020-11-03 02:58 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-23 20:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-11-22 10:44 - 2020-11-03 02:18 - 000000000 ____D C:\Users\Guest home
2020-11-21 10:13 - 2018-08-22 22:23 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-11-21 10:12 - 2020-11-03 02:58 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2020-11-03 02:58 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-21 10:12 - 2018-08-22 22:23 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-11-21 10:12 - 2017-10-31 14:50 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-11-20 18:15 - 2020-11-03 02:08 - 000433288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-20 18:14 - 2018-09-20 15:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-11-18 21:05 - 2019-08-08 12:11 - 000000000 ____D C:\ProgramData\Corel
2020-11-18 21:03 - 2019-08-08 12:30 - 000000000 ____D C:\Users\Vlado\Documents\Corel VideoStudio Pro
2020-11-18 20:59 - 2020-11-03 13:15 - 000003336 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-1766BB96E0164782B62390DD33A75324
2020-11-18 09:22 - 2020-11-03 02:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-11-18 09:22 - 2018-09-20 15:40 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-11-17 14:01 - 2018-08-23 20:57 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\uTorrent
2020-11-17 12:57 - 2019-03-28 04:52 - 000000000 ____D C:\Users\Vlado\AppData\Local\BitTorrentHelper
2020-11-17 08:31 - 2019-09-22 07:09 - 000002315 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-16 20:13 - 2019-10-27 17:49 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\avidemux
2020-11-16 20:10 - 2019-10-27 17:49 - 000000000 ____D C:\Program Files (x86)\Avidemux 2.7 - 32 bits
2020-11-16 14:41 - 2020-05-18 16:22 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-11-16 14:41 - 2020-05-18 16:22 - 000000865 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-11-16 12:45 - 2020-11-03 02:36 - 001899640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-16 12:45 - 2020-11-03 00:19 - 000762354 _____ C:\WINDOWS\system32\perfh019.dat
2020-11-16 12:45 - 2020-11-03 00:19 - 000152046 _____ C:\WINDOWS\system32\perfc019.dat
2020-11-16 12:45 - 2019-08-12 21:13 - 000135154 _____ C:\WINDOWS\system32\perfh01B.dat
2020-11-16 12:45 - 2019-08-12 21:13 - 000029142 _____ C:\WINDOWS\system32\perfc01B.dat
2020-11-16 00:00 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-11-15 23:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-15 23:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-15 23:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-15 23:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-15 08:20 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-15 07:59 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2020-11-14 23:00 - 2020-11-03 02:13 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-11-14 22:06 - 2016-11-14 03:29 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-11-12 20:23 - 2018-12-15 22:31 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\ViberPC
2020-11-12 19:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ModemLogs
2020-11-12 17:25 - 2020-11-03 02:58 - 000004548 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-11-12 17:25 - 2019-12-07 10:18 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-11-12 17:25 - 2019-12-07 10:18 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-11-12 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-12 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-06 23:21 - 2020-07-12 17:31 - 000000000 ____D C:\Users\Vlado\.openshot_qt
2020-11-06 18:57 - 2018-08-26 14:02 - 000000000 ____D C:\Program Files\WinRAR
2020-11-06 06:38 - 2018-08-26 14:00 - 000000000 ____D C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-06 06:38 - 2018-08-26 14:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-11-06 06:38 - 2018-08-26 14:00 - 000000000 ____D C:\Program Files (x86)\WinRAR
2020-11-06 05:22 - 2020-10-30 21:19 - 000000000 __SHD C:\anti-malware.quarantine
2020-11-06 04:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2020-11-05 23:03 - 2020-05-20 07:35 - 000233368 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kneps.sys
2020-11-05 19:47 - 2018-10-11 20:59 - 000000000 ____D C:\Users\Vlado\AppData\Local\D3DSCache
2020-11-04 17:34 - 2019-06-28 10:31 - 000000000 ____D C:\Users\Guest home\AppData\Local\Packages
2020-11-04 07:41 - 2020-02-12 05:57 - 000002346 _____ C:\Users\Guest home\Desktop\Google Chrome.lnk
2020-11-04 07:41 - 2019-06-28 10:31 - 000000000 ___RD C:\Users\Guest home\3D Objects
2020-11-04 07:41 - 2017-10-31 14:41 - 000000000 __RHD C:\Users\Public\AccountPictures

==================== Files in the root of some directories ========

2018-08-23 14:52 - 2019-08-11 06:31 - 000000200 _____ () C:\Users\Vlado\AppData\Roaming\sp_data.sys

