VIRY.CZ

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by Uživatel (25-12-2020 14:17:32)
Running from C:\Users\Uživatel\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2016-04-18 17:02:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3484434093-1762594279-2416588269-500 - Administrator - Disabled)
Guest (S-1-5-21-3484434093-1762594279-2416588269-501 - Limited - Disabled)
Uživatel (S-1-5-21-3484434093-1762594279-2416588269-1000 - Administrator - Enabled) => C:\Users\Uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 86.1.6960.198 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
Google Chrome (HKLM\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mouse Suite (HKLM\...\MouseSuite98) (Version: - )
Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype verze 8.67 (HKLM\...\Skype_is1) (Version: 8.67 - Skype Technologies S.A.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2020
Ran by Uživatel (administrator) on LENOVO_M70E (LENOVO 0830R46) (25-12-2020 14:12:49)
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.) C:\Windows\System32\ico.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Mouse Suite 98 Daemon] => C:\Windows\system32\ICO.EXE [57344 2004-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104552 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [91016568 2020-12-02] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Windows NT x86\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\W32X86\hpzppw71.dll [280064 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\Windows\system32\hpzllw71.dll [39936 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\86.1.6960.198\Installer\chrmstp.exe [2020-11-23] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-02] (Google LLC -> Google LLC)
SubSystems: [Windows] => "%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {049C21FC-C2A1-4E56-B400-BD7F4DDA5A16} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4049512 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
Task: {1320D8C6-F12D-433D-BB2C-7916A39248B8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1933408 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {1D1ACFD2-C492-488B-BDF6-B8D0362FBB9B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {21191D9C-2B7F-4F4C-9E37-1A8EC7476EBB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2F7EBCF0-3DEC-4C38-AE58-D3AAAE828B93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {3F85747A-2D2E-4164-9BBE-5C66BCDE763A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {4003B08B-A0DD-4A74-B626-0383591DD450} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {521B052B-7CE1-48A2-85E6-9C7DBA73ED85} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [293376 2010-02-11] (Microsoft Corporation) [File not signed]
Task: {58B22E1C-5B58-45AA-8ED6-A1ECDF569D74} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1933408 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {875357CD-9507-4855-9DD8-D6350D35DFA7} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {AA7BB07F-E2C5-407D-84F5-073E07433672} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358b920-0ac7-461f-98f4-58e32cd89148}
Task: {ABAD304D-8515-4712-99CE-036F6EDE9DF2} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {B2A83C5C-6820-4B29-B87D-FE7A85BF7AA0} - System32\Tasks\{A95AC2B5-3469-473A-9186-125DF609FD0D} => C:\Windows\system32\pcalua.exe -a C:\Users\Uživatel\Downloads\outlook-express-ms-windows-mail.exe -d C:\Users\Uživatel\Downloads
Task: {BE4464BA-32E2-4DC2-8D0F-D59447513E69} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB434A15-5AC2-43CD-B625-EA639896F53F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1499240 2020-09-17] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8
Tcpip\..\Interfaces\{AC74E8F2-6223-4CBD-AC4F-B29A82697137}: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8

FireFox:
========
FF DefaultProfile: ib2ee7y5.default
FF ProfilePath: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ib2ee7y5.default [2020-12-25]
FF Homepage: Mozilla\Firefox\Profiles\ib2ee7y5.default -> hxxps://www.seznam.cz/
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)

