VIRY.CZ

Dobrý den. Od určité doby mi na notebooku v pravém dolním rohu neustále vyskakují různá oznámení viz přílohy. Další přílohy mi nelze sem dát.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2024
Ran by HP (administrator) on HP-PC (Hewlett-Packard HP EliteBook 8570p) (19-11-2024 16:57:18)
Running from C:\Users\HP\Desktop\FRST64.exe
Loaded Profiles: HP
Platform: Microsoft Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser not detected!
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe
(C:\Program Files (x86)\FormatFactory\net_updater64.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\Program Files (x86)\FormatFactory\luminati\brightdata.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Users\HP\Desktop\uTorrentPortable\uTorrentPortable.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\HP\Desktop\uTorrentPortable\App\uTorrent\uTorrent.exe
(DOMIT LIMITED -> Domit UK LTD) C:\Users\HP\AppData\Local\MP3SkypeRecorder\app-6.1.5\MP3SkypeRecorder6.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\GLPCCamera\monitorpad.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(explorer.exe ->) (Hewlett-Packard Company -> ) C:\Program Files (x86)\Hewlett-Packard\HP Webcam HD 2300 Software\BM.exe
(explorer.exe ->) (Irfan Skiljan -> Irfan Skiljan) C:\Program Files\IrfanView\i_view64.exe <3>
(explorer.exe ->) (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC. -> KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTM64_N.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\calc.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <4>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(explorer.exe ->) (Rare Ideas, LLC -> PortableApps.com) C:\Users\HP\Desktop\uTorrentPortable\uTorrentPortable.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Viber Media S.à r.l. -> Viber Media S.à r.l.) C:\Users\HP\AppData\Local\Viber\Viber.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\Program Files (x86)\FormatFactory\net_updater64.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(taskeng.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] => C:\Windows\system32\MSTM64_N.EXE [247736 2011-04-06] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC. -> KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427304 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-10-24] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [File not signed]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123172880 2024-10-29] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [MP3 Skype Recorder 6] => C:\Users\HP\AppData\Local\MP3SkypeRecorder\MP3SkypeRecorder6.exe [486344 2021-03-22] (DOMIT LIMITED -> Domit UK LTD)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (No File) <==== ATTENTION
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [electron.app.Messenger for Desktop] => C:\Users\HP\AppData\Local\Programs\messengerfordesktop\Messenger for Desktop.exe (No File)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Opera Browser Assistant] => C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4140448 2023-03-08] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45359408 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\MIPR64_N: C:\Windows\System32\spool\prtprocs\x64\MIPR64_N.DLL [56832 2011-03-04] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\...\Windows x64\Print Processors\MIPR64_Q: MIPR64_Q.DLL (No File)
HKLM\...\Print\Monitors\EPSON Stylus SX200 Series 64MonitorBE: C:\Windows\system32\E_ILMEFE.DLL [108032 2007-12-07] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\MLMN64_N: C:\Windows\system32\MLMN64_N.DLL [115200 2011-03-29] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Button Manager.lnk [2019-11-06]
ShortcutTarget: HP Button Manager.lnk -> C:\Program Files (x86)\Hewlett-Packard\HP Webcam HD 2300 Software\BM.exe (Hewlett-Packard Company -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {392815FF-29C4-4E5C-9A6A-DB60C5A6411A} - System32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D} => C:\Program Files (x86)\iTunes\iTunes.exe (No File)
Task: {87841E93-5D65-4C19-93D0-C917162FCBC9} - System32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Downloads\irfanview_lang_czech.exe -d C:\Users\HP\Downloads
Task: {ADCAF5AF-F505-48D5-BE26-F4D851D0602F} - System32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.exe -d C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4
Task: {617AF69E-9421-4CFE-A2E4-94B74152E6F2} - System32\Tasks\{C4F60685-8378-428C-BC58-A38C53BCBA46} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\AppData\Local\Temp\jre-8u371-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1