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-12-2020
Ran by Vlado (04-12-2020 18:37:43)
Running from C:\Users\Vlado\Desktop
Windows 10 Home Version 2004 19041.630 (X64) (2020-11-03 01:59:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-96550828-3074443609-3424243486-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-96550828-3074443609-3424243486-503 - Limited - Disabled)
Guest (S-1-5-21-96550828-3074443609-3424243486-501 - Limited - Disabled)
Guest home (S-1-5-21-96550828-3074443609-3424243486-1004 - Limited - Enabled) => C:\Users\Guest home
HomeGroupUser$ (S-1-5-21-96550828-3074443609-3424243486-1003 - Limited - Enabled)
Vlado (S-1-5-21-96550828-3074443609-3424243486-1001 - Administrator - Enabled) => C:\Users\Vlado
WDAGUtilityAccount (S-1-5-21-96550828-3074443609-3424243486-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

[SDB] Delta Force (HKLM\...\{7d3898dd-a465-4240-86f0-10de97a908e3}.sdb) (Version: - )
µTorrent (HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\uTorrent) (Version: 3.5.5.45828 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.013.20066 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.453 - Adobe)
Aktualizácie NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.7 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.5.24 - ICEpower a/s)
Auslogics Anti-Malware (HKLM-x32\...\{A5A6F7C9-F91E-45C7-8DAA-289CBB0C817D}_is1) (Version: 1.21.0.4 - Auslogics Labs Pty Ltd)
Avast Driver Updater (HKLM-x32\...\{8804140C-3144-4075-9526-1C662E26CA17}) (Version: 2.5.5 - AVAST Software) Hidden
Avast Driver Updater (HKLM-x32\...\Avast Driver Updater) (Version: 2.5.5 - AVAST Software)
Avidemux 2.7 - 32 bits (32-bit) (HKLM-x32\...\Avidemux 2.7 - 32 bits) (Version: 2.7.1.180604 - )
Bloody7 (HKLM-x32\...\Bloody3) (Version: 19.09.0012 - Bloody)
Call of Duty - United Offensive (HKLM-x32\...\{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision) Hidden
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) 2 (HKLM-x32\...\{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision)
Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC) (Version: 8.10.4.24 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.74 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Delta Force (1.00.03.03p) (HKLM-x32\...\1079289132_is1) (Version: 0.1.1.316 - GOG.com)
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17_is1) (Version: 1.4.4.0 - )
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.8.4 - Ellora Assets Corporation)
Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden
GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{61a0f1f5-c77e-4992-ba85-029f93cd8d18}) (Version: 10.1.1.27 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.5.0.1015 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7325 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1620.3 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{8B08DDA1-FDE7-4897-8EB6-E0B048A6D88B}) (Version: 1.0.1.618 - Intel Corporation)
Kaspersky Internet Security (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky)
Microsoft Office 2016 Standard - sk-sk (HKLM\...\StandardRetail - sk-sk) (Version: 16.0.13328.20356 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 83.0 (x64 sk) (HKLM\...\Mozilla Firefox 83.0 (x64 sk)) (Version: 83.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 81.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Grafický ovládač 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenShot Video Editor verzia 2.5.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 - OpenShot Studios, LLC)
Opera Stable 72.0.3815.400 (HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\Opera 72.0.3815.400) (Version: 72.0.3815.400 - Opera Software)
Opera Stable 72.0.3815.400 (HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\Opera 72.0.3815.400) (Version: 72.0.3815.400 - Opera Software)
Ovládací panel NVIDIA 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 456.71 - NVIDIA Corporation) Hidden
Photomatix Pro version 5.1 (HKLM\...\PhotomatixPro5x64_is1) (Version: 5.1 - HDRsoft Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.14 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.31241 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8098 - Realtek Semiconductor Corp.)
Slovakia TOPO v2 (HKLM-x32\...\{A1E15B5F-E414-4595-A1B5-94A2F07EF9CB}) (Version: 2.00 - CONAN s.r.o.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Trainz (HKLM-x32\...\{F03D7004-F232-4B7A-A4A0-4B8FC118C4BD}) (Version: 1.00.000 - Auran) Hidden
Trainz (HKLM-x32\...\InstallShield_{F03D7004-F232-4B7A-A4A0-4B8FC118C4BD}) (Version: 1.00.000 - Auran)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Viber (HKLM-x32\...\{C0A0A235-FBF9-499B-B964-CCF0E1C9AA78}) (Version: 9.9.1.4 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\{625a4ff5-1926-48f5-a17f-59600fe8aa9b}) (Version: 9.9.1.4 - Viber Media Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.)
WinRAR 5.91 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
YoWindow (HKLM-x32\...\yowindow) (Version: 3 - RepkaSoft)