Chrome:
=======
CHR Profile: C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default [2020-12-25]
CHR Notifications: Default -> hxxps://bloglife24.com; hxxps://ceskaplaneta.net; hxxps://chomutovsky.denik.cz; hxxps://cs-cz.facebook.com; hxxps://cz.jobtome.com; hxxps://czapujcka.cz; hxxps://czech1.freshfingers.pro; hxxps://energymastery.cz; hxxps://enigmaplus.cz; hxxps://i-health-beauty.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://mocvedomi.cz; hxxps://moneymag.cz; hxxps://morezprav.cz; hxxps://naseljsemto.cz; hxxps://pornogay.cz; hxxps://svetkreativity.cz; hxxps://upcr.cz; hxxps://vite.press; hxxps://www.4camping.cz; hxxps://www.apetitonline.cz; hxxps://www.denik.cz; hxxps://www.dobre-knihy.cz; hxxps://www.dotyk.cz; hxxps://www.firstclass.cz; hxxps://www.jimejinak.cz; hxxps://www.knihcentrum.cz; hxxps://www.krajskelisty.cz; hxxps://www.lui.cz; hxxps://www.mall.tv; hxxps://www.megaknihy.cz; hxxps://www.milujeme-slevy.cz; hxxps://www.novinky.cz; hxxps://www.online-poradna-zdarma.cz; hxxps://www.penize.cz; hxxps://www.reflex.cz; hxxps://www.robeeto.com; hxxps://www.seznam.cz; hxxps://www.soscredit.cz; hxxps://www.spojujenasjoga.cz; hxxps://www.vylectese.cz; hxxps://www.zdravestravovani.eu
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR NewTab: Default -> Not-active:"chrome-extension://ejcieceajmcidhcdkgpoihiieceambch/tab/index.html", Not-active:"chrome-extension://ceopoaldcnmhechacafgagdkklcogkgd/product.html"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-20]
CHR Extension: (OnlineMapFinder) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceopoaldcnmhechacafgagdkklcogkgd [2020-06-13]
CHR Extension: (Recepty) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejcieceajmcidhcdkgpoihiieceambch [2018-01-11]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-10]
CHR Extension: (Tabulky) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (AVG SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-07-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7551384 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2814056 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\86.1.6960.198\elevation_service.exe [1136920 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [102912 2016-03-31] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35040 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [175776 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [283728 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [204880 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [90184 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40736 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [149248 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [377312 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-04-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [94192 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72840 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691064 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [395536 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [162800 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277448 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [14848 2012-08-23] (Microsoft Corporation) [File not signed]
R3 usbcamcl; C:\Windows\System32\DRIVERS\usbcamcl.sys [28416 2011-08-18] (Microsoft Windows Hardware Compatibility Publisher -> usb camera)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-25 14:10 - 2020-12-25 14:12 - 000021133 _____ C:\Users\Uživatel\Desktop\Addition.txt
2020-12-25 14:08 - 2020-12-25 14:16 - 000016458 _____ C:\Users\Uživatel\Desktop\FRST.txt
2020-12-25 14:07 - 2020-12-25 14:08 - 002000384 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST (1).exe
2020-12-25 13:55 - 2020-12-25 13:55 - 000002170 _____ C:\Users\Uživatel\Desktop\Google Chrome.lnk
2020-12-25 13:46 - 2020-12-25 13:47 - 030536752 _____ (Piriform Software Ltd) C:\Users\Uživatel\Downloads\ccsetup575.exe
2020-12-24 10:14 - 2020-12-24 10:14 - 002008063 _____ C:\Users\Uživatel\Downloads\prilohy_21152.zip
2020-12-08 20:44 - 2020-12-08 20:44 - 005659192 _____ (Adobe) C:\Windows\system32\FlashPlayerInstaller.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-25 14:13 - 2019-01-09 16:17 - 000000000 ____D C:\FRST
2020-12-25 14:03 - 2009-07-14 05:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-12-25 14:03 - 2009-07-14 05:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-12-25 14:02 - 2019-01-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-12-25 14:02 - 2017-03-15 19:53 - 000001268 _____ C:\Users\Public\Desktop\Skype.lnk
2020-12-25 14:02 - 2017-03-15 19:53 - 000001268 _____ C:\ProgramData\Desktop\Skype.lnk
2020-12-25 13:52 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2020-12-25 13:51 - 2020-05-13 09:07 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-12-25 13:51 - 2020-05-13 09:07 - 000000969 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-12-25 13:51 - 2019-01-09 13:37 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-12-25 13:51 - 2019-01-09 13:37 - 000000000 ____D C:\Program Files\CCleaner
2020-12-25 13:51 - 2018-02-11 22:34 - 000000000 ____D C:\temp
2020-12-25 13:44 - 2016-04-21 14:08 - 000000000 ____D C:\ProgramData\AVAST Software
2020-12-25 13:08 - 2018-04-05 11:45 - 000000000 ____D C:\Users\Uživatel\AppData\Local\AVAST Software
2020-12-25 13:06 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-25 00:37 - 2019-01-09 13:37 - 000002820 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-12-25 00:37 - 2016-11-06 18:51 - 000003374 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-25 00:37 - 2016-11-06 18:50 - 000003246 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-25 00:37 - 2016-04-21 14:11 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-12-25 00:37 - 2016-04-20 17:37 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-12-25 00:37 - 2016-04-20 17:27 - 000003194 _____ C:\Windows\system32\Tasks\{A95AC2B5-3469-473A-9186-125DF609FD0D}
2020-12-25 00:37 - 2014-07-23 08:18 - 000003548 _____ C:\Windows\system32\Tasks\CreateChoiceProcessTask
2020-12-24 23:18 - 2017-03-16 10:54 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-08 20:44 - 2016-04-20 17:37 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2020-12-08 20:44 - 2016-04-20 17:37 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2020-12-08 20:44 - 2016-04-20 17:37 - 000000000 ____D C:\Windows\system32\Macromed
2020-12-02 22:06 - 2016-11-06 18:51 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories ========

