Nestandardní chování myši

Zpráva

Lishak · #1 Příspěvek od **Lishak** » 20 led 2022 06:20

Dobrý den,

po nějaké době od zapnutí PC se mi začne chovat nestandardně myš (otevírá a zavírá samovolně okna pouhým najetím kurzoru, nefunguje levé tlačítko myši, atd.). Řeším, zda se zbláznila myš nebo mám v PC nezvaného hosta. Prosím tímto o pomoc a předem děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Ran by foxir (administrator) on DESKTOP-GTCOT0U (ATComputers ALZA) (20-01-2022 06:07:42)
Running from D:\Stažené
Loaded Profiles: foxir
Platform: Microsoft Windows 11 Home Version 21H2 22000.434 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Connect\Watchdog\EPWD.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies) C:\Program Files (x86)\CheckPoint\Endpoint Connect\TracSrvWrapper.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies) C:\Program Files (x86)\CheckPoint\Endpoint Connect\TrGUI.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <46>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.62\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_10.2103.6.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mstsc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20050.505.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(OORT Inc. -> oh!soft) C:\Program Files (x86)\oCam\oCamTask.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Trend Micro Inc.) [File not signed] D:\Stažené\hijackthis.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270776 2019-04-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [C17A] => C:\WINDOWS\twain_32\Brimc17a\Common\TwDsUiLaunch.exe [103344 2019-12-25] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3147264 2021-08-20] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3590656 2021-10-20] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [Check Point VPN] => C:\Program Files (x86)\CheckPoint\Endpoint Connect\TrGUI.exe [18162080 2021-08-12] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.62\Installer\setup.exe [3118472 2022-01-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2148288 2021-12-09] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Run: [Steam] => D:\Hry\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Run: [Discord] => C:\Users\foxir\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\foxir\AppData\Local\Microsoft\Teams\Update.exe [2453720 2021-03-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Run: [MicrosoftEdgeAutoLaunch_039E9CD6E740B09667DE851B9BA02F4D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\...\Print\Monitors\Canon BJ Language Monitor G3000 series: CNMLMCW.DLL
HKLM\...\Print\Monitors\Canon BJ Language Monitor G3000 series XPS: C:\Windows\system32\CNMXLMCW.DLL [409088 2016-03-21] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iPSNotifier.lnk [2021-05-13]
ShortcutTarget: iPSNotifier.lnk -> C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {123CEA8E-5626-4202-97A8-D6F2D7E60FF9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {1518C161-444D-4087-B3BB-8678D9016AC6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {36CF18D5-B818-4082-911F-855D227CF7BA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3CC4A39C-AE2A-44CD-AD89-3C54424423A5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3EDDA3D7-1DF9-462A-A9D1-85DD14DF14E8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {527A49C3-5438-4FE3-B172-939786021EF7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6348792 2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {54416CAB-8119-4A96-9990-61D047BA9657} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6348792 2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5FDEE950-66FB-403C-A270-EAE894D7585E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {62EA068E-E8E0-4238-8DA2-B90718EA2E6D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {669C8167-3BC0-4FF4-9E20-AE7741C0857A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {70102237-79E0-4D25-B637-C03306709541} - System32\Tasks\oCamTask => C:\Program Files (x86)\oCam\oCamTask.exe [156344 2021-06-17] (OORT Inc. -> oh!soft)
Task: {7B087F69-9501-4551-BD64-43C6EECAA7D2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E6A4755-237B-4E6F-8384-D92DD9A919C5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7FCE7727-EEDB-4EDD-BDF7-C9D9978620F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {8E0025C0-E115-411A-8821-CC786642C711} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {903FFC27-03EB-426A-B002-27801D58ECD1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111024 2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A285B5B2-71C9-4F53-9DC8-2D834238322D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {A9A8EA3E-E107-4696-B674-715178D8833B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AB1024A5-3335-4907-B747-810EB2C5DAC5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B607CA60-1B42-42D3-9FE5-B5B2E9E9C7AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-04] (Google Inc -> Google LLC)
Task: {BA273E5B-A563-4015-B3AF-B7D23292CDE2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111024 2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {C255D2C7-820A-4096-AD55-E0E35920A417} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {C99CAE5E-CF96-4906-A86A-CF4B735FC7F3} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4969240 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {D8687BA4-209B-4E1D-85CD-AB25B59AFA99} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-04] (Google Inc -> Google LLC)
Task: {F92AF228-FA14-4997-B329-493F0EF68E79} - System32\Tasks\S-1-5-21-3675380789-455964430-3317822808-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.99.2.100 10.95.2.100 10.96.2.100
Tcpip\..\Interfaces\{0fd0031e-a392-4f72-957a-cd421e7dce9b}: [DhcpNameServer] 10.99.2.100 10.95.2.100 10.96.2.100
Tcpip\..\Interfaces\{8033550a-8c2d-402a-89bc-52886c1482ce}: [DhcpNameServer] 86.49.5.221 86.49.5.222

Edge:
=======
DownloadDir: D:\Stažené
Edge HomeButtonPage: HKU\S-1-5-21-3675380789-455964430-3317822808-1001 -> hxxp://www.centrum.cz/
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\foxir\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-20]
Edge DownloadDir: Default -> D:\Stažené
Edge HomePage: Default -> hxxp://www.centrum.cz/
Edge StartupUrls: Default -> "hxxps://centrum.cz/"
Edge Extension: (Outlook) - C:\Users\foxir\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-15]
Edge Extension: (Word) - C:\Users\foxir\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-15]
Edge Extension: (Excel) - C:\Users\foxir\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-15]
Edge Extension: (PowerPoint) - C:\Users\foxir\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-15]