Task: {7E739240-E306-4CA1-8A98-D178D18724BC} - System32\Tasks\{EDB426A0-0C45-4A44-92AF-2438E09571BF} => C:\Program Files (x86)\Messenger for Desktop\Messenger.exe [47730823 2015-06-13] () [File not signed]
Task: {F58CDE7E-D1A8-4BCC-9268-BB22C70C72BC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {7136F75E-BC48-4EEF-A74D-75166E132CE5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {F789B2AD-0D5B-4A0C-9AC3-B035A60C5AEA} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5205800 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2AEF0F22-8243-479C-999F-8ADAD28FB8CB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {F657A011-92F6-4260-ACC5-D560D1539EFB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {8CB4BE63-8C25-4AE8-A9E9-EF1B8F05D7C6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "64a706f7-6c4d-48de-9102-ced1924fe0c3" --version "6.30.11385" --silent
Task: {34D45D91-E8AC-4797-AA00-4ABA81016767} - System32\Tasks\CCleanerSkipUAC - HP => C:\Program Files\CCleaner\CCleaner.exe [39135536 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {2E03E3D2-964F-491A-B074-09AD84CA6E40} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
Task: {2DD315DE-222C-440E-9044-8E0D3C4F5DEF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
Task: {A46F933E-B6EB-4AFF-AC5C-F579D11938F3} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [969208 2017-07-17] (HP Inc. -> HP)
Task: {247FFE56-D51F-48B0-8BC1-065C51C38416} - System32\Tasks\Opera scheduled assistant Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2635168 2023-10-30] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\HP\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {0F78A616-F10B-4C7B-A3DC-A67B6A63A918} - System32\Tasks\Opera scheduled Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2635168 2023-10-30] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{20944061-44D7-472A-B933-2B215F7CDB28}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\144424D2836453333313: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\144424D2930334030373: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\75966496D22556075616475627: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\75966496D22556075616475627: [DhcpDomain] WiFi-Repeater
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\A54554D2953434550564: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\A54554D2953434550564F5548747: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\C496E64616F5548747: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\C496E64616F5548747: [DhcpDomain] WiFi-Repeater

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2022-03-31] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-11-13] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2024-11-19]
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://forum.elektrolab.eu; hxxps://hkfwc.kilimanjarospot.top; hxxps://messages.google.com; hxxps://ooxxx.com; hxxps://web.whatsapp.com; hxxps://www.elektroda.pl; hxxps://www.svarecky-obchod.cz
CHR Extension: (Seznam Doplněk – Email) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2024-10-26]
CHR Extension: (Rizikové weby) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\iddkbojnnljflgkjchlpjlhpfhhbeefk [2023-10-25]
CHR Extension: (Plná Peňaženka Líštička) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbilggjmecggkclacdgebaielibaifdc [2024-10-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-02]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-11-12]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-10]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-11-12]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-10]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-11-12]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-10-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-10-17]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2024-11-12]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable [2024-11-19]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2024-08-21]
OPR Extension: (Opera Wallet) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2024-08-21]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-10-02] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7261480 2024-10-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [774952 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1221416 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
R2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [965952 2017-07-17] (HP Inc. -> HP)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP)