2017-10-31 17:05 - 2017-10-31 17:05 - 000000036 _____ () C:\Users\Uživatel\AppData\Local\housecall.guid.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

Zdravím!
Log Addition není kompletní a log FRST chybí zcela.

Snad teď

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2020
Ran by Uživatel (administrator) on LENOVO_M70E (LENOVO 0830R46) (25-12-2020 14:12:49)
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.) C:\Windows\System32\ico.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Mouse Suite 98 Daemon] => C:\Windows\system32\ICO.EXE [57344 2004-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104552 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [91016568 2020-12-02] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Windows NT x86\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\W32X86\hpzppw71.dll [280064 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\Windows\system32\hpzllw71.dll [39936 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\86.1.6960.198\Installer\chrmstp.exe [2020-11-23] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-02] (Google LLC -> Google LLC)
SubSystems: [Windows] => "%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {049C21FC-C2A1-4E56-B400-BD7F4DDA5A16} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4049512 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
Task: {1320D8C6-F12D-433D-BB2C-7916A39248B8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1933408 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {1D1ACFD2-C492-488B-BDF6-B8D0362FBB9B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {21191D9C-2B7F-4F4C-9E37-1A8EC7476EBB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2F7EBCF0-3DEC-4C38-AE58-D3AAAE828B93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {3F85747A-2D2E-4164-9BBE-5C66BCDE763A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {4003B08B-A0DD-4A74-B626-0383591DD450} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {521B052B-7CE1-48A2-85E6-9C7DBA73ED85} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [293376 2010-02-11] (Microsoft Corporation) [File not signed]
Task: {58B22E1C-5B58-45AA-8ED6-A1ECDF569D74} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1933408 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {875357CD-9507-4855-9DD8-D6350D35DFA7} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {AA7BB07F-E2C5-407D-84F5-073E07433672} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358b920-0ac7-461f-98f4-58e32cd89148}
Task: {ABAD304D-8515-4712-99CE-036F6EDE9DF2} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {B2A83C5C-6820-4B29-B87D-FE7A85BF7AA0} - System32\Tasks\{A95AC2B5-3469-473A-9186-125DF609FD0D} => C:\Windows\system32\pcalua.exe -a C:\Users\Uživatel\Downloads\outlook-express-ms-windows-mail.exe -d C:\Users\Uživatel\Downloads
Task: {BE4464BA-32E2-4DC2-8D0F-D59447513E69} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB434A15-5AC2-43CD-B625-EA639896F53F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1499240 2020-09-17] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8
Tcpip\..\Interfaces\{AC74E8F2-6223-4CBD-AC4F-B29A82697137}: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8

FireFox:
========
FF DefaultProfile: ib2ee7y5.default
FF ProfilePath: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ib2ee7y5.default [2020-12-25]
FF Homepage: Mozilla\Firefox\Profiles\ib2ee7y5.default -> hxxps://www.seznam.cz/
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)

