Zajímavé chování prohlížeče Google Chrome

[rakato11]

Zdravím přítomné odborníky. Občas se mi stává že se mi jednoduše změní vyhledávač, to vždy vyřeším v "Nastavení" kde si dám ten svůj správný. Nyní mi však se znovu změnil ale nelze jej vrátit nazpět úplně i když nastavím Google a to tak, že první okno je jiné ale když otevřu další kliknutím na + tak už se mi otevře správně. Navíc to první je v ruštině. Notebook se také značně zpomalil.
Přikládám log z FRST + Addition.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-12-2021
Ran by HP (administrator) on HP-PC (Hewlett-Packard HP EliteBook 8570p) (01-12-2021 17:27:20)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP
Platform: Microsoft Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
() [File not signed] C:\Program Files (x86)\GLPCCamera\monitorpad.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(DOMIT LIMITED -> Domit UK LTD) C:\Users\HP\AppData\Local\MP3SkypeRecorder\app-6.1.5\MP3SkypeRecorder6.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <13>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> ) C:\Program Files (x86)\Hewlett-Packard\HP Webcam HD 2300 Software\BM.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(KONICA MINOLTA BUSINESS TECHNOLOGIES, INC. -> KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTM64_N.EXE
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(Lavasoft Software Canada Inc. -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(MFD LABS LTD -> MFD LABS LTD) C:\Users\HP\AppData\Local\Programs\messengerfordesktop\Messenger for Desktop.exe <4>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Opera Software AS -> Opera Software) C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] => C:\Windows\system32\MSTM64_N.EXE [247736 2011-04-06] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC. -> KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] () [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [333784 2021-03-30] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [157464 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-10-24] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [File not signed]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [114000240 2021-10-28] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [electron.app.Messenger for Desktop] => C:\Users\HP\AppData\Local\Programs\messengerfordesktop\Messenger for Desktop.exe [123381896 2021-03-09] (MFD LABS LTD -> MFD LABS LTD)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [MP3 Skype Recorder 6] => C:\Users\HP\AppData\Local\MP3SkypeRecorder\MP3SkypeRecorder6.exe [486344 2021-03-22] (DOMIT LIMITED -> Domit UK LTD)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2021-11-19] (Lavasoft Software Canada Inc. -> Lavasoft)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Opera Browser Assistant] => C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKLM\...\Windows x64\Print Processors\MIPR64_N: C:\Windows\System32\spool\prtprocs\x64\MIPR64_N.DLL [56832 2011-03-04] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\...\Windows x64\Print Processors\MIPR64_Q: MIPR64_Q.DLL
HKLM\...\Print\Monitors\EPSON Stylus SX200 Series 64MonitorBE: C:\Windows\system32\E_ILMEFE.DLL [108032 2007-12-07] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\MLMN64_N: C:\Windows\system32\MLMN64_N.DLL [115200 2011-03-29] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-16] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Button Manager.lnk [2019-11-06]
ShortcutTarget: HP Button Manager.lnk -> C:\Program Files (x86)\Hewlett-Packard\HP Webcam HD 2300 Software\BM.exe (Hewlett-Packard Company -> )
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2AEF0F22-8243-479C-999F-8ADAD28FB8CB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1778456 2021-11-12] (Avast Software s.r.o. -> Avast Software)
Task: {2DD315DE-222C-440E-9044-8E0D3C4F5DEF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
Task: {2E03E3D2-964F-491A-B074-09AD84CA6E40} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
Task: {392815FF-29C4-4E5C-9A6A-DB60C5A6411A} - System32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D} => C:\Program Files (x86)\iTunes\iTunes.exe (No File)
Task: {49D08032-5B62-41EE-9E86-8E267D08C8B9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {67A55BED-E121-455F-87B4-B4621986668A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {87841E93-5D65-4C19-93D0-C917162FCBC9} - System32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2} => C:\Windows\system32\pcalua.exe -a C:\Users\HP\Downloads\irfanview_lang_czech.exe -d C:\Users\HP\Downloads
Task: {9F71F64C-0455-482A-91D0-0079BCA9F33A} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4969240 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
Task: {A46F933E-B6EB-4AFF-AC5C-F579D11938F3} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [969208 2017-07-17] (HP Inc. -> HP)
Task: {ABCE5C19-B61B-4FD2-8C74-DE5741A51802} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {ADCAF5AF-F505-48D5-BE26-F4D851D0602F} - System32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B} => C:\Windows\system32\pcalua.exe -a C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.exe -d C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4
Task: {CC04D0C0-8695-46AA-944A-A9F8082F1D0E} - System32\Tasks\Opera scheduled assistant Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2265296 2021-11-23] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\HP\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DDC29568-29AF-482E-BE0A-895A9DF42100} - System32\Tasks\Opera scheduled Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2265296 2021-11-23] (Opera Software AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20944061-44D7-472A-B933-2B215F7CDB28}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-24]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-11-10] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2021-12-01]
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://forum.elektrolab.eu; hxxps://www.svarecky-obchod.cz
CHR HomePage: Default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
CHR StartupUrls: Default -> "hxxps://poshukach.com?fr=ps&gp=496723&altserp=1"
CHR Extension: (Prezentace) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-25]
CHR Extension: (Dokumenty) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-25]
CHR Extension: (Disk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (Seznam doplněk - Email) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-06]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-25]