FireFox:
========
FF DefaultProfile: ttfkb0rm.default
FF ProfilePath: C:\Users\foxir\AppData\Roaming\Mozilla\Firefox\Profiles\ttfkb0rm.default [2020-03-06]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\foxir\AppData\Roaming\Mozilla\Firefox\Profiles\ttfkb0rm.default\Extensions\sp@avast.com.xpi [2019-10-31]
FF ProfilePath: C:\Users\foxir\AppData\Roaming\Mozilla\Firefox\Profiles\3v27nlud.default-release [2022-01-18]
FF DownloadDir: D:\Stažené
FF Homepage: Mozilla\Firefox\Profiles\3v27nlud.default-release -> hxxps://www.centrum.cz/
FF Notifications: Mozilla\Firefox\Profiles\3v27nlud.default-release -> hxxps://notification-list.com; hxxps://notification-centar.com; hxxps://www.facebook.com; hxxps://kfc.cz; hxxps://prazsky.denik.cz
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\foxir\AppData\Roaming\Mozilla\Firefox\Profiles\3v27nlud.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2021-11-22]
FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\foxir\AppData\Roaming\Mozilla\Firefox\Profiles\3v27nlud.default-release\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2022-01-17]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default [2022-01-18]
CHR StartupUrls: Default -> "hxxp://centrum.cz/"
CHR Extension: (Prezentace) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-04]
CHR Extension: (Dokumenty) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-04]
CHR Extension: (Disk Google) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-04]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-12-15]
CHR Extension: (Tabulky) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Gmail) - C:\Users\foxir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-26]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8480848 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [452888 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1720088 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [452888 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2021-08-20] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
R2 EPWD; C:\Program Files (x86)\CheckPoint\Endpoint Connect\Watchdog\EPWD.exe [510656 2021-07-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-03-11] (Mixbyte Inc -> Freemake)
R2 TracSrvWrapper; C:\Program Files (x86)\CheckPoint\Endpoint Connect\TracSrvWrapper.exe [7897280 2021-10-04] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2021-03-01] (Microsoft) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2599312 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [20480 2021-03-01] (Microsoft) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36784 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [223176 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369216 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [252992 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [100416 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42416 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [186280 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [540056 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108912 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83976 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [853800 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [545176 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215432 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318760 2021-12-25] (Avast Software s.r.o. -> AVAST Software)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2021-12-19] (Microsoft Windows -> Microsoft Corporation)
R3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
R3 vna_ap; C:\WINDOWS\system32\DRIVERS\vnaap.sys [165392 2017-08-01] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [49560 2021-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [421112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [73960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-20 06:07 - 2022-01-20 06:07 - 000000000 ____D C:\FRST
2022-01-20 05:52 - 2022-01-20 05:52 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7f523359e3908
2022-01-17 17:08 - 2022-01-17 17:12 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-01-17 10:49 - 2022-01-17 10:49 - 000145446 _____ C:\Users\foxir\Desktop\OckovaciCertifikat (2).pdf
2022-01-12 07:18 - 2022-01-12 07:18 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-12 07:18 - 2022-01-12 07:18 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-12 07:18 - 2022-01-12 07:18 - 000339968 _____ C:\WINDOWS\system32\pku2u.dll
2022-01-12 07:18 - 2022-01-12 07:18 - 000247808 _____ C:\WINDOWS\SysWOW64\pku2u.dll
2022-01-12 07:18 - 2022-01-12 07:18 - 000015050 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-12 07:16 - 2022-01-12 07:16 - 000000000 ___HD C:\$WinREAgent
2022-01-10 08:20 - 2022-01-10 08:20 - 000002566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2022-01-10 08:20 - 2022-01-10 08:20 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2021-12-28 08:33 - 2021-12-28 08:33 - 000000000 ____D C:\Users\foxir\AppData\Local\SolidDocuments
2021-12-27 15:21 - 2022-01-01 13:06 - 000000000 ____D C:\Users\foxir\AppData\Roaming\WeMod
2021-12-27 15:21 - 2021-12-27 15:21 - 000002178 _____ C:\Users\foxir\Desktop\WeMod.lnk
2021-12-27 15:21 - 2021-12-27 15:21 - 000000000 ____D C:\Users\foxir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2021-12-27 15:21 - 2021-12-27 15:21 - 000000000 ____D C:\Users\foxir\AppData\Local\WeMod
2021-12-25 22:08 - 2021-12-25 22:55 - 000000000 ____D C:\Users\foxir\AppData\Roaming\TS3Client
2021-12-25 22:08 - 2021-12-25 22:08 - 000000000 ____D C:\Users\foxir\AppData\Local\TeamSpeak 3
2021-12-25 22:07 - 2021-12-25 22:07 - 000001015 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2021-12-25 22:07 - 2021-12-25 22:07 - 000000977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2021-12-25 22:07 - 2021-12-25 22:07 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2021-12-25 19:48 - 2021-12-25 19:49 - 000000000 ____D C:\Users\foxir\AppData\Roaming\The Creative Assembly
2021-12-25 19:48 - 2021-12-25 19:48 - 000000000 ____D C:\Users\foxir\AppData\Roaming\launcher
2021-12-25 19:39 - 2021-12-25 19:39 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-12-25 19:39 - 2021-12-25 19:39 - 000215432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-12-25 19:39 - 2021-12-25 19:39 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2021-12-25 19:32 - 2021-12-25 19:32 - 000000206 _____ C:\Users\foxir\Desktop\Total War ROME II - Emperor Edition.url