Chrome:
=======
CHR Profile: C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default [2020-12-25]
CHR Notifications: Default -> hxxps://bloglife24.com; hxxps://ceskaplaneta.net; hxxps://chomutovsky.denik.cz; hxxps://cs-cz.facebook.com; hxxps://cz.jobtome.com; hxxps://czapujcka.cz; hxxps://czech1.freshfingers.pro; hxxps://energymastery.cz; hxxps://enigmaplus.cz; hxxps://i-health-beauty.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://mocvedomi.cz; hxxps://moneymag.cz; hxxps://morezprav.cz; hxxps://naseljsemto.cz; hxxps://pornogay.cz; hxxps://svetkreativity.cz; hxxps://upcr.cz; hxxps://vite.press; hxxps://www.4camping.cz; hxxps://www.apetitonline.cz; hxxps://www.denik.cz; hxxps://www.dobre-knihy.cz; hxxps://www.dotyk.cz; hxxps://www.firstclass.cz; hxxps://www.jimejinak.cz; hxxps://www.knihcentrum.cz; hxxps://www.krajskelisty.cz; hxxps://www.lui.cz; hxxps://www.mall.tv; hxxps://www.megaknihy.cz; hxxps://www.milujeme-slevy.cz; hxxps://www.novinky.cz; hxxps://www.online-poradna-zdarma.cz; hxxps://www.penize.cz; hxxps://www.reflex.cz; hxxps://www.robeeto.com; hxxps://www.seznam.cz; hxxps://www.soscredit.cz; hxxps://www.spojujenasjoga.cz; hxxps://www.vylectese.cz; hxxps://www.zdravestravovani.eu
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR NewTab: Default -> Not-active:"chrome-extension://ejcieceajmcidhcdkgpoihiieceambch/tab/index.html", Not-active:"chrome-extension://ceopoaldcnmhechacafgagdkklcogkgd/product.html"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-20]
CHR Extension: (OnlineMapFinder) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceopoaldcnmhechacafgagdkklcogkgd [2020-06-13]
CHR Extension: (Recepty) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejcieceajmcidhcdkgpoihiieceambch [2018-01-11]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-10]
CHR Extension: (Tabulky) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (AVG SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-07-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7551384 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2814056 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\86.1.6960.198\elevation_service.exe [1136920 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [102912 2016-03-31] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35040 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [175776 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [283728 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [204880 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [90184 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40736 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [149248 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [377312 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-04-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [94192 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72840 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691064 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [395536 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [162800 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277448 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [14848 2012-08-23] (Microsoft Corporation) [File not signed]
R3 usbcamcl; C:\Windows\System32\DRIVERS\usbcamcl.sys [28416 2011-08-18] (Microsoft Windows Hardware Compatibility Publisher -> usb camera)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-25 14:10 - 2020-12-25 14:12 - 000021133 _____ C:\Users\Uživatel\Desktop\Addition.txt
2020-12-25 14:08 - 2020-12-25 14:16 - 000016458 _____ C:\Users\Uživatel\Desktop\FRST.txt
2020-12-25 14:07 - 2020-12-25 14:08 - 002000384 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST (1).exe
2020-12-25 13:55 - 2020-12-25 13:55 - 000002170 _____ C:\Users\Uživatel\Desktop\Google Chrome.lnk
2020-12-25 13:46 - 2020-12-25 13:47 - 030536752 _____ (Piriform Software Ltd) C:\Users\Uživatel\Downloads\ccsetup575.exe
2020-12-24 10:14 - 2020-12-24 10:14 - 002008063 _____ C:\Users\Uživatel\Downloads\prilohy_21152.zip
2020-12-08 20:44 - 2020-12-08 20:44 - 005659192 _____ (Adobe) C:\Windows\system32\FlashPlayerInstaller.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-25 14:13 - 2019-01-09 16:17 - 000000000 ____D C:\FRST
2020-12-25 14:03 - 2009-07-14 05:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-12-25 14:03 - 2009-07-14 05:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-12-25 14:02 - 2019-01-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-12-25 14:02 - 2017-03-15 19:53 - 000001268 _____ C:\Users\Public\Desktop\Skype.lnk
2020-12-25 14:02 - 2017-03-15 19:53 - 000001268 _____ C:\ProgramData\Desktop\Skype.lnk
2020-12-25 13:52 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2020-12-25 13:51 - 2020-05-13 09:07 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-12-25 13:51 - 2020-05-13 09:07 - 000000969 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-12-25 13:51 - 2019-01-09 13:37 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-12-25 13:51 - 2019-01-09 13:37 - 000000000 ____D C:\Program Files\CCleaner
2020-12-25 13:51 - 2018-02-11 22:34 - 000000000 ____D C:\temp
2020-12-25 13:44 - 2016-04-21 14:08 - 000000000 ____D C:\ProgramData\AVAST Software
2020-12-25 13:08 - 2018-04-05 11:45 - 000000000 ____D C:\Users\Uživatel\AppData\Local\AVAST Software
2020-12-25 13:06 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-25 00:37 - 2019-01-09 13:37 - 000002820 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-12-25 00:37 - 2016-11-06 18:51 - 000003374 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-25 00:37 - 2016-11-06 18:50 - 000003246 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-25 00:37 - 2016-04-21 14:11 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-12-25 00:37 - 2016-04-20 17:37 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-12-25 00:37 - 2016-04-20 17:27 - 000003194 _____ C:\Windows\system32\Tasks\{A95AC2B5-3469-473A-9186-125DF609FD0D}
2020-12-25 00:37 - 2014-07-23 08:18 - 000003548 _____ C:\Windows\system32\Tasks\CreateChoiceProcessTask
2020-12-24 23:18 - 2017-03-16 10:54 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-08 20:44 - 2016-04-20 17:37 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2020-12-08 20:44 - 2016-04-20 17:37 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2020-12-08 20:44 - 2016-04-20 17:37 - 000000000 ____D C:\Windows\system32\Macromed
2020-12-02 22:06 - 2016-11-06 18:51 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories ========