R2 luminati_net_updater_win_formatfactory_pcfreetime_com; C:\Program Files (x86)\FormatFactory\net_updater64.exe [9756752 2023-02-14] (Bright Data Ltd -> BrightData Ltd. (certified))
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [972936 2022-03-31] (McAfee, LLC -> McAfee, LLC)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] <==== ATTENTION
S2 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]
S2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [X] <==== ATTENTION

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [20536 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [233016 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [381496 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [294960 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [84536 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [28752 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [273976 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [550456 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [23472 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [97848 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [69176 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [951352 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [1202232 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203832 2024-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [307256 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [367096 2021-10-04] (Bitdefender SRL -> Bitdefender)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [3495680 2016-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
S2 MLPTDR_N; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
S2 MLPTDR_Q; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 RsProxy; C:\Windows\system32\drivers\RsProxy.sys [15976 2019-11-06] (Realtek Semiconductor Corp -> )
S3 ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [261640 2019-08-11] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2021-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
U1 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-19 16:57 - 2024-11-19 16:58 - 000029038 _____ C:\Users\HP\Desktop\FRST.txt
2024-11-19 16:56 - 2024-11-19 16:58 - 000000000 ____D C:\FRST
2024-11-19 16:52 - 2024-11-19 16:52 - 002402816 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2024-11-19 15:45 - 2024-11-19 15:45 - 000000000 ____D C:\Users\HP\AppData\LocalLow\uTorrent
2024-11-19 15:45 - 2024-11-19 15:45 - 000000000 ____D C:\Users\HP\AppData\Local\uTorrent
2024-11-16 15:09 - 2024-11-16 15:09 - 000000000 ____D C:\Users\HP\Documents\Nová složka
2024-11-15 08:35 - 2024-11-19 11:47 - 000000000 ____D C:\Users\HP\Documents\Vírus
2024-11-13 19:05 - 2024-11-13 19:06 - 044943296 _____ C:\Users\HP\Desktop\vlc-3.0.21-win64.exe
2024-11-11 11:18 - 2024-11-11 11:19 - 000000000 ____D C:\Users\HP\Documents\Čidlo vlhkosti
2024-11-10 14:41 - 2024-11-10 14:41 - 000011280 _____ C:\Users\HP\Desktop\AB PULSe 4K MINI.odt
2024-11-07 12:12 - 2024-11-08 14:30 - 000000000 ____D C:\Users\HP\Documents\ECHONITY-Život rodin na Slovensku a v Čechách
2024-11-04 07:24 - 2024-11-04 07:24 - 000001066 _____ C:\Users\HP\Desktop\Any Video Converter.lnk
2024-10-28 15:02 - 2024-10-28 15:02 - 000001100 _____ C:\Users\Public\Desktop\OpenOffice 4.1.15.lnk
2024-10-28 15:02 - 2024-10-28 15:02 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.15
2024-10-28 12:41 - 2024-10-28 12:41 - 002220432 _____ (Zdenek Svub) C:\Users\HP\Desktop\uTorrent221_2022.exe
2024-10-28 12:38 - 2024-10-28 12:38 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2024-10-28 12:35 - 2024-10-28 12:35 - 002705072 _____ (Zdenek Svub) C:\Users\HP\Desktop\uTorrent313_2022.exe
2024-10-28 11:48 - 2024-10-28 12:41 - 000000938 _____ C:\Users\HP\Desktop\µTorrent.lnk
2024-10-28 11:48 - 2024-10-28 11:48 - 000000825 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2024-10-28 11:44 - 2024-11-04 17:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2024-10-27 11:57 - 2024-10-27 11:57 - 000000000 ____D C:\Windows\system32\Tasks\Apple
2024-10-27 11:57 - 2024-10-27 11:57 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2024-10-23 10:53 - 2024-10-23 10:52 - 000315688 _____ (Gen Digital Inc.) C:\Windows\system32\aswBoot.exe
2024-10-22 02:57 - 2024-10-22 02:57 - 000000000 ____D C:\Users\HP\AppData\Local\BitTorrentHelper

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-19 16:48 - 2019-10-25 16:12 - 000000000 ____D C:\Program Files (x86)\Google