2021-12-22 13:44 - 2022-01-18 13:44 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-12-22 13:44 - 2022-01-12 13:07 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-12-22 13:44 - 2022-01-12 13:07 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-12-22 13:43 - 2021-12-22 13:43 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-12-22 13:43 - 2021-12-22 13:43 - 000000000 ____D C:\Program Files\Adobe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-20 06:02 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-20 06:00 - 2019-10-31 19:40 - 000000000 ____D C:\Users\foxir\AppData\Local\VirtualStore
2022-01-20 05:57 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-20 05:57 - 2019-11-04 14:57 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-20 05:57 - 2019-10-31 22:52 - 000000000 ____D C:\Users\foxir\AppData\LocalLow\Mozilla
2022-01-20 05:57 - 2019-10-23 14:22 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-20 05:53 - 2021-06-05 18:27 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-01-20 05:52 - 2021-12-19 23:01 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-20 05:51 - 2019-10-31 19:42 - 000000000 ___RD C:\Users\foxir\OneDrive
2022-01-18 22:02 - 2019-10-31 22:52 - 000000000 ____D C:\ProgramData\Mozilla
2022-01-18 22:00 - 2021-12-19 22:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-18 21:54 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-18 13:44 - 2021-12-19 23:01 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-18 13:44 - 2021-12-19 23:01 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-18 13:44 - 2021-12-19 23:01 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-18 13:44 - 2021-12-19 23:01 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3675380789-455964430-3317822808-1001
2022-01-18 13:44 - 2021-12-19 23:01 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3675380789-455964430-3317822808-1001
2022-01-18 13:44 - 2021-12-19 23:01 - 000002852 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3675380789-455964430-3317822808-500
2022-01-18 13:44 - 2021-12-19 23:01 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-01-18 13:44 - 2021-12-19 23:01 - 000002258 _____ C:\WINDOWS\system32\Tasks\oCamTask
2022-01-18 13:44 - 2019-11-01 17:30 - 000000000 ____D C:\Users\foxir\AppData\Local\CrashDumps
2022-01-18 13:11 - 2019-10-31 22:34 - 000000000 ____D C:\Users\foxir\AppData\Local\D3DSCache
2022-01-18 13:10 - 2021-12-19 23:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-01-18 06:19 - 2021-06-09 22:17 - 000000000 ____D C:\Users\foxir\AppData\Local\Avast Software
2022-01-17 17:12 - 2021-12-19 23:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-01-17 17:12 - 2019-10-31 22:52 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-01-17 17:12 - 2019-10-31 22:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-01-16 20:06 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-01-16 20:06 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-01-16 10:35 - 2020-03-21 09:34 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-01-15 15:30 - 2020-06-14 11:58 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-15 15:30 - 2020-06-14 11:58 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-14 22:51 - 2019-11-01 17:30 - 000000000 ____D C:\Users\foxir\AppData\Roaming\Discord
2022-01-14 22:39 - 2019-11-01 17:30 - 000000000 ____D C:\Users\foxir\AppData\Local\Discord
2022-01-14 08:58 - 2021-12-19 22:59 - 001715112 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-14 08:58 - 2021-06-05 18:20 - 000724600 _____ C:\WINDOWS\system32\perfh005.dat
2022-01-14 08:58 - 2021-06-05 18:20 - 000150562 _____ C:\WINDOWS\system32\perfc005.dat
2022-01-14 08:51 - 2021-12-19 23:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-14 08:51 - 2020-08-12 19:34 - 000012288 ___SH C:\DumpStack.log.tmp
2022-01-14 08:51 - 2019-10-31 22:26 - 000000000 ____D C:\ProgramData\AVAST Software
2022-01-14 08:50 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-14 06:04 - 2019-11-03 22:16 - 000000000 ____D C:\Users\foxir\AppData\Local\Adobe
2022-01-12 21:18 - 2020-08-12 19:34 - 000002384 _____ C:\Users\foxir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-12 17:28 - 2019-10-31 19:40 - 000000000 ____D C:\Users\foxir\AppData\Local\Packages
2022-01-12 17:28 - 2019-10-23 14:23 - 000000000 ____D C:\ProgramData\Packages
2022-01-12 17:27 - 2021-12-19 22:55 - 000574688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-12 17:27 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-12 07:21 - 2019-10-31 21:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-12 07:20 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-12 07:20 - 2019-10-31 21:58 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-12 05:56 - 2019-11-04 14:58 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-12 05:56 - 2019-11-04 14:58 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-01-10 08:20 - 2021-05-23 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2021-12-31 14:58 - 2021-12-19 21:51 - 000000000 ___DC C:\WINDOWS\Panther
2021-12-30 01:20 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\OCR
2021-12-28 08:33 - 2019-10-31 19:40 - 000000000 ____D C:\Users\foxir\AppData\Roaming\Adobe
2021-12-27 15:21 - 2019-11-01 17:30 - 000000000 ____D C:\Users\foxir\AppData\Local\SquirrelTemp
2021-12-25 19:48 - 2019-10-23 14:19 - 000000000 ____D C:\ProgramData\Package Cache
2021-12-25 19:39 - 2021-12-19 23:01 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-12-25 19:39 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-12-25 19:39 - 2020-10-24 16:25 - 000186280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-12-25 19:39 - 2020-04-21 08:58 - 000540056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000853800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000545176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000369216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000318760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000252992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000223176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000108912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000100416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000083976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000042416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-12-25 19:39 - 2019-10-31 22:26 - 000036784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-12-22 13:43 - 2019-10-23 14:20 - 000000000 ____D C:\ProgramData\Adobe

