Firefox nejde spustit odinstalovat ani přeinstalovat- prosím o pomoc

[xcite]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-11-2021 02
Ran by XXX (administrator) on XXX-TOSH (TOSHIBA PORTEGE Z30-C) (09-11-2021 19:05:40)
Running from C:\Users\XXX\Desktop\frst
Loaded Profiles: XXX
Platform: Microsoft Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser not detected!
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe
(DTS, Inc. -> ) C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(F.lux Software LLC -> f.lux Software LLC) C:\Users\XXX\AppData\Local\FluxSoftware\Flux\flux.exe
(Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
(Intel(R) Wireless Display -> Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\regsvr32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Sierra Wireless, Inc. -> Sierra Wireless, Inc.) C:\Program Files (x86)\Sierra Wireless Inc\Utils\SwiService.exe
(Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TOSHIBA CORPORATION -> ) C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe
(TOSHIBA CORPORATION -> ) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA CORPORATION -> Společnost TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(TOSHIBA CORPORATION -> Toshiba Corporation) C:\Program Files (x86)\TOSHIBA\BtPwrMon\BtPwrMon.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\3GUty\tw3gsvc.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA CORPORATION -> Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TosWififind.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA) C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe
(TOSHIBA CORPORATION -> TOSHIBA) C:\Program Files\TOSHIBA\FlashCards\Hotkey\TDUNotify\TDUSrv64.exe
(Toshiba Europe Gmbh -> Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(Toshiba Europe Gmbh -> Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Validity Sensors, Inc.) [File not signed] C:\Windows\System32\valWBFPolicyService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2015-12-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [1006384 2015-09-10] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [613216 2015-09-30] (TOSHIBA CORPORATION -> )
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [180016 2015-06-08] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [711040 2013-08-20] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TSleepSrv] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [1500240 2013-04-16] (TOSHIBA CORPORATION -> TOSHIBA)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-13] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TFPUService] => C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe [230752 2013-08-26] (TOSHIBA CORPORATION -> TOSHIBA)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] => c:\Program Files (x86)\Toshiba\Registration\ToshibaReminder.exe [150928 2017-05-09] (Toshiba Europe GmbH -> Toshiba Europe GmbH)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7953976 2019-12-10] (Intel Corporation -> Motorola Solutions, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2015-12-18] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [BtPwrMon] => C:\Program Files (x86)\Toshiba\BtPwrMon\BtPwrMon.exe [28488 2015-12-15] (TOSHIBA CORPORATION -> Toshiba Corporation)
HKLM-x32\...\Run: [TOSDCR] => C:\Program Files (x86)\TOSHIBA\PasswordUtility\TOSDCR.exe [169296 2007-08-28] (TOSHIBA CORPORATION -> )
HKLM-x32\...\Run: [ToshibaServiceStation] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1298816 2011-07-12] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM-x32\...\Run: [Speechtech TTS 32-bit preload] => C:\Program Files (x86)\Speechtech TTS\TTSGui.exe [2622088 2019-07-26] (Speechtech, s.r.o. -> SpeechTech, s.r.o. (www.speechtech.cz))
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-11-02] (Intel Corporation -> Intel)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\...\Run: [f.lux] => C:\Users\XXX\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\...\MountPoints2: {211569fe-c311-11e7-a8e6-448500e4fb9b} - "D:\WD SmartWare.exe" autoplay=true
HKLM\...\Print\Monitors\CPCA Language Monitor3: C:\Windows\system32\CNAS0MMK.DLL [32768 2006-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Canon Inc.)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [117248 2018-02-13] (pdfforge GmbH) [File not signed]
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-02] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
HKLM\Software\...\Authentication\Credential Providers: [{EB4BBF9F-17EB-42E3-A500-032864921611}] -> C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUBioCP.dll [2015-09-24] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{B39792CE-FA9B-475e-9881-151D5C215110}] -> C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUBioCP.dll [2015-09-24] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Monitor.lnk [2017-05-09]
ShortcutTarget: Bluetooth Monitor.lnk -> C:\Program Files (x86)\TOSHIBA\Bluetooth Monitor\BtMon2.exe (TOSHIBA CORPORATION -> TOSHIBA CORPORATION)
Startup: C:\Users\XXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-05-28]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0203AAFE-B51D-42D5-B32C-9C792B9276F5} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4639280 2018-12-02] (McAfee, Inc. -> McAfee, Inc.)
Task: {117F1175-3B4A-4DDD-AB7D-58D3AC853618} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-23] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {163E0AC8-DFAE-4CA7-8BCC-8F0D9D0E97A2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2051B244-E599-4D54-BEB3-09C15A576FA8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4371888 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {2D7BC2CB-9B8F-4202-883C-0D4CA6C00237} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {3041ED90-3C95-4F49-BE01-D8421B37B827} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-27] (Google Inc -> Google Inc.)
Task: {3FAD1C81-125F-47F4-A68C-8557AB736234} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks [Argument = /run /TN "\Microsoft\Windows\Setup\gwx\refreshgwxconfig"]
Task: {42B3C504-6996-473B-8C2C-60AE543DD658} - System32\Tasks\dts_apo_service_task => C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_task.exe [15288 2015-11-19] (DTS, Inc. -> )
Task: {5B45DA4F-6AC5-4A23-89D9-ABDA3E501B84} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
Task: {6E230683-599A-4FBF-8CD2-528C67B833B9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1190424 2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {7DB4C884-3A2E-4C0D-B4B3-70FB45105E81} - System32\Tasks\{9F19EDA4-D233-4F25-96B0-67B759DEAC1D} => C:\Windows\system32\pcalua.exe -a C:\Users\XXX\Downloads\AHDBLT-00247994-0042.EXE -d C:\Users\XXX\Downloads
Task: {7E7540B1-8189-48F6-B550-0611F19BC7A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {94926BE0-9205-4852-91B6-6B57A6E92E34} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4371888 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {98B9F097-57E5-48E4-B9F8-3E219563A0EC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24613248 2021-10-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DCB80EC-A8BB-47DC-851B-61BB796E3DE9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [673720 2021-10-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {A564E731-66FE-418D-A5BF-0D9AE2E856F5} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation)
Task: {A87729D2-8E48-445D-8DF4-14CB411F517B} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {B0E40F4F-FA7F-4A0A-ABD0-857C1F733E85} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24613248 2021-10-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {B21E49F7-C844-4531-98F6-0CEBFAC381CC} - System32\Tasks\Toshiba\TemproTray => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [790640 2015-08-17] (Toshiba Europe Gmbh -> Toshiba Europe GmbH)
Task: {C2078648-EAC4-4F10-9953-FF7509A63E3F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8DCEF7D-E319-4A55-8F5D-8E78251D4CED} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation)
Task: {DCA737E0-4878-478E-B984-505EA7498305} - System32\Tasks\CCleanerSkipUAC - XXX => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E2F5EEDD-5B22-4662-8D63-092DE4C2087D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-27] (Google Inc -> Google Inc.)
Task: {E6B8CBA0-739C-4F3B-B85B-EBD54527E744} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF6A9B0B-5FB2-4CE6-BA9D-14E5E33628F8} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-23] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {F48D3193-4D78-4CDC-A3AC-FD04C87A1FD6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AB95AB8B-DA4C-4A89-BD14-4C7B3961229F}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{302BCF7B-E09E-4854-9F2F-8B2DA4EF70F9}] - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\FirefoxAddin
FF Extension: (TOSHIBA Fingerprint Utility Web Site Passwords) - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\FirefoxAddin [2017-05-09] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-10] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-10] (Adobe Systems Incorporated -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3709101765-1524951398-3981220775-1000: www.mydlink.com/Uplayer -> C:\Users\XXX\AppData\Roaming\D-Link\mydlink services plugin\1.0.2.7\npUplayer.dll [2015-12-11] (D-LINK CORPORATION -> D-Link Corporation)