2024-11-19 09:27 - 2009-07-14 05:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2024-11-19 09:27 - 2009-07-14 05:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2024-11-19 09:21 - 2024-05-22 16:03 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-11-19 09:21 - 2024-05-22 16:03 - 000003246 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-11-19 09:21 - 2024-05-22 16:03 - 000002796 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - HP
2024-11-19 09:21 - 2024-05-22 16:03 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-11-19 09:21 - 2023-04-20 05:49 - 000003214 _____ C:\Windows\system32\Tasks\{C4F60685-8378-428C-BC58-A38C53BCBA46}
2024-11-19 09:21 - 2021-12-10 13:10 - 000002970 _____ C:\Windows\system32\Tasks\{EDB426A0-0C45-4A44-92AF-2438E09571BF}
2024-11-19 09:21 - 2021-11-12 19:33 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2024-11-19 09:21 - 2021-05-03 18:42 - 000002934 _____ C:\Windows\system32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D}
2024-11-19 09:21 - 2020-02-26 09:48 - 000004244 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582706894
2024-11-19 09:21 - 2020-02-26 09:48 - 000004016 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1582706894
2024-11-19 09:21 - 2019-11-17 13:10 - 000003210 _____ C:\Windows\system32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B}
2024-11-19 09:21 - 2019-11-16 20:55 - 000003124 _____ C:\Windows\system32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2}
2024-11-19 09:21 - 2019-11-02 10:12 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-11-19 09:21 - 2019-10-25 16:12 - 000003682 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2024-11-19 09:21 - 2019-10-25 16:12 - 000003554 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2024-11-19 08:29 - 2019-10-24 14:51 - 000000000 ___SD C:\Users\HP\AppData\Roaming\Microsoft\Credentials
2024-11-18 12:41 - 2010-11-21 10:27 - 000668792 _____ C:\Windows\system32\perfh005.dat
2024-11-18 12:41 - 2010-11-21 10:27 - 000141420 _____ C:\Windows\system32\perfc005.dat
2024-11-18 12:41 - 2009-07-14 06:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2024-11-18 12:41 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2024-11-18 12:37 - 2022-09-29 08:06 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-11-18 12:35 - 2024-05-22 16:03 - 000000000 ____D C:\Program Files\CCleaner
2024-11-18 12:35 - 2021-12-03 16:27 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2024-11-18 12:35 - 2019-11-01 13:08 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Skype for Desktop
2024-11-18 12:35 - 2019-10-24 15:07 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2024-11-18 12:34 - 2021-11-12 19:30 - 000000000 ____D C:\ProgramData\Avast Software
2024-11-18 12:34 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-11-18 10:14 - 2020-12-30 20:55 - 000000000 ____D C:\Users\HP\Documents\Přihlasovací údaje
2024-11-16 15:16 - 2020-03-11 14:46 - 000000000 ____D C:\Users\HP\Documents\OPRAVY
2024-11-16 15:08 - 2022-10-12 07:28 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2024-11-15 08:34 - 2019-11-04 19:24 - 000000000 ____D C:\Users\HP\Documents\ViberDownloads
2024-11-13 18:59 - 2019-11-02 09:40 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2024-11-13 18:50 - 2019-10-25 15:14 - 000000000 ____D C:\Windows\system32\MRT
2024-11-13 18:46 - 2019-10-25 15:14 - 202035632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-11-13 07:25 - 2022-09-15 06:12 - 000019730 _____ C:\Users\HP\Desktop\Rudolf Podrazil.odt
2024-11-12 17:52 - 2019-11-01 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-11-12 15:14 - 2023-03-12 16:58 - 000000000 ____D C:\Users\HP\Documents\Věci na prodej
2024-11-12 11:32 - 2024-05-22 08:28 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2024-11-07 15:17 - 2022-11-23 08:39 - 000000000 ____D C:\Users\HP\Documents\Marketagent
2024-11-05 12:52 - 2022-10-13 08:24 - 000000000 ____D C:\Users\HP\Documents\Marta Petráková-Dluh-Plyn+Elektřina+Voda
2024-11-04 08:31 - 2022-10-12 07:28 - 000002047 _____ C:\Users\Public\Desktop\Acrobat Reader.lnk
2024-11-04 07:27 - 2023-10-19 22:17 - 000000000 ____D C:\Users\HP\AppData\Roaming\Any Video Converter
2024-11-04 07:24 - 2023-10-19 22:17 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anvsoft
2024-10-31 05:13 - 2024-09-12 21:31 - 000000000 ____D C:\Users\HP\Documents\Petr (Pražák)
2024-10-30 13:34 - 2019-10-24 15:26 - 000065832 _____ C:\Users\HP\AppData\Local\GDIPFONTCACHEV1.DAT
2024-10-30 13:34 - 2009-07-14 05:45 - 000300344 _____ C:\Windows\system32\FNTCACHE.DAT
2024-10-28 15:02 - 2019-11-02 09:58 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2024-10-28 11:46 - 2024-05-21 08:13 - 000000000 ____D C:\Users\HP\Desktop\Torrent
2024-10-28 10:38 - 2019-12-28 09:10 - 000000000 ____D C:\Users\HP\Documents\Potvrdění SEPA platebních příkazů