CHR Extension: (Tabulky) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-01]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-11-13]
CHR Extension: (Plná Peňaženka Líštička) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbilggjmecggkclacdgebaielibaifdc [2021-03-19]
CHR Extension: (Video Downloader PLUS) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2021-11-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable [2021-12-01]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-12-01]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-12-01]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8480848 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [452888 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [452888 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-20] (Microsoft Corporation -> Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [158912 2019-03-28] (Microsoft Dynamic Code Publisher -> Microsoft Corporation)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-11-19] (Lavasoft Software Canada Inc. -> )
R2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [965952 2017-07-17] (HP Inc. -> HP)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-11-10] (McAfee, LLC -> McAfee, LLC)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2021-11-19] (Lavasoft Software Canada Inc. -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35720 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [222128 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [368152 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [251928 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99352 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41352 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [185216 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [538992 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2021-11-12] (AVAST Software s.r.o. -> AVAST Software)
S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107848 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82912 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [852752 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [544096 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [214352 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317680 2021-12-01] (Avast Software s.r.o. -> AVAST Software)
R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [367096 2021-10-04] (Bitdefender SRL -> Bitdefender)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [3495680 2016-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
S2 MLPTDR_N; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
S2 MLPTDR_Q; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 RsProxy; C:\Windows\system32\drivers\RsProxy.sys [15976 2019-11-06] (Realtek Semiconductor Corp -> )
S3 ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [261640 2019-08-11] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2021-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
U3 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-01 17:27 - 2021-12-01 17:27 - 000023691 _____ C:\Users\HP\Desktop\FRST.txt
2021-12-01 17:26 - 2021-12-01 17:27 - 000000000 ____D C:\FRST
2021-12-01 17:25 - 2021-12-01 17:25 - 002311680 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2021-12-01 16:40 - 2021-12-01 16:40 - 000000000 ____D C:\Users\HP\AppData\Local\Rufus
2021-12-01 16:37 - 2021-12-01 17:08 - 000000412 __RSH C:\ProgramData\ntuser.pol
2021-12-01 16:30 - 2021-12-01 16:36 - 000000000 ____D C:\Users\HP\Desktop\eset_sysrescue
2021-12-01 15:54 - 2021-12-01 15:54 - 000340248 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-12-01 15:54 - 2021-12-01 15:54 - 000214352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-12-01 15:45 - 2021-12-01 15:47 - 000000000 ____D C:\Users\HP\AppData\Local\WhatsApp
2021-12-01 15:22 - 2021-12-01 15:26 - 000000000 ____D C:\Users\HP\Desktop\Google-zvláštní
2021-11-23 05:01 - 2021-11-23 05:01 - 000000000 ____D C:\Users\HP\AppData\Local\Viber
2021-11-21 10:48 - 2021-11-21 12:17 - 000000000 ____D C:\Users\HP\Documents\Jablková marmeláda(Štítky)
2021-11-12 19:46 - 2021-11-12 19:46 - 000000000 ____D C:\Users\HP\AppData\Local\Avast Software
2021-11-12 19:39 - 2021-11-12 19:39 - 000000000 ____D C:\Users\HP\Downloads\main 6d294ac9 chunk
2021-11-12 19:39 - 2021-11-12 19:39 - 000000000 ____D C:\Users\HP\Downloads\empclient min
2021-11-12 19:39 - 2021-11-12 19:39 - 000000000 ____D C:\Users\HP\Downloads\bowser
2021-11-12 19:39 - 2021-11-12 19:39 - 000000000 ____D C:\Users\HP\Downloads\agamaIntegrationBuild
2021-11-12 19:39 - 2021-11-12 19:39 - 000000000 ____D C:\Users\HP\Downloads\25 2f304db6 chunk
2021-11-12 19:37 - 2021-11-12 19:37 - 000000000 ____D C:\Users\HP\Downloads\New Folder
2021-11-12 19:35 - 2021-11-12 19:35 - 000002075 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-11-12 19:35 - 2021-11-12 19:35 - 000000000 ____D C:\Users\HP\AppData\Roaming\Avast Software
2021-11-12 19:35 - 2021-11-12 19:35 - 000000000 ____D C:\Users\HP\AppData\Local\CEF
2021-11-12 19:35 - 2021-11-12 19:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2021-11-12 19:33 - 2021-12-01 15:54 - 000852752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000544096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000538992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000368152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000317680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000251928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000222128 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000185216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000107848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000099352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000082912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000041352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000035720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-11-12 19:33 - 2021-12-01 15:54 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-11-12 19:33 - 2021-12-01 14:27 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-11-12 19:33 - 2021-11-12 19:32 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2021-11-12 19:32 - 2021-11-12 19:32 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-11-12 19:31 - 2021-11-12 19:31 - 000000000 ____D C:\Program Files\Avast Software
2021-11-12 19:30 - 2021-12-01 15:56 - 000000000 ____D C:\ProgramData\Avast Software
2021-11-12 19:30 - 2021-12-01 15:40 - 000000000 ____D C:\Users\HP\AppData\Local\JDownloader 2.0
2021-11-05 18:10 - 2021-12-01 15:46 - 000002108 _____ C:\Users\HP\Desktop\WhatsApp.lnk
2021-11-02 16:51 - 2021-11-04 11:13 - 000000000 ____D C:\Users\HP\Documents\Alza.sk-Dražba