2017-10-31 17:05 - 2017-10-31 17:05 - 000000036 _____ () C:\Users\Uživatel\AppData\Local\housecall.guid.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)



Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by Uživatel (25-12-2020 14:17:32)
Running from C:\Users\Uživatel\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2016-04-18 17:02:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3484434093-1762594279-2416588269-500 - Administrator - Disabled)
Guest (S-1-5-21-3484434093-1762594279-2416588269-501 - Limited - Disabled)
Uživatel (S-1-5-21-3484434093-1762594279-2416588269-1000 - Administrator - Enabled) => C:\Users\Uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 86.1.6960.198 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
Google Chrome (HKLM\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mouse Suite (HKLM\...\MouseSuite98) (Version: - )
Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype verze 8.67 (HKLM\...\Skype_is1) (Version: 8.67 - Skype Technologies S.A.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

Stále ne. Logy musí končit:

==================== End of Addition (FRST).txt =======================

Spusťte ale tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-12-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-25-2020
# Duration: 00:00:02
# OS: Windows 7 Home Premium
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

Deleted OnlineMapFinder - ceopoaldcnmhechacafgagdkklcogkgd

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1459 octets] - [25/12/2020 18:57:13]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Teď dejte nové kompletní logy FRST+Addition.

Udělal jsem nové, snad už ok

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by Uživatel (26-12-2020 10:32:39)
Running from C:\Users\Uživatel\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2016-04-18 17:02:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3484434093-1762594279-2416588269-500 - Administrator - Disabled)
Guest (S-1-5-21-3484434093-1762594279-2416588269-501 - Limited - Disabled)
Uživatel (S-1-5-21-3484434093-1762594279-2416588269-1000 - Administrator - Enabled) => C:\Users\Uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 86.1.6960.198 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
Google Chrome (HKLM\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mouse Suite (HKLM\...\MouseSuite98) (Version: - )
Skype Click to Call (HKLM\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype verze 8.67 (HKLM\...\Skype_is1) (Version: 8.67 - Skype Technologies S.A.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-07-14 11:26 - 2020-07-14 11:26 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\MSVCP140.dll
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\ucrtbase.DLL
2020-12-25 23:01 - 2020-12-25 23:01 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122504\avast.local_vc142.crt\VCRUNTIME140.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\MSVCP140.dll
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\ucrtbase.DLL
2020-12-26 10:18 - 2020-12-26 10:18 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20122600\avast.local_vc142.crt\VCRUNTIME140.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 9) (Whitelisted) ==========

HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> DefaultScope {4D1F41B3-9AED-4355-867F-86620D2B52A2} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453 ... -SearchBox
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {1FBBDBBE-88D0-4E64-B21E-4C22BD671AC6} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {4D1F41B3-9AED-4355-867F-86620D2B52A2} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453 ... -SearchBox
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {62E6DAB6-58BC-4F4C-B79A-7CD9772AB23F} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=Searchmodule_1
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2019-01-05 11:09 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 10.255.255.10 - 10.255.255.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1E67A092-24DF-462C-999D-74734398EB54}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DEF0B9D8-6B62-4E5D-84B7-37FE6932AB6F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{B0CC4B0C-1193-4FE8-82B8-4328C10805E1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{990AC06B-0B85-4FDF-B7DA-587695E1680A}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C28C01B-DF98-412F-8268-DC376A2DABF1}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B197EDF3-EBBA-469F-9D71-1095B4CBB127}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7136DE68-7ABF-4EDE-8238-FF84BC1463BF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7CF30A0A-AC87-4BDE-8D2F-D1FE1AA587C8}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0FBE908D-3347-4A8F-A1D5-C016996F83C9}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

