Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-07-2021
Ran by Bludky (administrator) on DESKTOP-104HI1H (ASUSTeK COMPUTER INC. X540LJ) (11-07-2021 12:24:10)
Running from C:\Users\42072\Downloads
Loaded Profiles: Bludky
Platform: Windows 10 Home Version 2004 19041.1052 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <20>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastNM.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Electronic Arts) [File not signed] C:\Program Files (x86)\Electronic Arts\EADM\Core.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe
(Electronic Arts, Inc. -> The Qt Company Ltd.) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtWebEngineProcess.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Hola VPN Ltd -> Hola Networks Ltd.) C:\Program Files\Hola\app\hola.exe
(Hola VPN Ltd -> Hola Networks Ltd.) C:\Program Files\Hola\app\hola_svc.exe
(Hola VPN Ltd -> Hola Networks Ltd.) C:\Program Files\Hola\app\hola_updater.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Luminati Networks Ltd -> Bright Data Ltd.) C:\Program Files\Hola\app\net_updater64.exe
(Luminati Networks Ltd -> Luminati Networks Ltd.) C:\Program Files\Hola\app\luminati\net_svc.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\42072\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\42072\AppData\Local\Microsoft\Teams\current\Teams.exe <10>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Outbyte Computing Pty Ltd -> Outbyte) C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [hola] => C:\Program Files\Hola\app\hola.exe [2499480 2021-07-01] (Hola VPN Ltd -> Hola Networks Ltd.) <==== ATTENTION
HKU\S-1-5-21-3456692171-1342812710-3318875897-1001\...\Run: [EA Core] => C:\Program Files (x86)\Electronic Arts\EADM\Core.exe [3325952 2009-03-28] (Electronic Arts) [File not signed]
HKU\S-1-5-21-3456692171-1342812710-3318875897-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3456692171-1342812710-3318875897-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144816 2021-07-02] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3456692171-1342812710-3318875897-1001\...\Run: [AvastBrowserAutoLaunch_988D95427FB65238C7030F978ADAE91F] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2277640 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3456692171-1342812710-3318875897-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\42072\AppData\Local\Microsoft\Teams\Update.exe [2453728 2021-04-22] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3456692171-1342812710-3318875897-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [274176 2021-01-18] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-21-3456692171-1342812710-3318875897-1001\...\MountPoints2: {14f22f72-3eaa-11ea-94ed-806e6f6e6963} - "D:\Autorun.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-07-02] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\91.0.10364.115\Installer\chrmstp.exe [2021-06-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04F0C777-6E81-49FE-86EB-7BEABD006936} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-24] (Google LLC -> Google LLC)
Task: {21D0035F-0571-43A3-8929-21651352DD25} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2277640 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
Task: {2467DF1E-0FD0-4B11-BF1A-EFE4AF9CFB61} - System32\Tasks\bookingDesktopAppUpdateTaskMachineUA => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-03-16] (bookingDesktopApp.) [File not signed]
Task: {25A5C6D1-9C85-4C02-9D97-F632EA25ED26} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-28] (Avast Software s.r.o. -> AVAST Software)
Task: {287CC0A3-6E5F-4194-95D9-0F6113F15DA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-24] (Google LLC -> Google LLC)
Task: {28DDBBD5-47BA-476D-8AE9-5C8773BEDF68} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-10-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {2ADF585D-AE16-4589-B1CC-2195657F69E1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {33DA3567-FA57-49AC-9F0F-646A4AC6B39C} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-28] (Avast Software s.r.o. -> AVAST Software)
Task: {3BFCCCF4-4475-47B4-BFA0-9FE1060B9374} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4903192 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
Task: {3D68CFF6-0BE0-4A05-9205-DA524C1B19C7} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 2018-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {40FC4039-7412-461A-AF6F-45A8A21A5897} - System32\Tasks\bookingDesktopAppUpdateTaskMachineCore => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-03-16] (bookingDesktopApp.) [File not signed]
Task: {5314CFB4-D342-4C3A-9B72-361B1A05F24D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {6B4E212A-010D-4529-BA23-EEB69EC488A6} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 2018-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7FDFA892-F5E6-4AB3-B97E-D51E579CA26A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5311432 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {889B5C33-26C3-410C-BEDD-5082EE9A96EA} - System32\Tasks\Outbyte\PC Repair\Start PC Repair оn logon => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe [8873864 2021-06-10] (Outbyte Computing Pty Ltd -> Outbyte) <==== ATTENTION