Chrome:
=======
CHR Profile: C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default [2019-09-01]
CHR StartupUrls: Default -> "hxxps://hbogo.cz/"
CHR Extension: (Prezentace) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-27]
CHR Extension: (Dokumenty) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-27]
CHR Extension: (Disk Google) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-27]
CHR Extension: (YouTube) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-12]
CHR Extension: (TOSHIBA Fingerprint Utility Web Site Passwords) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\iniieblifogecdlkejbmonblijmdaiog [2017-12-27]
CHR Extension: (Cryptonite - Online Identity Protection) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\keghdcpemohlojlglbiegihkljkgnige [2019-03-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-03-12]
CHR Extension: (Gmail) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-26]
CHR Extension: (Chrome Media Router) - C:\Users\XXX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-01]
CHR HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [iniieblifogecdlkejbmonblijmdaiog] - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\ChromeAddin\ChromeAddin.crx [2013-08-26]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [96512 2015-10-23] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137416 2021-10-10] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [39352 2021-11-02] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [177080 2021-11-02] (Intel Corporation -> Intel)
R3 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [20928 2015-11-19] (DTS, Inc. -> )
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-23] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [395744 2015-01-14] (Intel(R) Wireless Display -> Intel)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 SwiService; C:\Program Files (x86)\Sierra Wireless Inc\Utils\SWIService.exe [792840 2015-07-02] (Sierra Wireless, Inc. -> Sierra Wireless, Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12849960 2021-03-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112232 2015-08-17] (Toshiba Europe Gmbh -> Toshiba Europe GmbH)
R2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [194168 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R2 TW3GSVC; C:\Program Files\Toshiba\3GUty\tw3gsvc.exe [186816 2014-12-15] (TOSHIBA CORPORATION -> TOSHIBA CORPORATION)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [35328 2013-11-19] (Validity Sensors, Inc.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 btmaudio; C:\Windows\System32\drivers\btmaud.sys [98272 2019-12-17] (Intel Corporation -> Motorola Solutions, Inc.)
S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [155616 2019-12-17] (Intel Corporation -> Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\System32\DRIVERS\btmhsf.sys [1565152 2019-12-17] (Intel Corporation -> Motorola Solutions, Inc.)
S3 cpuz148; C:\Windows\temp\cpuz148\cpuz148_x64.sys [35360 2019-12-18] (CPUID S.A.R.L.U. -> CPUID)
R3 guardian2; C:\Windows\System32\Drivers\oz776x64.sys [99496 2015-08-12] (BayHub Technology Inc. -> O2Micro)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 swg3kmbb06; C:\Windows\System32\DRIVERS\swg3kmbb06.sys [556296 2015-07-02] (Sierra Wireless, Inc. -> Sierra Wireless Incorporated)
R3 swg3knmea06; C:\Windows\System32\DRIVERS\swg3knmea06.sys [276720 2015-07-02] (Sierra Wireless, Inc. -> Sierra Wireless Incorporated)
R3 swg3kser06; C:\Windows\System32\DRIVERS\swg3kser06.sys [276720 2015-07-02] (Sierra Wireless, Inc. -> Sierra Wireless Incorporated)
R3 swibus06; C:\Windows\System32\DRIVERS\swibus06.sys [88848 2015-07-02] (Sierra Wireless -> Sierra Wireless Inc.)
R3 swibusflt06; C:\Windows\System32\DRIVERS\swibusflt06.sys [88848 2015-07-02] (Sierra Wireless -> Sierra Wireless Inc.)
R0 TVALZ; C:\Windows\System32\DRIVERS\TVALZ.SYS [40256 2020-08-04] (Dynabook Inc. -> Dynabook Inc.)
R3 usb3Hub; C:\Windows\System32\DRIVERS\usb3Hub.sys [212056 2015-01-14] (Intel(R) Wireless Display -> Windows (R) Win 7 DDK provider)
S3 MpKsl50ca42fb; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10C3D26A-FFA8-4EA5-B732-4D3BCDBA22CE}\MpKslDrv.sys [X]
S3 MpKsla44d3b21; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10C3D26A-FFA8-4EA5-B732-4D3BCDBA22CE}\MpKslDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-09 18:43 - 2021-11-09 18:43 - 000000000 ___RD C:\Users\XXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2021-11-08 19:00 - 2021-11-08 19:00 - 056537928 _____ (Mozilla) C:\Users\XXX\Downloads\Firefox Setup 91.3.0esr.exe
2021-11-08 18:32 - 2021-11-08 18:34 - 000218462 _____ C:\Windows\ntbtlog.txt