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-01 16:52 - 2019-10-25 16:12 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-01 16:47 - 2010-11-21 10:27 - 000668792 _____ C:\Windows\system32\perfh005.dat
2021-12-01 16:47 - 2010-11-21 10:27 - 000141420 _____ C:\Windows\system32\perfc005.dat
2021-12-01 16:47 - 2009-07-14 06:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-01 16:47 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-12-01 16:37 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2021-12-01 16:37 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2021-12-01 16:03 - 2009-07-14 05:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-12-01 16:03 - 2009-07-14 05:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-12-01 15:56 - 2020-09-14 20:12 - 000000000 ____D C:\Users\HP\AppData\Roaming\Messenger for Desktop
2021-12-01 15:56 - 2019-10-24 15:07 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2021-12-01 15:56 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-01 15:55 - 2020-02-26 09:48 - 000000000 ____D C:\Users\HP\AppData\Roaming\WhatsApp
2021-12-01 15:46 - 2020-02-26 09:48 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-12-01 15:46 - 2020-02-26 09:48 - 000000000 ____D C:\Users\HP\AppData\Local\SquirrelTemp
2021-12-01 14:45 - 2021-05-03 18:42 - 000002934 _____ C:\Windows\system32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D}
2021-12-01 14:45 - 2020-06-30 13:52 - 000003484 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-01 14:45 - 2020-06-30 13:52 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-01 14:45 - 2020-02-26 09:48 - 000004244 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582706894
2021-12-01 14:45 - 2020-02-26 09:48 - 000004016 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1582706894
2021-12-01 14:45 - 2019-11-17 13:10 - 000003210 _____ C:\Windows\system32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B}
2021-12-01 14:45 - 2019-11-16 20:55 - 000003124 _____ C:\Windows\system32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2}
2021-12-01 14:45 - 2019-11-02 10:12 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-12-01 14:45 - 2019-10-25 16:12 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-01 14:45 - 2019-10-25 16:12 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-11-29 09:39 - 2019-11-18 20:32 - 000010752 _____ C:\Users\HP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-11-29 09:10 - 2020-12-30 20:55 - 000000000 ____D C:\Users\HP\Documents\Přihlasovací údaje
2021-11-29 08:43 - 2019-11-04 19:24 - 000000000 ____D C:\Users\HP\AppData\Roaming\ViberPC
2021-11-29 08:42 - 2019-10-24 14:52 - 000001393 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2021-11-22 14:20 - 2019-11-04 19:24 - 000000000 ____D C:\Users\HP\Documents\ViberDownloads
2021-11-21 18:30 - 2021-10-04 18:26 - 000000000 ____D C:\Users\HP\AppData\Local\Lavasoft
2021-11-21 18:30 - 2021-10-04 18:25 - 000000000 ____D C:\ProgramData\Lavasoft
2021-11-17 23:35 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2021-11-16 07:27 - 2019-10-25 16:14 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-16 07:27 - 2019-10-25 16:14 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-12 17:50 - 2020-11-12 17:04 - 000000000 ____D C:\Users\HP\Documents\Doktor
2021-11-11 05:01 - 2019-10-25 15:14 - 000000000 ____D C:\Windows\system32\MRT
2021-11-11 04:58 - 2019-10-25 15:14 - 141529560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-11-03 03:31 - 2019-11-01 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-11-01 11:59 - 2019-11-02 09:40 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc

==================== Files in the root of some directories ========

2019-11-18 20:32 - 2021-11-29 09:39 - 000010752 _____ () C:\Users\HP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-11-17 08:20
==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-12-2021
Ran by HP (01-12-2021 17:28:26)
Running from C:\Users\HP\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X64) (2019-10-24 13:51:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-671632164-325227383-1259036689-500 - Administrator - Disabled)
Guest (S-1-5-21-671632164-325227383-1259036689-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-671632164-325227383-1259036689-1002 - Limited - Enabled)
HP (S-1-5-21-671632164-325227383-1259036689-1000 - Administrator - Enabled) => C:\Users\HP

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Disabled - Out of date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Out of date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.21.5 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.10.2498 - Avast Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite DCP-195C (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7035 - CDBurnerXP)
GL USB2.0 UVC Camera Device (HKLM-x32\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 1.0.0.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC)
HP 3D DriveGuard (HKLM\...\{EE6D6D5E-539C-44B6-BEF0-AA7C20DE170B}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Hotkey Support (HKLM-x32\...\{963F09EA-0B0A-4CFC-B04F-AD9B6614794C}) (Version: 6.2.39.1 - HP)
HP Webcam HD 2300 Software (HKLM-x32\...\{74E6771A-47B5-433E-A96F-15E29F70F920}) (Version: 1.00.0000 - Hewlett-Packard)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
iTunes (HKLM\...\{24F63AF4-683F-4952-A586-7FFB990F7A14}) (Version: 12.10.11.2 - Apple Inc.)
Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
KONICA MINOLTA PagePro 1300W (HKLM\...\KONICA MINOLTA PagePro 1300W) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{E8266049-8C7B-4A09-9E11-8BD100E0076A}) (Version: 8.0.1.2379 - GenesysLogic)
Messenger for Desktop (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\{4e2a4302-5df4-5868-a685-36c844414384}) (Version: 3.1.0 - MFD LABS LTD)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
MP3 Skype recorder v.6 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\MP3SkypeRecorder) (Version: 6.1.5 - Domit LTD)
Nero Core (HKLM-x32\...\{EF1C9DB5-D928-4F38-89DE-B1BB8911462E}) (Version: 1.0.01700 - Nero AG)
Odinstalace tiskárny EPSON Stylus SX200 Series (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
OpenOffice 4.1.6 (HKLM-x32\...\{8DADDDBF-EB36-4D00-9291-8C281F1755A6}) (Version: 4.16.9790 - Apache Software Foundation)
Opera Stable 77.0.4054.277 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 77.0.4054.277) (Version: 77.0.4054.277 - Opera Software)
Opera Stable 81.0.4196.60 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 81.0.4196.60) (Version: 81.0.4196.60 - Opera Software)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Revo Uninstaller Pro 4.2.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.2.1 - VS Revo Group, Ltd.)
Skype verze 8.78 (HKLM-x32\...\Skype_is1) (Version: 8.78 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Viber (HKLM-x32\...\{A91FC964-07DF-4856-99FA-FDF33DE9D16C}) (Version: 11.8.0.60 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\{a388723b-b292-4b27-987e-dd5cee72be11}) (Version: 11.8.0.60 - Viber Media S.a.r.l)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Web Companion (HKLM-x32\...\{3e2e5911-50d0-4343-97af-3616d4565f3d}) (Version: 8.9.0.371 - Lavasoft)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.648 - McAfee, LLC)
WhatsApp (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\WhatsApp) (Version: 2.2144.11 - WhatsApp)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-671632164-325227383-1259036689-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-01] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2021-12-01 15:56 - 2021-12-01 15:56 - 000178176 _____ () [File not signed] \\?\C:\Users\HP\AppData\Local\Temp\7e639243-0be4-42ec-9971-8a8eee809449.tmp.node
2021-12-01 15:56 - 2021-12-01 15:56 - 000096768 _____ () [File not signed] \\?\C:\Users\HP\AppData\Local\Temp\d913ee52-8adb-4c1e-9142-7125eafd6433.tmp.node
2019-11-23 19:27 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-11-23 19:27 - 2012-06-05 15:59 - 000025299 ____R (Brother Industries, Ltd) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\brlm03a.dll
2019-11-23 19:27 - 2008-11-26 10:25 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrFirmUpdateCheck.dll
2019-11-23 19:27 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\brlmw03a.dll
2019-11-23 19:27 - 2011-04-11 12:53 - 000163840 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BRMFCWNDCze.dll
2019-11-23 19:27 - 2010-03-29 05:32 - 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brcccze.dll
2019-11-23 19:27 - 2010-03-10 18:16 - 000770048 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2019-11-23 19:27 - 2012-10-09 15:30 - 000372736 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2019-11-23 19:27 - 2009-09-28 13:38 - 005390336 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2019-10-24 15:10 - 2012-10-24 17:12 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000058368 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MIMF64_N.dll
2011-06-14 17:13 - 2011-03-29 14:05 - 000115200 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MLMN64_N.DLL
2011-06-14 17:13 - 2011-03-04 10:13 - 000115712 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MSPO64_N.dll
2011-06-14 17:13 - 2011-05-05 16:21 - 001629696 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\mstm64_n.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000050176 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MTAG64_N.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000056832 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\MIPR64_N.DLL