Task: {94EA0959-5597-42BD-8CDA-AA1F480A94DB} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2277640 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
Task: {9887F614-BF88-4E71-B30D-166ABA883E0B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {DDD78159-5143-4C9C-A476-BE97E969B1F7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {E870AF9F-B8D0-4A27-881C-B7F3E4DCE825} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5311432 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E911D875-BFD2-46C1-8DC4-448F32F24CDF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC48F1D1-DEB5-4548-B757-3D653DA74EB6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F9E13665-B9B2-49E4-94CE-602BE92498FD} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-05-03] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{988af48c-36b8-4413-9eb9-1269fe5b12e0}: [DhcpNameServer] 10.0.1.138

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\42072\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-11]
Edge Extension: (McAfee® WebAdvisor) - C:\Users\42072\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2021-07-03]
Edge Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\42072\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\phhhmbgggfifgikoihlakngnngdehhfe [2020-10-25]

FireFox:
========
FF DefaultProfile: 24t5r618.default
FF ProfilePath: C:\Users\42072\AppData\Roaming\Mozilla\Firefox\Profiles\24t5r618.default [2020-07-23]
FF ProfilePath: C:\Users\42072\AppData\Roaming\Mozilla\Firefox\Profiles\kuv296be.default-release [2021-07-11]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=3 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2020-03-16] (bookingDesktopApp.) [File not signed]
FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=9 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2020-03-16] (bookingDesktopApp.) [File not signed]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-06-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-28] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-28] (Avast Software s.r.o. -> AVAST Software)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default [2021-07-11]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Prezentace) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-24]
CHR Extension: (Dokumenty) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-24]
CHR Extension: (Disk Google) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-24]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-07-06]
CHR Extension: (Tabulky) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-24]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-07-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-11]
CHR Extension: (Gmail) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\42072\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-11]
CHR Profile: C:\Users\42072\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-07-10]
CHR Profile: C:\Users\42072\AppData\Local\Google\Chrome\User Data\System Profile [2021-07-10]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8249936 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [625432 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [373528 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-28] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\91.0.10364.115\elevation_service.exe [1421288 2021-06-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-31] (Avast Software s.r.o. -> AVAST Software)
S2 bookingdesktopapp; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-03-16] (bookingDesktopApp.) [File not signed]
S3 bookingdesktopappm; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-03-16] (bookingDesktopApp.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056656 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
R2 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [9708440 2021-06-24] (Electronic Arts, Inc. -> Electronic Arts)
R2 hola_svc; C:\Program Files\Hola\app\hola_svc.exe [18941336 2021-07-01] (Hola VPN Ltd -> Hola Networks Ltd.) <==== ATTENTION
R2 hola_updater; C:\Program Files\Hola\app\hola_updater.exe [18880408 2021-03-31] (Hola VPN Ltd -> Hola Networks Ltd.) <==== ATTENTION
R2 luminati_net_updater_win_hola_org; C:\Program Files\Hola\app\net_updater64.exe [7958360 2021-06-30] (Luminati Networks Ltd -> Bright Data Ltd.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [974168 2021-06-24] (McAfee, LLC -> McAfee, LLC)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [275200 2021-01-18] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2556048 2021-07-02] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-07-02] (Electronic Arts, Inc. -> Electronic Arts)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusSGDrv; C:\WINDOWS\System32\drivers\AsusSGDrv.sys [140032 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-27] (Avast Software s.r.o. -> AVAST Software)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 NDivert; C:\WINDOWS\System32\drivers\NDivert.sys [105184 2021-03-19] (TEFINCOM S.A. -> )