2021-11-07 20:10 - 2021-11-07 22:53 - 000000000 ____D C:\Users\XXX\Desktop\Původní data aplikace Firefox
2021-11-04 17:13 - 2021-11-04 17:18 - 1273790180 _____ C:\Users\XXX\Downloads\Auta_2.avi
2021-11-04 16:57 - 2021-11-09 18:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-11-04 05:08 - 2021-04-20 13:44 - 000000000 ____D C:\Users\XXX\Downloads\Stehlíková Petra - Naslouchač 2
2021-11-04 05:06 - 2021-11-04 05:08 - 657771308 _____ C:\Users\XXX\Downloads\Petra_Stehlikova_-__Naslouchac_2__Faja__audiokniha_.rar
2021-11-02 23:38 - 2021-11-02 23:38 - 000001532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2021-11-01 23:16 - 2021-11-01 23:19 - 820487308 _____ C:\Users\XXX\Downloads\Rozsudek smrti.zip
2021-11-01 23:05 - 2021-11-01 23:10 - 2022884859 _____ C:\Users\XXX\Downloads\Babovky 2020 CZ.mkv
2021-10-29 10:16 - 2021-10-29 10:16 - 000000000 ____D C:\Users\XXX\Downloads\ryb krev
2021-10-29 07:31 - 2021-10-29 07:33 - 458222173 _____ C:\Users\XXX\Downloads\zasilka-RHIRDRXFRH8N485G.zip
2021-10-21 00:52 - 2021-10-21 00:52 - 000000000 ____D C:\Users\XXX\Downloads\Mezi dvema ohni
2021-10-21 00:50 - 2021-10-21 00:51 - 445728625 _____ C:\Users\XXX\Downloads\Mezi dvema ohni.zip
2021-10-16 14:20 - 2021-10-16 14:22 - 844783140 _____ C:\Users\XXX\Downloads\StarDance VII - 9.díl (12.12. 2015).avi
2021-10-15 22:45 - 2021-10-15 22:45 - 000000499 _____ C:\Users\XXX\Desktop\kohoutek.csv
2021-10-14 15:45 - 2021-10-14 15:45 - 000119098 _____ C:\Users\XXX\Desktop\Zápis_SRPŠ_9.9.2021.pdf
2021-10-14 15:43 - 2021-10-14 15:43 - 000032437 _____ C:\Users\XXX\Desktop\termínovník_2021-22.pdf
2021-10-14 15:42 - 2021-10-14 15:42 - 000103904 _____ C:\Users\XXX\Desktop\Zápis_srpš21.10.2021-1.pdf
2021-10-13 08:12 - 2021-10-27 16:20 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-09 19:06 - 2019-02-14 16:14 - 000000000 ____D C:\FRST
2021-11-09 19:04 - 2019-02-15 16:21 - 000000000 ____D C:\Users\XXX\Desktop\frst
2021-11-09 18:53 - 2017-12-27 21:31 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-09 18:51 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-11-09 18:51 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-11-09 18:50 - 2011-02-14 11:17 - 000669846 _____ C:\Windows\system32\perfh005.dat
2021-11-09 18:50 - 2011-02-14 11:17 - 000141972 _____ C:\Windows\system32\perfc005.dat
2021-11-09 18:50 - 2009-07-14 06:13 - 001586720 _____ C:\Windows\system32\PerfStringBackup.INI
2021-11-09 18:50 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-11-09 18:45 - 2019-02-19 09:34 - 000000000 ____D C:\Program Files\CCleaner
2021-11-09 18:43 - 2019-11-03 16:57 - 000000000 ____D C:\Program Files (x86)\Speechtech TTS
2021-11-09 18:43 - 2019-03-28 21:32 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-11-09 18:43 - 2018-04-23 19:20 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-11-09 18:43 - 2017-05-09 22:10 - 000000000 __SHD C:\Users\XXX\IntelGraphicsProfiles
2021-11-09 18:43 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-11-08 19:29 - 2019-01-30 18:15 - 000000000 ____D C:\ProgramData\Mozilla
2021-11-08 19:27 - 2017-05-09 22:22 - 000000000 ____D C:\Users\XXX\AppData\LocalLow\Mozilla
2021-11-08 18:01 - 2019-12-23 19:50 - 000000000 ____D C:\Users\XXX\AppData\Local\CrashDumps
2021-11-08 17:52 - 2019-03-29 16:05 - 000000000 ____D C:\Program Files (x86)\MozBackup
2021-11-08 17:07 - 2017-05-09 22:10 - 000002164 _____ C:\Users\XXX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2021-11-08 06:30 - 2019-12-23 19:38 - 000000000 ____D C:\Users\XXX\Documents\Bluetooth Folder
2021-11-05 23:10 - 2017-05-10 18:14 - 000000000 ____D C:\Users\XXX\AppData\Roaming\vlc
2021-11-04 07:26 - 2017-10-22 18:13 - 000003170 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3709101765-1524951398-3981220775-1000
2021-11-02 23:46 - 2017-12-27 21:31 - 000002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-02 23:46 - 2017-12-27 21:31 - 000002194 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-02 23:38 - 2017-05-09 20:37 - 000000000 ____D C:\Program Files (x86)\Intel
2021-11-02 23:38 - 2017-05-09 20:36 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-29 22:43 - 2019-02-19 09:34 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-10-18 02:03 - 2017-05-25 21:11 - 000000000 ____D C:\Windows\system32\MRT
2021-10-18 02:00 - 2017-05-25 21:11 - 139806512 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-10-15 20:24 - 2017-05-09 20:58 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-15 20:23 - 2017-05-09 20:58 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-11 19:04 - 2020-03-25 09:34 - 000000000 ____D C:\Users\XXX\Desktop\WORK