Packages:
=========
Adobe Photoshop Express: Image Editor, Adjustments, Filters, Effects, Borders -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.4.8.0_x64__ynb6jyjzte8ga [2020-11-10] (Adobe Inc.)
ASUS ZenLink -> C:\Program Files\WindowsApps\B9ECED6F.ZenSync_1.0.7.0_x86__qmba6cd70vzyy [2018-08-23] (ASUSTeK COMPUTER INC.) [MS Ad]
Czech Autumn -> C:\Program Files\WindowsApps\Microsoft.CzechAutumn_1.0.0.0_neutral__8wekyb3d8bbwe [2019-10-06] (Microsoft Corporation)
Czech Winter -> C:\Program Files\WindowsApps\Microsoft.CzechWinter_1.0.0.0_neutral__8wekyb3d8bbwe [2020-12-03] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.6.181.0_x64__rz1tebttyb220 [2020-11-08] (Dolby Laboratories)
Excel Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Excel_16001.13127.20784.0_x64__8wekyb3d8bbwe [2020-11-12] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-08] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.11020.5479.0_x64__8wekyb3d8bbwe [2020-11-18] (Microsoft Corporation)
Movie Maker : Free Video Editor -> C:\Program Files\WindowsApps\39691Videopix.MovieMakerFreeVideoEditor_1.1.70.0_x64__dxz7h1qnd1pge [2020-11-27] (Videopix)
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-08-23] (ASUSTeK COMPUTER INC.) [Startup Task]
MyIPTV Player -> C:\Program Files\WindowsApps\41879VbfnetApps.MyIPTVPlayer_4.2.5.0_x64__7casf8sqhfy78 [2020-08-02] (Vbfnet Apps) [MS Ad]
PowerPoint Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.PowerPoint_16001.13127.20784.0_x64__8wekyb3d8bbwe [2020-12-02] (Microsoft Corporation)
Ultra File Opener -> C:\Program Files\WindowsApps\D5BE6627.371995F5E41A5_7.2.7.0_x86__9pm2v9747qaaa [2020-08-29] (CompuClever Systems Inc.)
Winter Garden by Hayley Elizabeth -> C:\Program Files\WindowsApps\Microsoft.WinterGardenbyHayleyElizabeth_1.0.0.0_neutral__8wekyb3d8bbwe [2019-10-06] (Microsoft Corporation)
Winter Holiday Glow -> C:\Program Files\WindowsApps\Microsoft.WinterHolidayGlow_1.0.0.0_neutral__8wekyb3d8bbwe [2019-11-27] (Microsoft Corporation)
Winter Wallpapers -> C:\Program Files\WindowsApps\6630lbc21apps.WinterWallpapers_1.1.1.0_x64__a24r53g98298g [2020-11-30] (lbc21apps) [MS Ad]
Word Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Word_16001.13127.20784.0_x64__8wekyb3d8bbwe [2020-11-12] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxDTCM.dll [2019-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2020-11-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-04-18 18:10 - 2020-04-18 18:10 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2020-04-18 18:10 - 2020-04-18 18:10 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7942 more sites.

IE trusted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\123simsen.com -> www.123simsen.com

There are 7943 more sites.

IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-96550828-3074443609-3424243486-1004\...\123simsen.com -> www.123simsen.com

There are 7943 more sites.


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2020-11-12 20:16 - 000453905 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 15608 more lines.


2019-11-10 19:59 - 2020-09-04 18:10 - 000000510 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-2QCS2VS.mshome.net # 2025 9 3 3 17 10 59 23
192.168.137.57 HITACHI-TV.mshome.net # 2020 9 5 11 17 10 59 23
19