R3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2021-04-12] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
R3 ObDrvMonPCRSrv; C:\Program Files (x86)\Outbyte\PC Repair\DrvMonX64.sys [186544 2021-06-10] (Outbyte Computing Pty Ltd -> Outbyte)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-11 12:00 - 2021-07-11 12:01 - 002301440 _____ (Farbar) C:\Users\42072\Downloads\FRST64.exe
2021-07-11 11:57 - 2021-07-11 11:57 - 000000000 ___HD C:\$AV_ASW
2021-07-11 11:38 - 2021-07-11 11:38 - 000000000 ____D C:\Users\42072\AppData\Local\EADesktop
2021-07-10 21:16 - 2021-07-10 21:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Outbyte
2021-07-10 21:15 - 2021-07-10 21:15 - 000001213 _____ C:\Users\42072\Desktop\PC Repair.lnk
2021-07-10 21:15 - 2021-07-10 21:15 - 000000000 ____D C:\ProgramData\Outbyte
2021-07-10 21:15 - 2021-07-10 21:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outbyte
2021-07-10 21:15 - 2021-07-10 21:15 - 000000000 ____D C:\Program Files (x86)\Outbyte
2021-07-10 21:14 - 2021-07-10 21:15 - 021305248 _____ (Outbyte) C:\Users\42072\Downloads\0x0000142-outbyte-pc-repair.exe
2021-07-10 21:13 - 2021-07-10 21:13 - 000000000 ____D C:\Users\42072\AppData\Local\ErrorReporter
2021-07-10 21:11 - 2021-07-11 11:40 - 000000000 ____D C:\ProgramData\EA Desktop
2021-07-10 21:11 - 2021-07-10 21:11 - 000002138 _____ C:\Users\Public\Desktop\EA Desktop.lnk
2021-07-10 21:11 - 2021-07-10 21:11 - 000000000 ____D C:\Users\42072\AppData\Local\Electronic Arts
2021-07-10 21:11 - 2021-07-10 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2021-07-10 21:07 - 2021-07-10 21:07 - 001277624 _____ (Electronic Arts) C:\Users\42072\Downloads\EADesktopInstaller (1).exe
2021-06-27 14:16 - 2021-06-27 14:16 - 000000000 ____D C:\Users\42072\AppData\Local\EALaunchHelper
2021-06-27 14:10 - 2021-07-11 11:40 - 000000000 ____D C:\Program Files\EA Games
2021-06-27 14:10 - 2021-07-10 21:11 - 000000000 ____D C:\Program Files\Electronic Arts
2021-06-27 14:10 - 2021-06-27 14:10 - 000000000 ____D C:\Users\42072\AppData\Local\cache
2021-06-27 13:57 - 2021-06-27 13:56 - 000339736 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-06-27 13:57 - 2021-06-27 13:56 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-06-27 13:48 - 2021-06-27 13:48 - 001277624 _____ (Electronic Arts) C:\Users\42072\Downloads\EADesktopInstaller.exe
2021-06-25 08:24 - 2021-07-02 07:35 - 000000000 ____D C:\WINDOWS\Minidump
2021-06-21 10:38 - 2021-06-21 10:38 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-21 10:38 - 2021-06-21 10:38 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-21 10:38 - 2021-06-21 10:38 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-21 10:38 - 2021-06-21 10:38 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-21 10:37 - 2021-06-21 10:37 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-21 10:37 - 2021-06-21 10:37 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-21 10:37 - 2021-06-21 10:37 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-21 10:37 - 2021-06-21 10:37 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-21 10:37 - 2021-06-21 10:37 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-21 10:37 - 2021-06-21 10:37 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-21 10:37 - 2021-06-21 10:37 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-21 10:37 - 2021-06-21 10:37 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-21 10:37 - 2021-06-21 10:37 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-21 10:37 - 2021-06-21 10:37 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-21 10:37 - 2021-06-21 10:37 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-21 10:37 - 2021-06-21 10:37 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-21 10:37 - 2021-06-21 10:37 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-21 10:37 - 2021-06-21 10:37 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-13 23:03 - 2021-06-13 23:03 - 000000162 ____H C:\Users\42072\Desktop\~$ODPAD.odt
2021-06-13 21:08 - 2021-06-13 21:08 - 000304221 _____ C:\Users\42072\Desktop\ODPAD.odt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-11 12:25 - 2020-08-13 13:37 - 000026010 _____ C:\Users\42072\Downloads\FRST.txt
2021-07-11 12:24 - 2020-08-13 13:36 - 000000000 ____D C:\FRST
2021-07-11 12:22 - 2020-08-13 13:40 - 000039238 _____ C:\Users\42072\Downloads\Addition.txt
2021-07-11 12:22 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-11 12:17 - 2020-08-13 13:44 - 000018099 _____ C:\Users\42072\Downloads\logy.zip
2021-07-11 12:02 - 2021-01-14 10:26 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6c9b883ea0d33
2021-07-11 12:02 - 2020-12-03 23:13 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-11 12:02 - 2020-12-03 23:13 - 000003476 _____ C:\WINDOWS\system32\Tasks\bookingDesktopAppUpdateTaskMachineUA