04-12-2020 11:52:50 Naplánovaný kontrolní bod
25-12-2020 13:40:28 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/26/2020 10:16:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/25/2020 06:59:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/25/2020 06:36:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/25/2020 01:07:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/24/2020 11:16:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/24/2020 06:45:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/24/2020 04:09:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/24/2020 09:47:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (12/25/2020 06:57:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/24/2020 09:53:03 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avast) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/24/2020 09:53:03 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba 30000!s! Update (avast) bylo dosaženo časového limitu (30000 ms).

Error: (12/24/2020 09:53:04 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: Služba DCOM zjistila chybu %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. při pokusu o spuštění služby avast s argumenty /comsvc za účelem spuštění serveru:
{6D1FB6CD-9205-365A-907A-8AB76BC52400}

Error: (12/18/2020 02:51:56 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (12/09/2020 04:17:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avast) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/09/2020 04:17:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba 30000!s! Update (avast) bylo dosaženo časového limitu (30000 ms).

Error: (12/01/2020 01:07:24 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.


==================== Memory info ===========================

BIOS: LENOVO 90KT18AUS 02/03/2012
Motherboard: LENOVO To be filled by O.E.M.
Processor: Intel(R) Celeron(R) CPU E3300 @ 2.50GHz
Percentage of memory in use: 85%
Total physical RAM: 2013.24 MB
Available physical RAM: 298.56 MB
Total Virtual: 4026.48 MB
Available Virtual: 886.68 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.95 GB) (Free:120.84 GB) NTFS

\\?\Volume{62a56c7a-119c-11e4-9e5c-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================





Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2020
Ran by Uživatel (administrator) on LENOVO_M70E (LENOVO 0830R46) (26-12-2020 10:30:42)
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <21>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ehome\mcupdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.) C:\Windows\System32\ico.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Mouse Suite 98 Daemon] => C:\Windows\system32\ICO.EXE [57344 2004-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Primax Electronics Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104552 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [91016568 2020-12-02] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Windows NT x86\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\W32X86\hpzppw71.dll [280064 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\Windows\system32\hpzllw71.dll [39936 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\86.1.6960.198\Installer\chrmstp.exe [2020-11-23] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-02] (Google LLC -> Google LLC)
SubSystems: [Windows] => "%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {049C21FC-C2A1-4E56-B400-BD7F4DDA5A16} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4049512 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
Task: {1320D8C6-F12D-433D-BB2C-7916A39248B8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1933408 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {1D1ACFD2-C492-488B-BDF6-B8D0362FBB9B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {21191D9C-2B7F-4F4C-9E37-1A8EC7476EBB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2F7EBCF0-3DEC-4C38-AE58-D3AAAE828B93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {3F85747A-2D2E-4164-9BBE-5C66BCDE763A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {4003B08B-A0DD-4A74-B626-0383591DD450} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {521B052B-7CE1-48A2-85E6-9C7DBA73ED85} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [293376 2010-02-11] (Microsoft Corporation) [File not signed]
Task: {58B22E1C-5B58-45AA-8ED6-A1ECDF569D74} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1933408 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {875357CD-9507-4855-9DD8-D6350D35DFA7} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {AA7BB07F-E2C5-407D-84F5-073E07433672} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358b920-0ac7-461f-98f4-58e32cd89148}
Task: {ABAD304D-8515-4712-99CE-036F6EDE9DF2} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {B2A83C5C-6820-4B29-B87D-FE7A85BF7AA0} - System32\Tasks\{A95AC2B5-3469-473A-9186-125DF609FD0D} => C:\Windows\system32\pcalua.exe -a C:\Users\Uživatel\Downloads\outlook-express-ms-windows-mail.exe -d C:\Users\Uživatel\Downloads
Task: {BE4464BA-32E2-4DC2-8D0F-D59447513E69} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB434A15-5AC2-43CD-B625-EA639896F53F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1499240 2020-09-17] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8
Tcpip\..\Interfaces\{AC74E8F2-6223-4CBD-AC4F-B29A82697137}: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8