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Vlado\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\Guest home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\StartupFolder: => "Image Transfer Utility.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\StartupApproved\StartupFolder: => "YoWindow.lnk"
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\StartupApproved\Run: => "Bloody2"
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\...\StartupApproved\Run: => "FlashPlayerUpdate"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F1597C08-0A2E-4C1B-A147-6F2EA0740F8A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5A8B19CF-5716-4ED1-A00F-5A3DE2D0BEF5}] => (Allow) C:\Program Files\OpenShot Video Editor\openshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [UDP Query User{FB77A3DE-FE62-4DEE-98DC-6BD38B2E6525}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [TCP Query User{17EFF851-9B08-46D5-B1F7-6227451726A2}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [UDP Query User{790CE28C-5874-4BF0-AFBB-B3B9BEF807DD}C:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) C:\program files (x86)\activision\call of duty - world at war\codwaw.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [TCP Query User{05E45CFE-2B9D-4AFF-BD95-E5929DDFF921}C:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) C:\program files (x86)\activision\call of duty - world at war\codwaw.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [UDP Query User{2C4C57A6-6FBA-4EA1-A3A9-55BCDF515DEE}C:\program files (x86)\activision\call of duty - world at war\codwawmp.exe] => (Allow) C:\program files (x86)\activision\call of duty - world at war\codwawmp.exe (Activision Publishing -> Activision Blizzard, Inc.)
FirewallRules: [TCP Query User{32F0F122-1661-4E23-8A7F-3FE468DA3A01}C:\program files (x86)\activision\call of duty - world at war\codwawmp.exe] => (Allow) C:\program files (x86)\activision\call of duty - world at war\codwawmp.exe (Activision Publishing -> Activision Blizzard, Inc.)
FirewallRules: [{ADBECA51-C89E-4AE0-BF1E-42E4022C98A7}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F6D2E4E4-BD95-4CD1-AB15-DD3524B00CC2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{60B86E5E-2B13-4D9A-B562-E4BEAA17B0BB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{2B734A42-E2A3-4840-800C-BBDDF1A4CD36}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [TCP Query User{1E2FAC0B-BDF9-4A8F-B549-741A45AB8E7A}C:\users\vlado\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\vlado\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{BF453A14-4755-47FE-A7CD-EFBFD86FB046}C:\users\vlado\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\vlado\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A076F241-BB33-4BE3-A416-E62D848F7A52}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C086A0A2-857C-4F36-9A17-B9B75CAA5462}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E45B2478-48A4-4AD5-B48B-9C914B900874}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{ED53409C-701D-44E0-AE4F-F152D45BA2A9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CE618E4D-5055-47A2-B045-4FC14210C961}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C26474D7-31B3-4578-8107-7E8C8E9CA5FB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B74FABC1-FF30-4AA1-BCAF-58D64C74FBAB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B2489C97-9462-4BD7-931F-66438793AA2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A93D7333-5F13-4A98-AEA3-109A55740B18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DA4F75E7-CB2C-4222-8D16-6C26811E59D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{899C63C2-0406-43DB-88AB-E181FC99BD78}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9BB5AE53-63AF-4E79-AABD-8B8007696290}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0826E7F8-EA68-49CA-B35F-F2B1921B0F79}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5C53719C-0447-4E88-A413-565F7235A33C}] => (Allow) C:\Users\Vlado\AppData\Local\Programs\Opera\72.0.3815.378\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{98CA46B8-10B0-44B2-812A-C9AC3FBFA5FC}] => (Allow) C:\Users\Vlado\AppData\Local\Programs\Opera\72.0.3815.400\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{C23A0088-3128-412C-9073-DCE63EE4E30F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B5F2EDF-C3D6-4C45-AABB-1CD6B360C379}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{508ED16D-55BD-4325-ADAA-99F6A6C7E7D9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3E09308C-9A25-4E5A-9497-76DB5B9AAA9B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{10F86343-53AE-4674-B619-8331734D5590}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AA4E6706-B5E5-4CA4-B022-5636026AC35F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0C2E4839-A274-46F1-9932-1E0E3A7511DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9F3609DC-0F78-4E5F-BA88-BEA59DC9C849}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.147.684.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/04/2020 06:37:12 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/04/2020 06:37:12 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/04/2020 06:36:10 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/04/2020 06:36:10 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/04/2020 06:35:09 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/04/2020 06:34:05 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/04/2020 06:33:05 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (12/04/2020 06:32:05 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.


System errors:
=============
Error: (12/04/2020 06:29:33 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Intel Corporation - Display - 26.20.100.7325.

Error: (12/04/2020 06:00:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby MBAMChameleon zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (12/04/2020 06:00:29 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 17:54:22 on ‎4. ‎12. ‎2020 was unexpected.

Error: (12/04/2020 05:54:22 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 17:14:44 on ‎4. ‎12. ‎2020 was unexpected.