2019-11-23 19:27 - 2003-06-30 00:00 - 000259584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2019-11-23 19:27 - 2005-07-05 00:00 - 000131584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2019-11-23 19:27 - 2003-06-30 00:00 - 000406016 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\MSVCP140.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\ucrtbase.DLL
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\VCRUNTIME140.dll
2021-11-30 08:16 - 2021-11-30 08:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\Avast Software\Avast\defs\21113000\avast.local_vc142.crt\VCRUNTIME140_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-671632164-325227383-1259036689-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src ... ORM=IESR02
SearchScopes: HKU\S-1-5-21-671632164-325227383-1259036689-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src ... ORM=IESR02
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-11-10] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-11-10] (McAfee, LLC -> McAfee, LLC)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-671632164-325227383-1259036689-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{D3A894DB-018F-47AB-A7C2-3903E9CF0833}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{88168338-C954-404E-BB82-3249649A9FCA}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{3EE278F6-EB1F-48FE-8AD2-B09BC567F37C}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{C6C48C4E-878F-4313-A843-4BC26E5D3686}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{0506BDDE-950B-4071-8982-D576CD01DBFE}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{ADEE4E27-A9C6-4225-B4B2-F27208325616}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{53C60C09-143F-4D24-B4C2-07E74F83B6D9}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{1243158D-51B7-48E8-A2F3-A2CC5EA1164A}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{7D9607B0-3619-41A1-A64A-3A04B251023B}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{0AFAFCFC-5327-4165-AF59-879F2BF87728}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{C2E3B327-1F9C-4F64-B17D-58756F88A653}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{F6C2A46D-805E-430D-8DAA-BB54C7B2FD47}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{BA18EF4A-7439-4F34-A70C-190F03DB4C7D}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [UDP Query User{D435E0CE-1927-449A-AA1A-A23FC257E650}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{DDACAD40-F36E-4284-8508-C04A21629D87}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [UDP Query User{FB661B80-E433-488E-9092-9A79D77F1156}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [TCP Query User{2D8E8AF6-B8AD-4387-9282-9F18ED279EE9}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{52C72881-1CED-4F94-AA1B-4AE07D2590E1}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{8C645C3A-5160-41C3-9790-C7EB84B580F4}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E8508B6B-5A8D-4246-B3C6-96D56124124F}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{51B10772-9FE0-4FF7-B597-00EB9C7D7C26}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E756117C-E1F5-4925-8D4F-1219A35F7C65}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [{9B9BC33E-559F-49C0-83A5-ED25D5E1778F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E0745099-D81D-408F-983F-46230853AC68}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5356089F-E214-4EBF-B85A-09747D0A355A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E3C4D874-8FC6-4602-B74D-6CBD979BC104}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{09EF6E82-E2BC-4415-9537-3C238E48232C}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{080AE790-A2DD-4CE6-AD4D-41F9C1DF7072}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\77.0.4054.203\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{127CEB25-EC3E-435A-9514-61E32C23430D}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\80.0.4170.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{4D10D5CD-ABDA-4E32-B1E9-34E05784C787}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{65E57989-E339-4AEB-A56A-11F510B0FFB9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{C5DD63B1-53E5-4D1D-A797-FC0076EB420F}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{48EF909E-E9D1-4A4D-85B9-B5EF55303495}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [TCP Query User{F933C2D6-C751-4628-A609-0DD57C2870FA}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe
FirewallRules: [UDP Query User{68DA4FD1-6624-4C75-8517-75F8F76E9E0E}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe
FirewallRules: [{0A64DEB8-16C1-4218-AB0E-1C04416345BB}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4C9E4063-C2EF-423E-9D02-4D6FAF0E66EF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{15B8DD00-CD91-465D-B834-144A7F6ABC38}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{12CEE2B7-FA79-4060-AF32-B1AB2486C61D}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\81.0.4196.60\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{0E53C37C-77AD-403E-ABF7-39D0A7935384}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{80BD885D-4D5C-40EC-AF47-2172C2FC1916}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

20-11-2021 08:53:55 Windows Update
29-11-2021 08:45:25 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/01/2021 03:56:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/01/2021 03:42:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/01/2021 01:31:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4934203

Error: (12/01/2021 01:31:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4934203

Error: (12/01/2021 01:31:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/01/2021 09:58:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5460191

Error: (12/01/2021 09:58:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5460191

Error: (12/01/2021 09:58:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (12/01/2021 05:31:11 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/01/2021 03:56:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_Q neuspěla při spuštění v důsledku následující chyby:
MLPTDR_Q není platná aplikace typu Win32.