==================== Files in the root of some directories ========

2018-04-05 22:03 - 2021-05-12 17:48 - 000007659 _____ () C:\Users\XXX\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-11-08 04:12
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-11-2021 02
Ran by XXX (09-11-2021 19:06:56)
Running from C:\Users\XXX\Desktop\frst
Microsoft Windows 7 Professional Service Pack 1 (X64) (2017-05-09 21:10:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3709101765-1524951398-3981220775-500 - Administrator - Disabled)
Guest (S-1-5-21-3709101765-1524951398-3981220775-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-3709101765-1524951398-3981220775-1002 - Limited - Enabled)
XXX (S-1-5-21-3709101765-1524951398-3981220775-1000 - Administrator - Enabled) => C:\Users\XXX

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Active@ UNDELETE 15 (HKLM\...\{442F1486-F0A7-4F93-A9F2-575E2738E426}_is1) (Version: 15 - LSoft Technologies Inc)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.100.303.215 - ALPS ELECTRIC CO., LTD.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{43534734-7770-4dce-8eda-5d51cefd98e5}) (Version: 21.40.5 - Intel Corporation)
Bluetooth Monitor 4 (HKLM-x32\...\{61539202-097E-487E-9237-B291AB56D54C}) (Version: 4.08.000 - TOSHIBA)
Canon MF Toolbox 4.9.1.1.mf18 (HKLM-x32\...\{6767DFEE-8909-453A-B553-C7693912B2EB}) (Version: 4.9.1.1.mf18 - CANON INC.)
Canon MF4100 Series (HKLM\...\{239A8D60-270B-42e8-82D3-60D70A2942E0}) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform)
CMEDIA USB2.0 Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392016500}) (Version: 1.0.0.3 - C-Media Electronics, Inc.)
DTS Studio Sound (HKLM-x32\...\{E7C66352-1D0C-406F-B5B2-FE2B23973356}) (Version: 1.02.5600 - DTS, Inc.)
f.lux (HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\...\Flux) (Version: - f.lux Software LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.69 - Google LLC)
Intel Driver && Support Assistant (HKLM-x32\...\{5C00DA99-5159-4D09-A629-018EF8A66825}) (Version: 21.6.39.5 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{88B98508-2D8F-46F1-90AD-557BE40C7067}) (Version: 2.4.07642 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.4 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4360 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.16.1063 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.4.51 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{5DD8D7E4-87F1-4134-AD28-4228FB1A03BA}) (Version: 6.0.44.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{86905E62-645F-482E-A417-82C812ABD787}) (Version: 1.1.383 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{4DA9DC19-4E1D-4B10-A726-A5F2A1BC7265}) (Version: 18.1.1546.2762 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{481781ea-4aa2-4f86-83f6-6800c40421fe}) (Version: 21.6.39.5 - Intel)
Kindle Converter 3.18.318.381 (HKLM-x32\...\{8142ADA6-F41A-461D-A211-B9B68B09CEAA}_is1) (Version: 3.18.318.381 - eBook Converter Team)
McAfee True Key (HKLM\...\TrueKey) (Version: 5.3.138.1 - McAfee, LLC)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.12527.22045 - Microsoft Corporation)
Microsoft Office 365 - el-gr (HKLM\...\O365HomePremRetail - el-gr) (Version: 16.0.12527.22045 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12527.22045 - Microsoft Corporation)
Microsoft Office 365 - hu-hu (HKLM\...\O365HomePremRetail - hu-hu) (Version: 16.0.12527.22045 - Microsoft Corporation)
Microsoft Office 365 - pl-pl (HKLM\...\O365HomePremRetail - pl-pl) (Version: 16.0.12527.22045 - Microsoft Corporation)
Microsoft Office 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.12527.22045 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.12527.22045 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
mydlink services plugin (HKLM-x32\...\{1A9B665A-5F27-4F71-BF90-22FDFE7A1635}) (Version: 1.0.2.7 - D-Link Corporation)
O2Micro OZ776 SCR Driver (HKLM\...\{11868102-FAE6-436D-B794-B4B69E2A88DC}) (Version: 2.1.4.241GS - O2Micro) Hidden
O2Micro OZ776 SCR Driver (HKLM-x32\...\InstallShield_{11868102-FAE6-436D-B794-B4B69E2A88DC}) (Version: 2.1.4.241GS - O2Micro)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.22045 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.22045 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.22045 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12527.22045 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0408-0000-0000000FF1CE}) (Version: 16.0.12527.22045 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12527.22045 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.12527.22045 - Microsoft Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.1.2 - pdfforge GmbH)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.21277 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)
Sierra Wireless Skylight (HKLM\...\Sierra Wireless Skylight) (Version: 6.0.4320.8402 - Sierra Wireless, Inc.)
Sierra Wireless Toshiba Mobile Broadband Driver Package (HKLM-x32\...\SWIToshibaDrvInstaller) (Version: 6.14.4316.0602 - Sierra Wireless, Inc.)
Software602 Form Filler (HKLM-x32\...\{9210AEE3-6ECB-4271-A125-1039E94A6A51}) (Version: 4.75 - Software602 a.s.)
Speechtech TTS 3.5.4 (HKLM-x32\...\{74A7ABF2-011F-41C0-AC8E-4B255EC2BD45}_is1) (Version: 3.5.4 - Speechtech s.r.o.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.16.8 - TeamViewer)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.13 for x64 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM\...\{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.0.4.6401 - Toshiba Corporation)