==================== Files in the root of some directories ========

2021-10-04 18:39 - 2021-10-04 18:39 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.276fry
2021-10-04 17:47 - 2021-10-04 17:47 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.38k9eu
2021-10-04 19:07 - 2021-10-04 19:07 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.3dpfam
2021-10-04 19:02 - 2021-10-04 19:02 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.4cug2z
2021-10-04 17:59 - 2021-10-04 17:59 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.4ogmp2
2021-10-04 17:51 - 2021-10-04 17:51 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.4r66rq
2021-10-04 17:36 - 2021-10-04 17:36 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.4sa6h2
2021-10-04 19:09 - 2021-10-04 19:09 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.54s5x4
2021-10-04 17:55 - 2021-10-04 17:55 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.57sbyd
2021-10-04 17:27 - 2021-10-04 17:27 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.5c8jj4
2021-10-04 17:38 - 2021-10-04 17:38 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.67zgc8
2021-10-04 17:47 - 2021-10-04 17:47 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.6e28zm
2021-10-04 18:54 - 2021-10-04 18:54 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.76tfi3
2021-10-04 17:01 - 2021-10-04 17:01 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.7874sg
2021-10-04 18:48 - 2021-10-04 18:48 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.87abec
2020-04-17 05:18 - 2020-04-17 05:18 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.8f8fcu
2021-10-04 19:11 - 2021-10-04 19:11 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.8iy64v
2021-10-04 18:12 - 2021-10-04 18:12 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.8mr3sw
2021-10-04 18:08 - 2021-10-04 18:08 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.8yuv94
2021-10-04 17:45 - 2021-10-04 17:45 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.9x3tfk
2021-10-04 17:43 - 2021-10-04 17:43 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.a4sg8n
2021-10-04 17:29 - 2021-10-04 17:29 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.a9yf3u
2021-10-04 17:49 - 2021-10-04 17:49 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ax2qht
2021-10-04 17:59 - 2021-10-04 17:59 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.axptgv
2021-10-04 18:35 - 2021-10-04 18:35 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ayqy34
2021-10-04 18:40 - 2021-10-04 18:40 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.b5v248
2021-10-04 19:04 - 2021-10-04 19:04 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.bzgere
2021-10-04 18:58 - 2021-10-04 18:58 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.c497g7
2021-10-04 19:09 - 2021-10-04 19:09 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.c4ft89
2021-10-04 19:03 - 2021-10-04 19:03 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.c6hz8p
2021-03-10 05:56 - 2021-03-10 05:56 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.c6taey
2021-10-04 18:46 - 2021-10-04 18:46 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.cyirsh
2021-10-04 17:57 - 2021-10-04 17:57 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.d632af
2021-10-04 18:06 - 2021-10-04 18:06 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.dibghq
2021-10-04 18:48 - 2021-10-04 18:48 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.do5psq
2021-10-04 17:44 - 2021-10-04 17:44 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.dr5gmk
2021-10-04 18:42 - 2021-10-04 18:42 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.dybzrf
2021-10-04 18:41 - 2021-10-04 18:41 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.e7oysu
2021-10-04 18:14 - 2021-10-04 18:14 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.e94yuj
2021-10-04 18:58 - 2021-10-04 18:58 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.e9hppe
2021-10-04 19:07 - 2021-10-04 19:07 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ejd7u5
2021-10-04 18:37 - 2021-10-04 18:37 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.f3vnh9
2021-10-04 19:13 - 2021-10-04 19:13 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.fxs423
2021-10-04 19:01 - 2021-10-04 19:01 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.gruuk3
2021-10-04 18:44 - 2021-10-04 18:44 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.gubukx
2021-10-04 18:35 - 2021-10-04 18:35 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.hjcia7
2021-10-04 17:40 - 2021-10-04 17:40 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.hjuc2q
2021-10-04 18:10 - 2021-10-04 18:10 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ios42n
2021-10-04 18:14 - 2021-10-04 18:14 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.iwbduh
2021-10-04 18:52 - 2021-10-04 18:52 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.jbd5b9
2021-10-04 17:55 - 2021-10-04 17:55 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.k8pb9s
2021-10-04 19:11 - 2021-10-04 19:11 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ku69hy
2021-10-04 18:02 - 2021-10-04 18:02 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.nong3i
2021-10-04 18:04 - 2021-10-04 18:04 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ny2z2b
2021-10-04 19:13 - 2021-10-04 19:13 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.nzercv
2021-10-04 17:36 - 2021-10-04 17:36 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.oojhy3
2021-10-04 17:53 - 2021-10-04 17:53 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ou7ubi
2021-10-04 17:23 - 2021-10-04 17:23 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.p5xveo
2021-10-04 18:45 - 2021-10-04 18:45 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.pau2sr
2021-10-04 18:37 - 2021-10-04 18:37 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.psqibd
2021-10-04 18:10 - 2021-10-04 18:10 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.qo8sm5
2021-10-04 17:21 - 2021-10-04 17:21 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.qxgwy3
2021-10-04 17:34 - 2021-10-04 17:34 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.qzynaq
2021-10-04 18:12 - 2021-10-04 18:12 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.r3wow7
2021-10-04 19:00 - 2021-10-04 19:00 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.r46kwi
2021-10-04 18:43 - 2021-10-04 18:43 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.r737p2
2021-10-04 19:05 - 2021-10-04 19:05 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.r8pwjf
2021-10-04 17:27 - 2021-10-04 17:27 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.s24tio
2021-10-04 17:53 - 2021-10-04 17:53 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.s2976j
2021-10-04 17:49 - 2021-10-04 17:49 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.shd9qn
2021-10-04 18:56 - 2021-10-04 18:56 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.spauvg
2021-10-04 17:21 - 2021-10-04 17:21 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.spnsvw
2021-10-04 17:38 - 2021-10-04 17:38 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.swp724
2021-10-04 17:25 - 2021-10-04 17:25 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.tabupi
2021-10-04 17:42 - 2021-10-04 17:42 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.tn688u
2021-10-04 18:33 - 2021-10-04 18:33 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.tuavra
2021-10-04 18:08 - 2021-10-04 18:08 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.uhciqh
2021-10-04 17:23 - 2021-10-04 17:23 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.v2otxc
2021-10-04 17:25 - 2021-10-04 17:25 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.v76nei
2021-10-04 17:40 - 2021-10-04 17:40 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.w4ntyc
2021-03-16 06:00 - 2021-03-16 06:00 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.w58ca3
2021-10-04 18:56 - 2021-10-04 18:56 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.wbc2te
2021-10-04 17:57 - 2021-10-04 17:57 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.wdjyje
2021-10-04 18:33 - 2021-10-04 18:33 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.wivmdn
2020-04-17 05:12 - 2020-04-17 05:12 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ww9eoo
2021-10-04 17:30 - 2021-10-04 17:30 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.wyjxnq