FireFox:
========
FF DefaultProfile: ib2ee7y5.default
FF ProfilePath: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\ib2ee7y5.default [2020-12-25]
FF Homepage: Mozilla\Firefox\Profiles\ib2ee7y5.default -> hxxps://www.seznam.cz/
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)

Chrome:
=======
CHR Profile: C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default [2020-12-26]
CHR Notifications: Default -> hxxps://bloglife24.com; hxxps://ceskaplaneta.net; hxxps://chomutovsky.denik.cz; hxxps://cs-cz.facebook.com; hxxps://cz.jobtome.com; hxxps://czapujcka.cz; hxxps://czech1.freshfingers.pro; hxxps://energymastery.cz; hxxps://enigmaplus.cz; hxxps://i-health-beauty.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://mocvedomi.cz; hxxps://moneymag.cz; hxxps://morezprav.cz; hxxps://naseljsemto.cz; hxxps://pornogay.cz; hxxps://svetkreativity.cz; hxxps://upcr.cz; hxxps://vite.press; hxxps://www.4camping.cz; hxxps://www.apetitonline.cz; hxxps://www.denik.cz; hxxps://www.dobre-knihy.cz; hxxps://www.dotyk.cz; hxxps://www.firstclass.cz; hxxps://www.jimejinak.cz; hxxps://www.knihcentrum.cz; hxxps://www.krajskelisty.cz; hxxps://www.lui.cz; hxxps://www.mall.tv; hxxps://www.megaknihy.cz; hxxps://www.milujeme-slevy.cz; hxxps://www.novinky.cz; hxxps://www.online-poradna-zdarma.cz; hxxps://www.penize.cz; hxxps://www.reflex.cz; hxxps://www.robeeto.com; hxxps://www.seznam.cz; hxxps://www.soscredit.cz; hxxps://www.spojujenasjoga.cz; hxxps://www.vylectese.cz; hxxps://www.zdravestravovani.eu
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR NewTab: Default -> Not-active:"chrome-extension://ejcieceajmcidhcdkgpoihiieceambch/tab/index.html"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-20]
CHR Extension: (Recepty) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejcieceajmcidhcdkgpoihiieceambch [2018-01-11]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-10]
CHR Extension: (Tabulky) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (AVG SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-07-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7551384 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2814056 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\86.1.6960.198\elevation_service.exe [1136920 2020-11-13] (Avast Software s.r.o. -> AVAST Software)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [102912 2016-03-31] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35040 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [175776 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [283728 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [204880 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [90184 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40736 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [149248 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [377312 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-04-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [94192 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72840 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691064 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [395536 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [162800 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277448 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [14848 2012-08-23] (Microsoft Corporation) [File not signed]
R3 usbcamcl; C:\Windows\System32\DRIVERS\usbcamcl.sys [28416 2011-08-18] (Microsoft Windows Hardware Compatibility Publisher -> usb camera)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-26 10:30 - 2020-12-26 10:32 - 000016587 _____ C:\Users\Uživatel\Desktop\FRST.txt
2020-12-26 10:29 - 2020-12-26 10:29 - 002000384 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST (1).exe
2020-12-25 18:55 - 2020-12-25 18:55 - 008447152 _____ (Malwarebytes) C:\Users\Uživatel\Desktop\adwcleaner_8.0.8.exe
2020-12-25 14:19 - 2020-12-25 14:19 - 000000000 ___HD C:\$AV_ASW
2020-12-25 13:55 - 2020-12-25 13:55 - 000002170 _____ C:\Users\Uživatel\Desktop\Google Chrome.lnk
2020-12-25 13:46 - 2020-12-25 13:47 - 030536752 _____ (Piriform Software Ltd) C:\Users\Uživatel\Downloads\ccsetup575.exe
2020-12-24 10:14 - 2020-12-24 10:14 - 002008063 _____ C:\Users\Uživatel\Downloads\prilohy_21152.zip
2020-12-08 20:44 - 2020-12-08 20:44 - 005659192 _____ (Adobe) C:\Windows\system32\FlashPlayerInstaller.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-26 10:31 - 2019-01-09 16:17 - 000000000 ____D C:\FRST
2020-12-26 10:25 - 2016-04-21 14:08 - 000000000 ____D C:\ProgramData\AVAST Software
2020-12-26 10:24 - 2009-07-14 05:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-12-26 10:24 - 2009-07-14 05:34 - 000021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-12-26 10:18 - 2019-01-09 13:37 - 000000000 ____D C:\Program Files\CCleaner
2020-12-26 10:18 - 2017-03-16 10:54 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-26 10:17 - 2018-04-05 11:45 - 000000000 ____D C:\Users\Uživatel\AppData\Local\AVAST Software
2020-12-26 10:15 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-26 00:23 - 2019-01-09 13:37 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-12-26 00:23 - 2019-01-09 13:37 - 000002820 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-12-26 00:23 - 2016-11-06 18:51 - 000003374 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-26 00:23 - 2016-11-06 18:50 - 000003246 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-26 00:23 - 2016-04-21 14:11 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-12-26 00:23 - 2016-04-20 17:37 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-12-26 00:23 - 2016-04-20 17:27 - 000003194 _____ C:\Windows\system32\Tasks\{A95AC2B5-3469-473A-9186-125DF609FD0D}
2020-12-26 00:23 - 2014-07-23 08:18 - 000003548 _____ C:\Windows\system32\Tasks\CreateChoiceProcessTask
2020-12-25 21:04 - 2018-02-11 22:34 - 000000000 ____D C:\temp
2020-12-25 18:57 - 2017-09-24 18:36 - 000000000 ____D C:\AdwCleaner
2020-12-25 14:02 - 2019-01-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-12-25 14:02 - 2017-03-15 19:53 - 000001268 _____ C:\Users\Public\Desktop\Skype.lnk
2020-12-25 14:02 - 2017-03-15 19:53 - 000001268 _____ C:\ProgramData\Desktop\Skype.lnk
2020-12-25 13:52 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2020-12-25 13:51 - 2020-05-13 09:07 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-12-25 13:51 - 2020-05-13 09:07 - 000000969 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-12-08 20:44 - 2016-04-20 17:37 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2020-12-08 20:44 - 2016-04-20 17:37 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2020-12-08 20:44 - 2016-04-20 17:37 - 000000000 ____D C:\Windows\system32\Macromed
2020-12-02 22:06 - 2016-11-06 18:51 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Files in the root of some directories ========