TOSHIBA Fingerprint Utility (HKLM\...\{62BBF381-D208-4EF0-B502-6CB6E5B9A161}) (Version: 2.3.10.64401 - Toshiba Corporation)
TOSHIBA Flash Cards (HKLM\...\{2263D049-8953-42C5-997B-CC19FD6CEF4F}) (Version: 9.0.11.6403 - Toshiba Corporation)
TOSHIBA HDD/SSD Alert (HKLM\...\{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.16 - TOSHIBA Corporation)
TOSHIBA HWSetup (HKLM-x32\...\{0E94D98C-00A7-4C93-9708-8E5A1859E72E}) (Version: 9.1.1.3205 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.20 - TOSHIBA)
TOSHIBA Password Utility (HKLM-x32\...\{6C0A2179-56CB-4F1F-9681-E777A4F3C800}) (Version: 9.0.4.3203 - Toshiba Corporation)
TOSHIBA PC Diagnostic Tool (HKLM-x32\...\{F0794FA5-1809-4FC3-AA4E-48061281B5A2}) (Version: 9.0.4.6400 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{B507386D-1F61-4E55-B05B-F56ACB0086B3}) (Version: 5.01.05.6401 - Toshiba Corporation)
TOSHIBA Power Saver (HKLM\...\{4573FA6D-5FC1-4CA0-8D90-BAF9325B28ED}) (Version: 9.0.7.6401 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.3.00.8510 - Toshiba Corporation)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 3.0.1.0 - TOSHIBA)
TOSHIBA Sleep Utility (HKLM-x32\...\{472175F3-ACB2-4977-8CC8-EB971C24F245}) (Version: 2.0.2.3201 - Toshiba Corporation)
TOSHIBA System Driver (HKLM\...\{46754F5B-B496-4BCA-87E5-84ACF27FCE0F}) (Version: 9.1.0.6404 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{9AF63859-69C8-4B80-A9E3-B64DDB75E551}) (Version: 3.50 - Toshiba Europe GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Validity WBF DDK 5111 (HKLM\...\{8824790A-7C36-41D3-8127-5BD92623150E}) (Version: 4.5.243.0 - Validity Sensors, Inc.)
VdhCoApp 1.5.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Voice Reader Home 15 Czech-Female (Zuzana) (HKLM-x32\...\{68EFC913-D74E-42B1-8096-BA75D0DA5EDE}) (Version: 15.0.0.0 - Linguatec GmbH)
WhatsApp (HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\...\WhatsApp) (Version: 0.2.9229 - WhatsApp)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ATFPUOverlayIcon] -> {3239DBC1-B76D-4dc7-8B29-D99CBA3C7336} => C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUOverlayIcon.dll [2013-07-17] (TOSHIBA CORPORATION -> TOSHIBA)
ShellIconOverlayIdentifiers: [TFPUOverlayIcon] -> {8DBDDA23-34E3-4BF1-A107-67B94C080A1F} => C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUFileShellExt.dll [2015-04-23] (TOSHIBA CORPORATION -> TOSHIBA)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [TFPUContextMenu] -> {2E34EBB9-C147-4DF4-938F-90C5B0837B1E} => C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUFileShellExt.dll [2015-04-23] (TOSHIBA CORPORATION -> TOSHIBA)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed]
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-12-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [TFPUContextMenu] -> {2E34EBB9-C147-4DF4-938F-90C5B0837B1E} => C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUFileShellExt.dll [2015-04-23] (TOSHIBA CORPORATION -> TOSHIBA)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2013-12-24 02:20 - 2013-12-24 02:20 - 000086016 _____ () [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2021-04-13 13:36 - 2021-04-13 13:36 - 005745664 _____ () [File not signed] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module.dll
2017-05-09 20:42 - 2015-12-18 23:04 - 000075264 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2018-03-26 13:07 - 2018-03-26 13:07 - 000126976 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2017-05-09 20:52 - 2017-05-09 20:52 - 000245760 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
2018-02-13 12:12 - 2018-02-13 12:12 - 000870912 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\PS5UI.DLL
2017-05-09 20:58 - 2017-05-09 20:58 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2017-05-09 20:58 - 2017-05-09 20:58 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2018-02-13 12:12 - 2018-02-13 12:12 - 000117248 _____ (pdfforge GmbH) [File not signed] C:\Windows\System32\pdfcmon.dll
2013-12-24 02:27 - 2013-12-24 02:27 - 000107648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll
2013-12-24 02:27 - 2013-12-24 02:27 - 000033408 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\CommApi.dll
2013-12-24 02:27 - 2013-12-24 02:27 - 000203392 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\FolderViewImpl.dll
2013-12-24 02:27 - 2013-12-24 02:27 - 000126592 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\gatts.DLL
2013-12-24 02:27 - 2013-12-24 02:27 - 000083072 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Handsfree.dll
2013-12-24 02:27 - 2013-12-24 02:27 - 000034432 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\ipc.dll
2013-12-24 02:27 - 2013-12-24 02:27 - 000063104 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\ModuleManager.dll
2013-12-24 02:28 - 2013-12-24 02:28 - 001067648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\OutLookLib.dll
2013-12-24 02:28 - 2013-12-24 02:28 - 000291456 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll
2013-12-24 02:28 - 2013-12-24 02:28 - 000130176 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\skypeagent.dll
2013-12-24 02:28 - 2013-12-24 02:28 - 000027264 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\TCPConnection.dll
2013-12-24 02:28 - 2013-12-24 02:28 - 000115328 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\utils.dll
2013-12-24 02:20 - 2013-12-24 02:20 - 000308224 _____ (Qualcomm Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\LE\LE.dll