2021-10-04 18:54 - 2021-10-04 18:54 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.x2xq4g
2021-10-04 17:34 - 2021-10-04 17:34 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.x2z58p
2021-10-04 18:01 - 2021-10-04 18:01 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.x65xxc
2021-10-04 17:51 - 2021-10-04 17:51 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.xjvtgg
2021-10-04 18:50 - 2021-10-04 18:50 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.xngc7v
2021-10-04 18:03 - 2021-10-04 18:03 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.xp2vi4
2021-10-04 18:06 - 2021-10-04 18:06 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.xx6fab
2021-10-04 17:31 - 2021-10-04 17:31 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.ygxda4
2021-10-04 18:52 - 2021-10-04 18:52 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.yphh7t
2021-10-04 18:50 - 2021-10-04 18:50 - 000016054 _____ () C:\Users\foxir\AppData\Local\CPAUTO.tmp.zv4ujb
2021-03-23 06:17 - 2021-03-23 06:17 - 000000218 _____ () C:\Users\foxir\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2022
Ran by foxir (20-01-2022 06:08:31)
Running from D:\Stažené
Microsoft Windows 11 Home Version 21H2 22000.434 (X64) (2021-12-19 22:01:32)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3675380789-455964430-3317822808-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3675380789-455964430-3317822808-503 - Limited - Disabled)
foxir (S-1-5-21-3675380789-455964430-3317822808-1001 - Administrator - Enabled) => C:\Users\foxir
Guest (S-1-5-21-3675380789-455964430-3317822808-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3675380789-455964430-3317822808-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
AppLogLibSetup (HKLM-x32\...\{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Version: 1.0.3.0 - Brother Industries Ltd.) Hidden
Aslain's WoT Modpack verze 1.15.0.1.00 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 1.15.0.1.00 - Aslain)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.11.2500 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BrLauncher (HKLM-x32\...\{88FCD471-DBBF-4A75-8066-ACACE05DE3CF}) (Version: 2.0.14.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{42D72ABA-773E-467A-8A64-4765E990EB75}) (Version: 9.0.0.123 - Brother Industries, Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{85f204b0-595c-4801-8648-a69062f9ce1b}) (Version: 9.0.0.123 - Brother Industries, Ltd.)
Brother Printer Driver (HKLM-x32\...\{815D4CF3-0244-4142-98F8-51E5C7442DB7}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{01A1E3D8-E030-4A0B-B91E-4E1E8E1E02D3}) (Version: 1.0.23.1 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{D0F69DE9-EE0B-4A7A-8248-6D5EC97D171C}) (Version: 1.0.23.0 - Brother Industries Ltd.) Hidden
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Coach Viewer (HKLM-x32\...\{454DE228-547D-055B-8836-09CD4D2A77C4}) (Version: 2.71 - SoccerTutor.com Ltd) Hidden
Coach Viewer (HKLM-x32\...\CoachViewer) (Version: 2.71 - SoccerTutor.com Ltd)
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 - Brother Industries, Ltd.) Hidden
Discord (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Discord) (Version: 0.0.311 - Discord Inc.)
EVE Online (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\{f7f765d4-9943-41cd-b6db-2e1b53208d10}) (Version: 2.8.2 - CCP)
Excel (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC)
HD Video Converter Factory 15.9 (HKLM-x32\...\HD Video Converter Factory) (Version: 15.9 - WonderFox Soft, Inc.)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
HttpToUsbBridge (HKLM-x32\...\{2316FF8E-7DEC-4EB9-A50D-64C304A25469}) (Version: 1.5.30.1 - Brother Industries Ltd.)
Check Point VPN (HKLM-x32\...\{89C70C17-0ACF-47C2-AFB5-100C5567A649}) (Version: 98.61.3407 - Check Point Software Technologies Ltd.)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{C1A5573E-1508-49E1-BA6A-34E2EB15E9BF}) (Version: 17.5.2.1024 - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{E496AFB7-CB04-46CF-8FBB-5D665BC8811B}) (Version: 3.3.2110.22002 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 97.0.1072.62 - Microsoft Corporation)
Microsoft Office Professional 2019 - cs-cz (HKLM\...\Professional2019Retail - cs-cz) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Teams) (Version: 1.4.00.4167 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2FA9DAAC-895B-4E99-99D9-DC2965FBE79C}) (Version: 2.87.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.26.28720 (HKLM-x32\...\{86380aef-fd23-4fc3-8723-a98ccad8f2c6}) (Version: 14.26.28720.3 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 96.0.1 (x64 cs)) (Version: 96.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
NetworkRepairTool (HKLM-x32\...\{96CEE8C3-B934-48A4-ADA6-91B7CE8A5002}) (Version: 1.2.17.0 - Brother Industries, Ltd.) Hidden
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.45.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.45.831.832 - NVIDIA Corporation)
oCam 버전 520.0 (HKLM-x32\...\oCam_is1) (Version: 520.0 - hxxp://ohsoft.net/)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Outlook (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
Pinnacle Studio 15 (HKLM-x32\...\{1362E602-9625-42D3-B57F-CDA9D26F9DA8}) (Version: 15.0.0.7593 - Pinnacle Systems)
PowerPoint (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
ProID+ (64-bit) (HKLM\...\{403F7608-F29B-409C-AE5C-9DBB20C1B037}) (Version: 2.4.0.20143 - MONET+, a.s.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8668 - Realtek Semiconductor Corp.)
ScannerUtilityInstaller (HKLM-x32\...\{D65C0754-7790-427F-AD73-D7C644260F57}) (Version: 1.19.9.1 - Brother) Hidden
SoftwareUpdateNotification (HKLM-x32\...\{013A706A-C8FA-4F56-8641-B8C792BB3CEE}) (Version: 1.0.18.0 - Brother Industries, Ltd.) Hidden
StatusMonitor (HKLM-x32\...\{D42470A0-E4C3-41C9-9A92-B1B23FD13F8C}) (Version: 1.21.6.0 - Brother Insutries Ltd.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tactics Manager 3.0 (HKLM-x32\...\{53797491-F14C-177A-F941-24A24DF2CC62}) (Version: 3.0 - SoccerTutor.com Ltd) Hidden
Tactics Manager 3.0 (HKLM-x32\...\com.soccertutor.TacticsManager) (Version: 3.0 - SoccerTutor.com Ltd)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.50 - Ghisler Software GmbH)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\Wargaming.net Game Center) (Version: 21.8.2.7331 - Wargaming.net)
WeMod (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\WeMod) (Version: 7.1.23 - WeMod)
World of Tanks EU (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World_of_Warplanes (HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\WOWP.WW.PRODUCTION) (Version: - Wargaming.net)
XPS Network (HKLM-x32\...\{7A6A1E1B-58CC-4B47-AFAF-11B171AC9CBB}) (Version: 13.16.0.2 - Sideline Sports)
YouTube To MP3 Converter Free v1.0 (HKLM-x32\...\YouTube To MP3 Converter Free_is1) (Version: 1.0.0.0 - DVDAVITools)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.13.66.0_x86__kgqvnymyfvs32 [2022-01-12] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.72.2.0_x86__kgqvnymyfvs32 [2022-01-18] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-25] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-12-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-12-19] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-12] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.60.43512.0_x64__8wekyb3d8bbwe [2021-12-22] (Microsoft Corporation) [Startup Task]
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_2.0.23022.0_x64__8wekyb3d8bbwe [2021-12-10] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0 [2022-01-08] (Spotify AB) [Startup Task]
UnRar Metro -> C:\Program Files\WindowsApps\1253QUANTUMVM.UNRARMETRO_41.8.0.0_x64__ckbnxvahp5f44 [2022-01-15] (QuantumVM)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2147.16.0_x64__cv1g1gvanyjgm [2021-12-18] (WhatsApp Inc.)
Word -> C:\Program Files\WindowsApps\word.office.com-CECA1A7F_1.0.0.3_neutral__jc2kecmnkxwqc [2022-01-09] (word.office.com)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3675380789-455964430-3317822808-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\foxir\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-08] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-25] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-07-08] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-25] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.mjpg] => pvmjpg30.dll