Error: (12/01/2021 03:56:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_N neuspěla při spuštění v důsledku následující chyby:
MLPTDR_N není platná aplikace typu Win32.

Error: (12/01/2021 03:42:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_Q neuspěla při spuštění v důsledku následující chyby:
MLPTDR_Q není platná aplikace typu Win32.

Error: (12/01/2021 03:42:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_N neuspěla při spuštění v důsledku následující chyby:
MLPTDR_N není platná aplikace typu Win32.

Error: (12/01/2021 03:41:31 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/01/2021 07:08:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_Q neuspěla při spuštění v důsledku následující chyby:
MLPTDR_Q není platná aplikace typu Win32.

Error: (12/01/2021 07:08:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MLPTDR_N neuspěla při spuštění v důsledku následující chyby:
MLPTDR_N není platná aplikace typu Win32.


Windows Defender:
================Event[0]:

Date: 2019-11-02 08:36:10.699
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-11-01 12:33:34.092
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-31 14:41:50.684
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-29 12:02:31.399
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-27 06:50:55.213
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68ICF Ver. F.32 12/05/2012
Motherboard: Hewlett-Packard 17A7
Processor: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz
Percentage of memory in use: 59%
Total physical RAM: 8055.55 MB
Available physical RAM: 3263.38 MB
Total Virtual: 16109.25 MB
Available Virtual: 9950.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:58.58 GB) NTFS

\\?\Volume{2723956c-f665-11e9-9394-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: F1D3BAFD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Поиск.PNG (4.79 KiB) Zobrazeno 783 x

[Rudy]

Zdravím!
Zajímavý problém. Zkusíme prohlížeč vyčistit. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe , https://www.edisk.cz/stahni/21334/zoek.rar_1.3MB.html/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin

;






Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

[rakato11]

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by HP on źt 02.12.2021 at 0:32:56,36.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\HP\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2.12.2021 0:34:09 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\HP\AppData\Roaming\Hewlett-Packard deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\HP\AppData\Roaming\WhatsApp deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\HP\AppData\Local\Lavasoft\WebCompanion.exe_Url_siq0lwf3tzgxp2khfkllybk3idtbehng deleted
C:\Users\HP\AppData\Local\TB_development_&_investme deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Lavasoft\WebCompanion.exe_Url_siq0lwf3tzgxp2khfkllybk3idtbehng deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lavasoft\WebCompanion deleted
C:\END deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cookies" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cookies-journal" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\lockfile" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cache\data_0" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cache\data_1" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cache\data_2" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cache\data_3" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cache\index" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Dictionaries\cs-CZ-3-0.bdic" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\GPUCache\data_0" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\GPUCache\data_1" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\GPUCache\data_2" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\GPUCache\data_3" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\GPUCache\index" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\000005.ldb" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\003127.ldb" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\003129.log" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\003130.ldb" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\LOCK" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\LOG" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\MANIFEST-000001" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\ICSharpCode.SharpZipLib.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Interop.LavasoftTcpServiceLib.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.AppCore.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.Events.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.Utils.SqlLite.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.Service.Logger.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WcfService.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\log4net.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\NCalc.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Newtonsoft.Json.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\System.Data.SQLite.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\WebCompanion.exe" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\en-US\WebCompanion.resources.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\x86\SQLite.Interop.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-file-l1-2-0.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-file-l2-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-localization-l1-2-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-processthreads-l1-1-1.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-synch-l1-2-0.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-timezone-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-convert-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-environment-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-filesystem-l1-1-0.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-heap-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-locale-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-math-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-runtime-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-stdio-l1-1-0.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-string-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-time-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-utility-l1-1-0.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\bddcihttp.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\bddci_core.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\bittorrent.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\DCIService.exe" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\ftp.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\http.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\lsa.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\msvcp140.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\pop3.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\rpc.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\sav.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\smb.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\smtp.dll" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\ssl.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\ucrtbase.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\vcruntime140.dll" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\vcruntime140_1.dll" deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Options\cache.db" not deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Options\statistic.db" not deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Logs\WindowsService\WCAssistantServiceLog.log" not deleted
"C:\Users\HP\AppData\Local\Avast Software\Avast\datascan.json" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion" not deleted
"C:\PROGRA~3\Lavasoft\Web Companion" not deleted
"C:\Users\HP\AppData\Local\Avast Software" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cache" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Dictionaries" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\GPUCache" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage" not deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service" not deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\en-US" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Application\x86" deleted
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64" not deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Logs" not deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Options" not deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Logs\WindowsService" not deleted
"C:\Users\HP\AppData\Local\Avast Software\Avast" not deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi" [10.11.2021 08:07]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi" [10.11.2021 08:07]