2013-12-24 02:21 - 2013-12-24 02:21 - 000210944 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\Audio\audio.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000162304 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\BasicPrintProfile\BPP.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000177152 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\BIP\BIP.dll
2013-12-24 02:20 - 2013-12-24 02:20 - 000018432 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\DID\DId.dll
2013-12-24 02:20 - 2013-12-24 02:20 - 000035840 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\FAX\Fax.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000421888 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\FileTransfer\FileTransfer.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000096256 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\GapSdp\GapSdp.dll
2013-12-24 02:18 - 2013-12-24 02:18 - 000097792 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\goep\goep.dll
2013-12-24 02:20 - 2013-12-24 02:20 - 000029696 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\HCRP\Hcrp.dll
2013-12-24 02:21 - 2013-12-24 02:21 - 000142848 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\HealthDevice\HDP.dll
2013-12-24 02:21 - 2013-12-24 02:21 - 000064512 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\HumanInterfaceDevice\hid.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000091136 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\L2capLib\l2caplib.dll
2013-12-24 02:18 - 2013-12-24 02:18 - 000181248 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\OppOperation\ObjPush.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000066048 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\OppOperation\OppOperation.dll
2013-12-24 02:20 - 2013-12-24 02:20 - 000020992 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\Pan\pan.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000067072 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\pbap\pbap.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000063488 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\RfcommLib\rfcommlib.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000097280 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\sap\sap.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 000087552 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\SesMgr\sesmgr.dll
2013-12-24 02:21 - 2013-12-24 02:21 - 000055296 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\spp\spp.dll
2013-12-24 02:21 - 2013-12-24 02:21 - 000064512 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\Sync\Sync.dll
2013-12-24 02:21 - 2013-12-24 02:21 - 000045056 _____ (Qualcomm®Atheros®) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Modules\VideoDistribution\VDP.dll
2021-05-21 15:04 - 2021-05-21 15:04 - 000130048 _____ (Sam Grogan) [File not signed] [File is in use] C:\Program Files (x86)\Intel\Driver and Support Assistant\NotifyIconWin32.dll
2017-05-09 20:54 - 2011-07-19 01:50 - 000016896 _____ (TOSHIBA Corporation) [File not signed] [File is in use] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\cs\Alerts.resources.dll
2017-05-09 20:54 - 2015-08-25 18:35 - 000032768 _____ (TOSHIBA Corporation) [File not signed] [File is in use] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\cs\PCHealthInfo.resources.dll
2017-05-09 20:54 - 2011-07-19 01:50 - 000004608 _____ (TOSHIBA Corporation) [File not signed] [File is in use] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\cs\PluginLib.resources.dll
2017-05-09 20:54 - 2011-07-19 01:50 - 000028672 _____ (TOSHIBA Corporation) [File not signed] [File is in use] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\cs\SwUpdates.resources.dll
2017-05-09 20:54 - 2011-07-19 01:50 - 000786432 _____ (TOSHIBA Corporation) [File not signed] [File is in use] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\cs\ToshibaServiceStation.resources.dll
2017-05-09 20:54 - 2011-07-19 01:50 - 000068096 _____ (TOSHIBA Corporation) [File not signed] [File is in use] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\Plugins\Alerts.dll
2017-05-09 20:54 - 2011-07-19 01:50 - 000096768 _____ (TOSHIBA Corporation) [File not signed] [File is in use] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\Plugins\SwUpdates.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/?pc=TBTE
HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TBTE
HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba.eu/symbaloo_10b
HKU\S-1-5-21-3709101765-1524951398-3981220775-501\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/?pc=TBTE
HKU\S-1-5-21-3709101765-1524951398-3981220775-501\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TBTE
HKU\S-1-5-21-3709101765-1524951398-3981220775-501\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba.eu/symbaloo_10b
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: TOSHIBA Fingerprint Utility Web Site Passwords -> {030AC7B6-E7EC-40F1-8FB2-C0FD344DE0B9} -> C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUPWDBankBHO.dll [2013-08-26] (TOSHIBA CORPORATION -> TOSHIBA)
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: TOSHIBA Fingerprint Utility Web Site Passwords -> {030AC7B6-E7EC-40F1-8FB2-C0FD344DE0B9} -> C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\TFPUPWDBankBHO.dll [2013-08-26] (TOSHIBA CORPORATION -> TOSHIBA)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-19] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2018-04-21 14:23 - 000000846 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-3709101765-1524951398-3981220775-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\XXX\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3709101765-1524951398-3981220775-501\Control Panel\Desktop\\Wallpaper -> C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{5D6ADB3B-EC39-4E6F-B20D-A353752BD2C9}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (Intel(R) Wireless Display -> Microsoft)