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\foxir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\foxir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\foxir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/

==================== Loaded Modules (Whitelisted) =============

2016-11-25 10:18 - 2016-11-25 10:18 - 000139264 _____ () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-12-05 19:25 - 2021-08-20 17:32 - 000542720 _____ () [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2017-08-04 10:55 - 2021-01-19 14:21 - 000180224 _____ () [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2017-12-05 19:25 - 2021-08-20 17:32 - 001860096 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2017-11-07 19:55 - 2019-07-26 08:53 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2017-11-07 20:04 - 2018-04-27 09:16 - 000090112 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll
2017-11-07 19:55 - 2019-07-26 08:54 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2021-10-04 10:53 - 2021-10-04 10:53 - 002048000 _____ () [File not signed] C:\Program Files (x86)\CheckPoint\Endpoint Connect\xerces-c_3_2.dll
2021-03-09 18:25 - 2018-05-02 15:25 - 000091648 _____ () [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2021-03-09 18:25 - 2005-04-22 13:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2016-04-12 10:07 - 2016-04-12 10:07 - 000067584 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\AppLogLib\BrBFLogI.dll
2020-04-08 07:33 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2020-04-08 07:36 - 2016-03-21 04:00 - 000409088 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMXLMCW.DLL
2021-04-11 16:44 - 2021-04-11 16:44 - 000402944 _____ (Codalogic Ltd) [File not signed] C:\Program Files (x86)\CheckPoint\Endpoint Connect\Watchdog\lmx-MD-vs2017x86.dll
2020-04-20 14:01 - 2020-04-20 14:01 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2020-04-20 14:01 - 2020-04-20 14:01 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2021-12-19 23:18 - 2021-12-19 23:18 - 000137184 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20050.505.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3675380789-455964430-3317822808-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.99.2.100 - 10.95.2.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-3675380789-455964430-3317822808-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2576ACD2-3CA7-4252-BF4E-9859CD4DBC66}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{558634CB-4ED4-45B4-9FB8-7F3EAD0CC443}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0060E3C4-206F-43BD-A592-F932CF228EEF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E7444D12-BD5A-4CD8-A403-0B69FCD1014B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D27B91AA-6ACD-4C88-A6DC-26B8CC3F42C3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6B4CA0E5-6B00-4848-BB90-E0D107D241AA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF2B4D70-F4B4-446C-BF55-3706BD04819F}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Connect\TracSrvWrapper.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
FirewallRules: [{CF353BBA-CF12-4430-A803-B06267C50207}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Connect\TrGUI.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
FirewallRules: [{04B3FC31-1D72-4D49-A7B7-4AA74FCB87EF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2A7AD3DF-7C97-4EE7-9753-2E351EA9DE5B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E7F65E53-0658-4F44-B7E7-0ABF7496E471}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4A3EDB88-4F66-49E7-8E17-343878049AE6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B92624CC-265E-45BA-B80D-4F366254D276}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{81EC4902-7E7A-455F-B50A-D21C209325D2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CD2A510C-77B0-4A6D-A283-EADE32C42770}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3E82C13D-2D54-4D54-97A4-95BC2337397C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5E6548F4-6175-46BD-9CF4-25EA95A3644D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7AB55986-EDCB-465A-91C7-654B7344A58C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E1177FDA-021D-4AF2-8FF7-22082DF2D4C7}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2021\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{DF8CA30A-7344-450D-B5CC-89FFBABC8459}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2021\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{84962E24-D987-4173-8E5A-F1DDA2E252BB}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2021 Touch\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{5B068C14-A59A-4E51-8062-6578662EAE16}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2021 Touch\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{1BDA3D88-9E00-44F1-8123-169511A31513}] => (Allow) D:\Hry\Steam\steamapps\common\Pro Cycling Manager 2020\PCM64.exe (Cyanide S.A.S -> Cyanide)
FirewallRules: [{B83B5758-3F26-495A-BD0D-A419DE40BA00}] => (Allow) D:\Hry\Steam\steamapps\common\Pro Cycling Manager 2020\PCM64.exe (Cyanide S.A.S -> Cyanide)
FirewallRules: [{1829A7AD-D3AE-4E55-8B36-6C77DC0DB0CC}] => (Allow) LPort=54955
FirewallRules: [{1FDF44A7-3670-4F2B-80D3-E4A86E513DA7}] => (Allow) LPort=54950
FirewallRules: [{B92FEAC6-CEEC-4FE9-BEF9-78DA944A7067}] => (Allow) D:\Hry\Steam\steamapps\common\Pro Cycling Manager 2017\PCM64.exe (Focus Home Interactive -> Cyanide)
FirewallRules: [{F58AF9B7-93F6-40C1-A310-A230C8574F13}] => (Allow) D:\Hry\Steam\steamapps\common\Pro Cycling Manager 2017\PCM64.exe (Focus Home Interactive -> Cyanide)
FirewallRules: [UDP Query User{6E856B56-0D6B-4CE0-ABC5-FBF0468769C2}C:\program files (x86)\standingstonegames\the lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\standingstonegames\the lord of the rings online\lotroclient.exe => No File
FirewallRules: [TCP Query User{C7EB79D8-C870-4F3C-8DC4-E79FC2FA9CF5}C:\program files (x86)\standingstonegames\the lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\standingstonegames\the lord of the rings online\lotroclient.exe => No File
FirewallRules: [{8EB52ECB-FDC9-4A78-935D-D7737F0E7196}] => (Allow) LPort=54925