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - No path found[]

Seznam doplněk - Email - HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Plná Peňaženka Líštička - HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbilggjmecggkclacdgebaielibaifdc
Video Downloader PLUS - HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng
Rich Hints Agent - HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk
Amazon Assistant Promotion - HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk

==== Chromium Startpages ======================

C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Preferences
dc":"19C58D6E111984B7558A2273384FF85B2EF34C9E968DA2F9DE2D4B7621B9A20D","kmendfapggjehodndflmmgagdbamhnfd":"E309B12BB30B4414EAD9C0C03A836534404972170FC2157A86FE32C0F313BD94","mfehgcgbbipciphmccgaenjidiccnmng":"9DE2F806D1F01D3F396D0CB4714D184FDD427809EF268BA16CC4BE46238C5B9F","mhjfbmdgcfjbbpaeojofohoefgiehjai":"D31B92135D55AC5F00A36DE4300EC1FA2A2603B34A12D129F87FB0014D6EE46B","neajdppkdcdipfabeoofebfddakdcjhd":"915BEB0AEA0C9AB08440BC5E657CE3EEB9DEC248EED0D789032C995DE8B72126","njgehaondchbmjmajphnhlojfnbfokng":"146775FFC68A3E66D22AE3D7D68295BCF9A8CCFB665A548921C33A853835B3A6","nkeimhogjdpnpccoofpliimaahmaaome":"A9867D0C02F9E8DE23DB8EE2305A13D2CA27AD1129A2F068282148E18B1BFD37","nmmhkkegccagdldgiimedpiccmgmieda":"8C799F1531775587900D4D20AE7E5C55F21C7A58362A3527442EDC45067320AF","pjkljhegncpnkpknbcohdijeoejaedia":"5E8A5F221CF0AD876C17F3915255B54FDE3D9D4CD72D7CF535AAE6C5D9C6A371"}},"google":{"services":{"account_id":"D07F17318C8D0BE3BC645A4C8F932510A8BE1A892468C7E117F8D7A527D6B921","last_account_id":"C15CB310778033AF1BFB016DC715A179A9AF877E5E7DCE7DF66DD77D30E222B0","last_username":"AA62926BA48C8738DD48248509FC37FFE5DEB1EE062B935DDC10ED7D0857B2AE","username":"2217ACA5B752D5A289A960B7C82EEEB46A775716B1B9C2F2B82D205721886D37"}},"homepage":"F3B9BEACC51A68EB6208D87F9C349B092FBFCD43549549A6A2AAB2F3AAF7DC93","homepage_is_newtabpage":"824955C45BA3D68FC4A2DAEC91998BD7A77C7D29D9FF26CD903F51AD0D78764B","media":{"cdm":{"origin_data":"AE60D3F3100F050587D074B4CD0C119631014891B6E0CEC1FF3C9294F39AB343","origins":"65B00F91B9B72A79D612884526A81784556B6C5CABEC0E9E3C3127646BF2C344"},"storage_id_salt":"8E7FB5AAB5312B7F1E06051E8F9B6D88E3DF00A2EBED0958511E874A319E758D"},"module_blocklist_cache_md5_digest":"15AD2773A52BF8C6C83B5EF5FFBA409C83BBB74B34CF74738B3C269DE52F771B","pinned_tabs":"3AB2D365AED75968711F00A4AB60AF8DCF3752EEEC7CFC31EF252CED51FC7D7F","prefs":{"preference_reset_time":"79A0B339410FE5586139CFAAAA619CA78A07B07913FE7092EAD85FA2E19EF521"},"safebrowsing":{"incidents_sent":"D274BE0262B1DEB430317A7B2A5C95BE180347241766B7E1820CF72F09D74575"},"search_provider_overrides":"A5A20DD9221904ED43B34965A8DBE21C9F266C78EF54B21187702972A71ED0C6","session":{"restore_on_startup":"0928E2EE2744B5EC83A3F286924D567CB5D7FC341D94FFD11469781745DF2A01","startup_urls":"D7406DEE3FED56E84B8208DAEAA46DFC190AD4E1B2F1DBCD41607769851673D6"},"settings_reset_prompt":{"last_triggered_for_default_search":"57B014DFD79DCEB595DA5297AEC0B082EC8C85AF0361F90F8D91BE50B47F61A8","last_triggered_for_homepage":"C4F79EC17136627A3406C06748EA7899920C11AA06930A9BCDAEAD077DE9FC00","last_triggered_for_startup_urls":"19681AD5204B88C35A46AB3FD44BEE941E9EC6FB835CF4B7710BE327A7485667","prompt_wave":"055FD11D2299A3A39EA05FFC967412993E6D5FCCF1DD88DE4E198B48CAF5F104"},"software_reporter":{"prompt_seed":"04E448DB0AF7C754B184EAE461F90AC5FA46E95872FB3F0A150827EB58E333EF","prompt_version":"CF58DA35DAF26511A05A6705CE53C9F83FEB6F442C896CA39473E2DE27809F84","reporting":"91AE62F0A891DDD55856224AB5BE171D364EF9FCAAEB449197CECF0D582F3E81"}},"super_mac":"E1ED9E819F72968B0C5DED572CD3BE60E74E304955B7C5B29D01190FD10E0DA4"},"session":{"restore_on_startup":4,"startup_urls":["https://poshukach.com?fr=ps&gp=496723&altserp=1"]}}