FirewallRules: [{47C66FDD-606E-4DAE-B9B8-D6F3D197E70B}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe (Intel(R) Wireless Display -> Intel)
FirewallRules: [{331488A7-9101-4DFE-AD09-E819B3429AD2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{B325F2A6-6979-4CED-B641-904054E7F535}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{004DE366-9232-4ED0-9931-071AFFA034F1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{1DB3AE11-1ED2-4574-9484-51FD348A280E}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerlauncher.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerlauncher.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [UDP Query User{5516D722-96A8-43CD-8ACB-BC9FA47602CF}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerlauncher.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerlauncher.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [TCP Query User{C183A1D3-2D27-4207-9B88-92A25217F077}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanager.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanager.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [UDP Query User{ACC8464D-24A4-445D-9239-36EE58AFD5F8}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanager.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanager.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [TCP Query User{92A5FAA2-211F-44BC-84D2-00F6983E1EBF}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerapp.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerapp.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [UDP Query User{8BBDD975-00FC-4830-BA55-AEE498879CBC}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerapp.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00056135645-complete\bin\bmwdownloadmanagerapp.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [TCP Query User{AEA34023-E51C-463D-AAF4-09E129B9EF0B}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\bmwdownloadmanagerwinlauncher.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\bmwdownloadmanagerwinlauncher.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [UDP Query User{9C3A09C2-FE25-4353-92FD-DB38F9E8218F}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\bmwdownloadmanagerwinlauncher.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\bmwdownloadmanagerwinlauncher.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [{F05AAEA7-4F74-4130-8E4F-0B53630B42EC}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{E78A6C1C-3172-407A-8E64-1F3E80D1FFD4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{14604304-9ED9-4760-9B8F-5799F1D6C2D8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{12ECF478-4B4D-4DF3-9FF5-351F71AB82FC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E8013BC6-72AE-4B47-8AEF-F984F4296D39}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6E5A355A-458E-4B33-853B-436DE03B0D10}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9D4D68E1-F73E-4AF1-8AB6-0229D67DF5A9}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{9D0EB709-1AE6-4983-9D15-5537E919D993}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [TCP Query User{1E97E5E2-FFF8-45EB-8B01-92338AB04E93}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerlauncher.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerlauncher.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [UDP Query User{E7013D15-A47A-4306-9A8C-DE73EBCFA3C2}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerlauncher.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerlauncher.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [TCP Query User{C92B83E0-D181-497B-A452-38D457358C13}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanager.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanager.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [UDP Query User{C03EEFC5-2E46-489C-88BA-2F97318F0D35}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanager.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanager.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [TCP Query User{12C0B15E-5C06-4747-AF0B-FF48D0B5EDCB}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerapp.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerapp.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [UDP Query User{4CA5AE2B-2F22-4811-8A2B-D578F52C4009}C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerapp.exe] => (Allow) C:\users\xxx\appdata\roaming\jwrapper-bmwdownloadmanager\jwrapper-windows32jre-00067522450-complete\bin\bmwdownloadmanagerapp.exe (Bayerische Motoren Werke AG -> )
FirewallRules: [{78D3B5FD-810B-4B8D-9D32-71CC35C32454}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EEE6CB9E-24DC-44CE-8CC7-66B191903B8A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{7C5F3A2B-A8FF-4CA2-9EB3-55EE43D0D1E4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5C26715E-784C-48D6-85F4-7E0DB1AF5E22}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{186CE0FE-DDB9-439A-9CAB-C69CE7CD8C40}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{62B823E9-51D9-4D62-905C-329C63E1D3E5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5BFF4DF4-025F-43D4-A916-4AA14346CE19}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