FirewallRules: [UDP Query User{A06344F7-7405-497D-9AD5-041707AB422F}C:\users\foxir\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\foxir\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{969B07C7-4F3B-4386-A05F-13A9AA72EDE1}C:\users\foxir\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\foxir\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BD3EC0D6-1BAD-471B-9150-4A4AB1C6CA82}] => (Allow) D:\Hry\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{58A17064-3E35-4E48-A024-8AFB2C898383}] => (Allow) D:\Hry\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{A085F631-73B8-4E4F-A7C1-C265122BCCAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{00A1507C-CE3B-4880-9B6F-6D4481D6A481}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D54032F9-ABBA-4114-90D5-76E6DA9B242E}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{76E5D3CE-1C87-4842-9BA7-B08ABE894F74}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{DA1D6D5D-4C2F-4BAF-A770-1FC7E94D30CC}] => (Allow) D:\Hry\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6870C335-2C81-4521-9D93-82CF884B649A}] => (Allow) D:\Hry\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{283210DF-543C-468A-809D-524CDCB158CB}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{28667668-B758-4A03-A9C9-CD84995DEFD0}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{BF6ABA1E-1777-44A6-AB36-EA30A08BBFE9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B618067E-4DAB-44AA-B6F7-D86B60C1430B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7DAB6196-7CC7-4EA3-B52B-B24C67B4B7D3}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2019\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{66824C4D-BFF7-4DC5-8C1D-AA5C86E5DBF8}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2019\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [TCP Query User{CF177130-284E-42DA-832B-7BA2A0AC56FE}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{BD83B97E-C124-4297-B6FE-6217F310A420}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{264C0935-3752-4C7C-A7C7-59FACF9D78EE}D:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{016859A3-3906-4E62-B195-402992A5C6F7}D:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{3B43F2E6-3969-4872-8BDB-B875DA92FA2F}] => (Allow) D:\Hry\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{B74F2F03-1D37-446A-BFB8-46907C035316}] => (Allow) D:\Hry\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{E4F7A0FA-94FA-4B96-9CBB-382050684925}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EADF2F62-A19D-4B4B-B3CF-33BE8C42FE84}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{840A9A63-AFC8-41CC-80A1-2F71E950FEC4}C:\programdata\wargaming.net\gamecenter\dlls\wgc_renderer.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\dlls\wgc_renderer.exe => No File
FirewallRules: [UDP Query User{C122F2CA-A69E-4433-9B60-38B495D5902F}C:\programdata\wargaming.net\gamecenter\dlls\wgc_renderer.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\dlls\wgc_renderer.exe => No File
FirewallRules: [TCP Query User{E450E292-F6D8-46EB-B28F-B0B79E662D8F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{D663E375-5FF9-4C8D-8287-05C5D819F359}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5A66723B-62E5-4719-B244-BCA36476822A}] => (Allow) D:\Hry\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{2DE6B0F6-795F-4BEF-8DE8-A6F93C3D1528}] => (Allow) D:\Hry\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [TCP Query User{47A3712E-5EB4-4713-BF1C-2B583637C5A5}C:\program files (x86)\sideline sports\xps network\sorganizertc.exe] => (Allow) C:\program files (x86)\sideline sports\xps network\sorganizertc.exe (Sideline Sports A Islandi ehf. -> Sideline Sports)
FirewallRules: [UDP Query User{34732306-60BA-4A9A-866C-9D322B62C600}C:\program files (x86)\sideline sports\xps network\sorganizertc.exe] => (Allow) C:\program files (x86)\sideline sports\xps network\sorganizertc.exe (Sideline Sports A Islandi ehf. -> Sideline Sports)
FirewallRules: [TCP Query User{C8EA0E59-FDBB-4324-82F4-6E9B31C8FFBA}C:\program files (x86)\sideline sports\xps network\jre\bin\java.exe] => (Allow) C:\program files (x86)\sideline sports\xps network\jre\bin\java.exe
FirewallRules: [UDP Query User{DDBCE787-0453-4FFB-A373-550EB3629862}C:\program files (x86)\sideline sports\xps network\jre\bin\java.exe] => (Allow) C:\program files (x86)\sideline sports\xps network\jre\bin\java.exe
FirewallRules: [TCP Query User{74DFB2CC-CE55-44A4-8190-884F79F7A636}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{86E68E07-471C-4D31-8FBF-329C24915EF1}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{3383763D-B9BC-49BA-9CCE-79B07BDB7AD2}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2019 Editor\editor.exe (Sports Interactive) [File not signed]
FirewallRules: [{AE623016-69C9-42CC-A346-D89A280BFB9F}] => (Allow) D:\Hry\Steam\steamapps\common\Football Manager 2019 Editor\editor.exe (Sports Interactive) [File not signed]
FirewallRules: [{D85354B6-9A35-40E9-96B3-C2C515C67EE6}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{B78B7B51-488A-4DF5-A097-81EE3569DA25}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{0FF8B5E4-A5DA-4391-9371-31B192F7914F}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{1124AFD2-7555-4D6E-AF24-80CB7D967C35}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{EA106417-C8E7-499F-8C2B-B5D8C2D7B8E9}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{0B0FD9BA-F9FB-4565-9283-FC507031CE79}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{718540CE-5E5E-4FC0-B6B1-5FEF64DCC13D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0908107B-104C-4EBE-96DA-864808000800}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{731C8AD9-EE4C-44C8-9B87-41B6971124EF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CE04DF4A-4CCF-43D2-97F5-6C72A5072781}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D3C87770-971E-4FD1-B9C2-F620A109795F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9BDD1608-83BF-417B-B781-1991EF7CEF9B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E013EDC5-EB01-40D5-B710-B62F0E7171FA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{03334FEE-CC92-49BE-9EBB-8DFCE630F56E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BAF4691E-7452-490D-B57C-212E12F7CB11}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3396E30C-7A02-470F-B08D-598E67C92827}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{171B6577-F7DC-4817-86CA-5B1A9B36A340}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{04F5FDC8-E18D-439E-82D7-09F4532749D8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4031254D-6F79-42A7-915A-3D3C793392BA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{954EB8CD-0D30-4652-A5CB-6A64DBB7FE7F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E39FE53B-F232-4876-B634-E791F7BEEB2B}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7FD8EB21-96D5-434A-A2EB-03206CB397BC}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99444D62-D50C-4309-A959-3E2E308D0963}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C8D5579D-F74C-4875-BA09-49B3082C4250}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FEAB8182-84BB-428C-B7A2-2FDD5A820BD7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{18717178-56C3-4DD6-824A-9417CF844648}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2902C469-EC08-48FB-B2E0-C7DC7A473DCC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D9A3BD0-1624-40AD-8523-8EFB5139EF55}] => (Allow) D:\Hry\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{A33FFFAB-1BDC-46A7-9992-D8EA98C0E63B}] => (Allow) D:\Hry\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)