Error: (12/04/2020 05:19:41 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač sa po kontrole chýb reštartoval. Kontrola chýb: 0x0000007e (0xffffffffc0000005, 0xfffff8005f2b1349, 0xffffd10d6d20f1d8, 0xffffd10d6d20ea10). Výpis sa uložil do súboru: C:\WINDOWS\MEMORY.DMP. Identifikácia hlásenia: 38ee0153-cb88-4333-b6b3-40e7d8c48d6b.

Error: (12/04/2020 05:14:03 PM) (Source: volmgr) (EventID: 161) (User: )
Description: Dump file creation failed due to error during dump creation.

Error: (12/04/2020 05:12:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba sieťového zdieľania pre prehrávač Windows Media Player sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 30000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (12/04/2020 05:12:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 0 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.


Windows Defender:
===================================
Date: 2020-11-05 13:49:11.9550000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {2EAA8591-F0E6-4BC7-93EC-8207187B7153}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-11-04 08:16:16.1260000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {21CA38C8-D962-411C-9010-4DA24B043980}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-11-03 03:04:17.0280000Z
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x80004005
Error description: Unspecified error
Reason: The filter driver skipped scanning items and is in pass through mode. This may be due to low resource conditions.

CodeIntegrity:
===================================

Date: 2020-12-04 18:35:29.7230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-12-04 18:35:29.7070000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-12-04 18:35:29.6770000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-12-04 18:29:33.1850000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-12-04 18:29:33.1690000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-12-04 18:29:33.1340000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-12-04 18:01:26.3240000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-12-04 18:01:26.2940000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. X556UQK.317 04/16/2019
Motherboard: ASUSTeK COMPUTER INC. X556UQK
Processor: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Percentage of memory in use: 46%
Total physical RAM: 8076.28 MB
Available physical RAM: 4312.54 MB
Total Virtual: 9356.28 MB
Available Virtual: 5334 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:370.98 GB) (Free:200.91 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:121.22 GB) NTFS

\\?\Volume{ed65904e-09d1-4a7c-a694-203a3eb839e8}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{06b589ae-a584-423e-9727-6df572d74921}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.44 GB) NTFS
\\?\Volume{f051ffb5-4fd2-4cd2-bcbf-ce405d547476}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 85061C20)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {D712CFAC-20CF-4878-B140-0BD5256B9CF1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
Task: {D9CEFBBF-2DF9-4667-B568-F7036C2886D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-11-06] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-11-06] <==== ATTENTION
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers1_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

EmptyTemp:
Hosts:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Timur]

Fix result of Farbar Recovery Scan Tool (x64) Version: 02-12-2020
Ran by Vlado (04-12-2020 20:36:52) Run:3
Running from C:\Users\Vlado\Desktop
Loaded Profiles: Vlado
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {D712CFAC-20CF-4878-B140-0BD5256B9CF1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
Task: {D9CEFBBF-2DF9-4667-B568-F7036C2886D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-15] (Google Inc -> Google Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-11-06] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-11-06] <==== ATTENTION
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers1_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_S-1-5-21-96550828-3074443609-3424243486-1004: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-96550828-3074443609-3424243486-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D712CFAC-20CF-4878-B140-0BD5256B9CF1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D712CFAC-20CF-4878-B140-0BD5256B9CF1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D9CEFBBF-2DF9-4667-B568-F7036C2886D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9CEFBBF-2DF9-4667-B568-F7036C2886D3}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js => moved successfully
C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx" => not found
"HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx" => not found
"HKU\S-1-5-21-96550828-3074443609-3424243486-1004\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ FileSyncEx" => not found
"HKU\S-1-5-21-96550828-3074443609-3424243486-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-96550828-3074443609-3424243486-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKU\S-1-5-21-96550828-3074443609-3424243486-1004\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
"HKU\S-1-5-21-96550828-3074443609-3424243486-1004\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 11034624 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35975239 B
Java, Flash, Steam htmlcache => 1168 B
Windows/system/drivers => 138409515 B
Edge => 895424 B
Chrome => 544987 B
Firefox => 1104565441 B
Opera => 57641790 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 52904 B
NetworkService => 52904 B
Vlado => 99190617 B
Guest home => 369057309 B

RecycleBin => 275780 B
EmptyTemp: => 1.7 GB temporary data Removed.

================================

[Rudy]

Smazáno. Nastala nějaká změna?

[Timur]

Ide skveleeeeeeee, je to starsi NT ale este zije ĎAKUJEM!

[Rudy]

Nemáte zač!