02-11-2021 23:38:06 Intel® Driver & Support Assistant
04-11-2021 07:29:35 Windows Update

==================== Faulty Device Manager Devices ============

Name: Bluetooth Server
Description: Bluetooth Server
Class Guid: {34446e8e-37b4-4b16-9da6-bea2db33465a}
Manufacturer: Intel Corporation
Service: btmaux
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (11/09/2021 06:57:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program setup.exe verze 1.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: a6c

Čas spuštění: 01d7d5922107837f

Čas ukončení: 0

Cesta k aplikaci: C:\Users\XXX\AppData\Local\Temp\7zSC502C0F5\setup.exe

ID hlášení:

Error: (11/09/2021 06:54:10 PM) (Source: Firefox Default Browser Agent) (EventID: 1117) (User: )
Description: Event-ID 1117

Error: (11/09/2021 06:43:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/09/2021 06:43:21 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (11/09/2021 06:43:21 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (11/09/2021 06:43:21 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (11/08/2021 07:28:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program firefox.exe verze 91.3.0.7971 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 10b4

Čas spuštění: 01d7d4ce57085497

Čas ukončení: 10

Cesta k aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe

ID hlášení: 9fc8fe58-40c1-11ec-9e2b-448500e4fb9b

Error: (11/08/2021 07:26:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program firefox.exe verze 91.3.0.7971 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1a58

Čas spuštění: 01d7d4ce1bd12692

Čas ukončení: 10

Cesta k aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe

ID hlášení: 67255c14-40c1-11ec-9e2b-448500e4fb9b


System errors:
=============
Error: (11/09/2021 07:09:31 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/09/2021 06:48:17 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {752073A1-23F2-4396-85F0-8FDB879ED0ED} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/09/2021 06:43:27 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom

Error: (11/09/2021 06:36:25 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: Čtečka čipových karet O2Micro CCID SC Reader 0 odmítla signál IOCTL GET_STATE: Zařízení bylo odebráno.. Pokud chyba přetrvává, čipová karta nebo čtečka pravděpodobně nefungují správně.

Záhlaví příkazu: XX XX XX XX

Error: (11/09/2021 06:36:23 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Instalační služba modulů systému Windows se po přijetí pokynu pro vypnutí neukončila správně.

Error: (11/08/2021 07:31:34 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Microsoft Antimalware zjistil chybu při pokusu o aktualizaci podpisů.

Nová verze podpisu:

Předchozí verze podpisu: 1.353.549.0

Zdroj aktualizace: Server Microsoft Update

Fáze aktualizace: Vyhledat

Zdrojová cesta: http://www.microsoft.com

Typ podpisu: Antivirový program

Typ aktualizace: Úplné

Uživatel: NT AUTHORITY\SYSTEM

Aktuální verze modulu:

Předchozí verze modulu: 1.1.18700.4

Kód chyby: 0x8024001e

Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Error: (11/08/2021 07:31:16 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.

Error: (11/08/2021 06:46:38 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.


==================== Memory info ===========================

BIOS: TOSHIBA Version 6.90 07/30/2019
Motherboard: TOSHIBA PORTEGE Z30-C
Processor: Intel(R) Core(TM) i7-6500U CPU @ 2.50GHz
Percentage of memory in use: 30%
Total physical RAM: 16188.82 MB
Available physical RAM: 11259.46 MB
Total Virtual: 32375.78 MB
Available Virtual: 27222.16 MB

==================== Drives ================================

Drive c: (TIH0130600A) (Fixed) (Total:225.11 GB) (Free:20.31 GB) NTFS

\\?\Volume{0f59064e-3539-19e7-b8ae-e67a921512a0}\ (System) (Fixed) (Total:1.46 GB) (Free:1.17 GB) NTFS
\\?\Volume{1bbebe9c-1d7d-11e6-9e51-ec21e534951f}\ (HDDRECOVERY) (Fixed) (Total:11.67 GB) (Free:0.99 GB) FAT32

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Na odinstalaci FF zkuste TotalUninstall: https://www.instaluj.cz/total-uninstall .

[xcite]

Děkuji za rychlou odpověď, zatím to nevypadá dobře. Nelze spustit TU. Ani nejde normálně restartovat PC. Je to divné.

[Rudy]

Možná je poškozen systém. Zkuste obnovu eyetému k datu, kdy korektně fungoval.

[xcite]

Dobrý den, tak spustit lze obnova k poslednímu bodu, ale nedokončí se.
Vlastně vše nedokončí instalaci nebo odinstalaci.
Nevím co dál..

[Rudy]

Zkuste opravu pomocí WindowsRepair: https://www.slunecnice.cz/sw/windows-repair/ . Doporučuji před spuštěním udělat zálohu vašich dat. Pokud se to nepodaří, nezbude, než celkový reinstal systému.