==================== Restore Points =========================

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (01/18/2022 01:44:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fm.exe, verze: 21.4.0.0, časové razítko: 0x609aaa26
Název chybujícího modulu: d3d11.dll_unloaded, verze: 10.0.22000.120, časové razítko: 0x4deb176a
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000939e0
ID chybujícího procesu: 0x3dfc
Čas spuštění chybující aplikace: 0x01d80c64503348ca
Cesta k chybující aplikaci: D:\Hry\Steam\steamapps\common\Football Manager 2021\fm.exe
Cesta k chybujícímu modulu: d3d11.dll
ID zprávy: 0e0710f9-b41a-4f5d-9186-3552c375cd6d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/17/2022 10:32:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fm.exe, verze: 21.4.0.0, časové razítko: 0x609aaa26
Název chybujícího modulu: d3d11.dll_unloaded, verze: 10.0.22000.120, časové razítko: 0x4deb176a
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000939e0
ID chybujícího procesu: 0x323c
Čas spuštění chybující aplikace: 0x01d80bbcb53678b9
Cesta k chybující aplikaci: D:\Hry\Steam\steamapps\common\Football Manager 2021\fm.exe
Cesta k chybujícímu modulu: d3d11.dll
ID zprávy: 8b634575-6884-4844-ae1e-cb109c105bbc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/15/2022 04:30:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program identity_helper.exe verze 97.0.1072.62 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 174c

Čas spuštění: 01d80a24ac13a3a6

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.62\identity_helper.exe

ID hlášení: ca8c3e9f-52e2-4908-be0f-e465b9f86984

Úplný název balíčku s chybou: Microsoft.MicrosoftEdge.Stable_97.0.1072.55_neutral__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce

Error: (01/14/2022 08:51:12 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Broadcast Receiver Server...

Error: (01/14/2022 08:51:11 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Wait Workflow Commands request from device.

Error: (01/14/2022 08:51:11 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...

Error: (01/14/2022 08:51:11 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...

Error: (01/14/2022 08:51:11 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[1]: 192.168.0.101

System errors:
=============
Error: (01/20/2022 05:52:29 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{0FD0031E-A392-4F72-957A-CD421E7DCE9B}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (01/20/2022 05:51:38 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{8033550A-8C2D-402A-89BC-52886C1482CE}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (01/18/2022 08:52:52 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (01/18/2022 05:53:40 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{0FD0031E-A392-4F72-957A-CD421E7DCE9B}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (01/18/2022 05:49:16 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{8033550A-8C2D-402A-89BC-52886C1482CE}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (01/17/2022 05:07:37 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{8033550A-8C2D-402A-89BC-52886C1482CE}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (01/17/2022 05:52:52 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{0FD0031E-A392-4F72-957A-CD421E7DCE9B}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (01/17/2022 05:52:04 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{8033550A-8C2D-402A-89BC-52886C1482CE}, protože jiný počítač v síti má stejný název. Server nelze spustit.

CodeIntegrity:
===============
Date: 2022-01-20 05:52:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. ਍

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1.70 08/08/2019
Motherboard: Micro-Star International Co., Ltd. B360M MORTAR (MS-7B23)
Processor: Intel(R) Core(TM) i5-9400F CPU @ 2.90GHz
Percentage of memory in use: 38%
Total physical RAM: 16321.34 MB
Available physical RAM: 9977.86 MB
Total Virtual: 18753.34 MB
Available Virtual: 10063.43 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:476.09 GB) (Free:58.52 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:931.49 GB) (Free:576.46 GB) NTFS

\\?\Volume{bbdc5bed-5b24-4fe8-b6c1-7dca1a4f860c}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS
\\?\Volume{6aa10f11-fc13-4c1a-be36-96e7db9a0783}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 476.9 GB) (Disk ID: E068FA9C)

Partition: GPT.

==================== End of Addition.txt =======================

#2 Příspěvek od **JaRon** » 20 led 2022 09:37

ahoj,
to nevypada na virovy problem
1. vycisti PC s CCleanerom vcetne registrov
restart
2. ak nepomoze, tak skus mys v inom porte prip. odobrat a nainstalovat znovu ovladac mysi
3. moze byt vadna mys

Lishak · #3 Příspěvek od **Lishak** » 20 led 2022 10:56

Díky moc. Vyčištěno a zatím maká jak má.

#4 Příspěvek od **JaRon** » 20 led 2022 11:46

to ma tesi

VIRY.CZ

Nestandardní chování myši

Nestandardní chování myši

Re: Nestandardní chování myši

Re: Nestandardní chování myši

Re: Nestandardní chování myši