2017-10-31 17:05 - 2017-10-31 17:05 - 000000036 _____ () C:\Users\Uživatel\AppData\Local\housecall.guid.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-12-24 17:56
==================== End of FRST.txt ========================

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> DefaultScope {4D1F41B3-9AED-4355-867F-86620D2B52A2} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453 ... -SearchBox
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {4D1F41B3-9AED-4355-867F-86620D2B52A2} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453 ... -SearchBox
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {2F7EBCF0-3DEC-4C38-AE58-D3AAAE828B93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {3F85747A-2D2E-4164-9BBE-5C66BCDE763A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by Uživatel (26-12-2020 16:54:48) Run:2
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> DefaultScope {4D1F41B3-9AED-4355-867F-86620D2B52A2} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453 ... -SearchBox
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3484434093-1762594279-2416588269-1000 -> {4D1F41B3-9AED-4355-867F-86620D2B52A2} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453 ... -SearchBox
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {2F7EBCF0-3DEC-4C38-AE58-D3AAAE828B93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
Task: {3F85747A-2D2E-4164-9BBE-5C66BCDE763A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2016-11-06] (Google Inc -> Google Inc.)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
HKU\S-1-5-21-3484434093-1762594279-2416588269-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4D1F41B3-9AED-4355-867F-86620D2B52A2} => removed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully.
ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
HKLM\SOFTWARE\Policies\Google => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2F7EBCF0-3DEC-4C38-AE58-D3AAAE828B93}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F7EBCF0-3DEC-4C38-AE58-D3AAAE828B93}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F85747A-2D2E-4164-9BBE-5C66BCDE763A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F85747A-2D2E-4164-9BBE-5C66BCDE763A}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4584652 B
Java, Flash, Steam htmlcache => 1159 B
Windows/system/drivers => 74570083 B
Edge => 0 B
Chrome => 322617032 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83565 B
LocalService => 83565 B
NetworkService => 83565 B
Uživatel => 4728477 B

RecycleBin => 24935 B
EmptyTemp: => 395.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:55:06 ====

Snazáno, log by již měl být OK.

Jestli je to vše, tak díky moc a hezký zbytek víkendu!

Též hezký zbytek víkendu. Pokud je vše v pořádku, je to z mé strany všechno.