==== Chromium Fix ======================

C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Preferences_backup was reset successfully
C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences_backup was reset successfully
C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Preferences.backup was reset successfully
C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Secure Preferences was reset successfully
C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Secure Preferences.backup was reset successfully
C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully
C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal was reset successfully
C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3e2e5911-50d0-4343-97af-3616d4565f3d} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\HP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\HP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\HP\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot
C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=6221 folders=133 795374445 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\HP\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\HP\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cookies" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Cookies-journal" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\lockfile" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Dictionaries\cs-CZ-3-0.bdic" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\000005.ldb" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\003127.ldb" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\003129.log" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\003130.ldb" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\LOCK" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\LOG" not found
"C:\Users\HP\AppData\Roaming\Messenger for Desktop\Local Storage\leveldb\MANIFEST-000001" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WcfService.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-file-l2-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-localization-l1-2-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-core-timezone-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-convert-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-environment-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-heap-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-locale-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-math-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-runtime-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-string-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-time-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\api-ms-win-crt-utility-l1-1-0.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\smb.dll" not found
"C:\PROGRA~2\Lavasoft\Web Companion\Service\x64\smtp.dll" not found
"C:\PROGRA~3\Lavasoft\Web Companion\Options\cache.db" deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Options\statistic.db" deleted
"C:\PROGRA~3\Lavasoft\Web Companion\Logs\WindowsService\WCAssistantServiceLog.log" deleted
"C:\Users\HP\AppData\Local\Avast Software\Avast\datascan.json" not found
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted
"C:\Users\HP\AppData\Roaming\Messenger for Desktop" not found
"C:\PROGRA~2\Lavasoft\Web Companion" not found
"C:\PROGRA~3\Lavasoft\Web Companion" deleted
"C:\Users\HP\AppData\Local\Avast Software" not found
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\njgehaondchbmjmajphnhlojfnbfokng" deleted

==== EOF on źt 02.12.2021 at 0:46:57,80 ======================

[rakato11]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Professional x64
Ran by HP (Administrator) on źt 02.12.2021 at 0:57:52,37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgjpfhpjcgdppjbgnpnjllokbmcdllig (Folder)
Successfully deleted: C:\Users\HP\AppData\Roaming\lavasoft\web companion (Folder)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 02.12.2021 at 0:59:37,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Rudy]

OK. Nastala nějaká změna?

[rakato11]

Ano, nastala. Prohlížeč Google Chrome se už otevírá tak jako má a notebook se zdá že je živější takže to určitě pomohlo. Akorát se mi v prohlížeči na levé straně nahoře na liště vytratila ikonka "domečku" pro navrácení na domovskou stránku a na pravé straně jsem zase měl nainstalováno upozornění na příchozí e-maily v seznam.cz ale to je v podstatě tím pročistěním. Potřeboval bych je tam dát nazpět neboť jsem na to zvyklý ale nějak na to nemohu přijít jak je tam nazpět nainstalovat, asi s tím budu potřebovat pomoci.
Každopádně děkuji moc za pomoc, sám bych toto neopravil.

[Rudy]

Zkuste to podle tohoto návodu: https://support.google.com/websearch/an ... 5696?hl=cs . Chrome nepoužívám, proto zpaměti nevím.

[rakato11]

Když jsem odeslal tu předchozí odpověď tak mi to nedalo a pokusil jsem se o nainstalování doplňků sám a světe div se, povedlo se mi to.
Mockrát Vám děkuji za Vaší pomoc.

[Rudy]

OK a nemáte zač!