2021-07-11 12:02 - 2020-12-03 23:13 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-11 12:02 - 2020-12-03 23:13 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-11 12:02 - 2020-12-03 23:13 - 000003252 _____ C:\WINDOWS\system32\Tasks\bookingDesktopAppUpdateTaskMachineCore
2021-07-11 12:02 - 2020-12-03 23:13 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-11 12:02 - 2020-12-03 23:13 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-11 12:02 - 2020-12-03 23:13 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3456692171-1342812710-3318875897-1001
2021-07-11 12:02 - 2020-12-03 23:13 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2021-07-11 12:02 - 2020-12-03 23:13 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2021-07-11 12:02 - 2020-12-03 23:13 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-07-11 11:48 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-11 11:42 - 2020-12-03 23:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-07-11 11:41 - 2020-08-11 10:57 - 000000000 ____D C:\Users\42072\AppData\Local\Origin
2021-07-11 11:38 - 2020-06-04 20:12 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-11 11:38 - 2020-06-04 20:12 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-07-11 11:38 - 2020-01-31 16:02 - 000000000 ____D C:\ProgramData\Origin
2021-07-11 11:38 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-11 11:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-11 11:29 - 2020-12-03 23:13 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-07-11 11:27 - 2020-08-11 10:57 - 000000000 ____D C:\Users\42072\AppData\Roaming\Origin
2021-07-11 11:26 - 2020-04-25 13:50 - 000000000 ____D C:\Program Files\CCleaner
2021-07-11 11:25 - 2020-01-24 16:27 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-07-11 11:25 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-11 11:24 - 2020-12-03 23:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-11 11:24 - 2020-12-03 23:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-11 11:24 - 2020-12-03 23:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-11 11:24 - 2020-01-24 16:21 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-11 11:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-07-10 21:11 - 2020-01-31 16:05 - 000000000 ____D C:\ProgramData\Package Cache
2021-07-10 20:51 - 2020-08-11 11:04 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-07-09 09:50 - 2021-03-15 10:57 - 000000000 ____D C:\Program Files\Microsoft Office
2021-07-09 09:24 - 2020-12-03 23:05 - 000002381 _____ C:\Users\42072\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-09 09:24 - 2020-01-24 16:34 - 000000000 ___RD C:\Users\42072\OneDrive
2021-07-02 15:44 - 2020-08-11 11:03 - 000000000 ____D C:\Program Files (x86)\Origin
2021-07-02 07:42 - 2020-01-24 16:48 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-07-02 07:42 - 2020-01-24 16:48 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-06-28 13:12 - 2020-12-03 23:12 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-28 13:12 - 2019-12-07 16:41 - 000719496 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-28 13:12 - 2019-12-07 16:41 - 000145622 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-27 13:57 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-27 13:56 - 2020-10-17 13:19 - 000182600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-06-27 13:56 - 2020-04-01 13:57 - 000524400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000851192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000471920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000366616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000327536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000250392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000216928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-06-27 13:56 - 2020-01-24 21:23 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-06-26 16:08 - 2020-08-11 19:37 - 000001479 _____ C:\Users\Public\Desktop\The Sims 3.lnk
2021-06-24 18:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-24 08:17 - 2020-01-24 21:42 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-06-24 08:17 - 2020-01-24 21:42 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-06-22 00:02 - 2020-12-03 23:05 - 000000000 ____D C:\Users\42072
2021-06-22 00:02 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-21 23:58 - 2020-12-03 23:03 - 000438944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-21 23:58 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-21 23:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-13 23:02 - 2020-01-24 21:19 - 000000000 ____D C:\ProgramData\AVAST Software
2021-06-13 22:32 - 2020-10-05 19:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-13 22:31 - 2020-01-24 16:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-13 22:28 - 2020-01-24 16:59 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2020-05-21 20:33 - 2020-05-21 20:33 - 000002850 _____ () C:\Users\42072\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================