2024-10-27 12:20 - 2024-04-07 14:10 - 000000000 ____D C:\Users\HP\Desktop\Slovenský národný panel
2024-10-27 11:59 - 2023-04-25 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2024-10-27 11:59 - 2023-04-25 17:12 - 000000000 ____D C:\Program Files\7-Zip
2024-10-27 11:57 - 2021-05-02 07:46 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2024-10-27 11:57 - 2019-11-18 21:07 - 000001092 _____ C:\Users\Public\Desktop\WinRAR.lnk
2024-10-27 11:57 - 2019-11-18 20:30 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-27 11:57 - 2019-11-18 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-27 11:57 - 2019-11-18 20:30 - 000000000 ____D C:\Program Files\WinRAR
2024-10-27 11:54 - 2021-09-26 15:29 - 000001153 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2024-10-27 11:54 - 2021-09-26 15:29 - 000001105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2024-10-27 11:54 - 2021-09-26 15:29 - 000000000 ____D C:\Program Files (x86)\CDBurnerXP
2024-10-23 10:53 - 2021-11-12 19:33 - 001202232 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSP.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000550456 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswNetHub.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000307256 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswVmm.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000294960 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsh.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000273976 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswMonFlt.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000097848 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRdr2.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000084536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbuniv.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000069176 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRvrt.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000028752 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswKbd.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000951352 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSnx.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000381496 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsdriver.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000233016 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArPot.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000020536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArDisk.sys
2024-10-23 10:50 - 2024-10-17 19:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2024-10-23 10:50 - 2021-12-05 15:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-10-23 10:50 - 2009-07-14 06:08 - 000032532 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2024-10-20 07:39 - 2019-11-06 10:03 - 000000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics

==================== Files in the root of some directories ========

2019-11-18 20:32 - 2023-03-04 15:50 - 000023552 _____ () C:\Users\HP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2023-12-28 09:06 - 2023-10-19 22:17 - 000000036 _____ () C:\Users\HP\AppData\Local\_LOCAL_GUID

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2024-11-14 10:20
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2024
Ran by HP (19-11-2024 17:00:40)
Running from C:\Users\HP\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X64) (2019-10-24 13:51:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-671632164-325227383-1259036689-500 - Administrator - Disabled)
Guest (S-1-5-21-671632164-325227383-1259036689-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-671632164-325227383-1259036689-1002 - Limited - Enabled)
HP (S-1-5-21-671632164-325227383-1259036689-1000 - Administrator - Enabled) => C:\Users\HP

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
7-Zip 24.08 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2408-000001000000}) (Version: 24.08.00.0 - Igor Pavlov)
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 24.004.20272 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Any Video Converter 9.0.4 (HKLM-x32\...\Any Video Converter) (Version: 9.0.4 - Anvsoft)
Apple Mobile Device Support (HKLM\...\{AAFEC555-4154-4A21-9523-30B8CDE94533}) (Version: 18.0.0.33 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.21.5 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.10.6133 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1631.4 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite DCP-195C (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 6.30 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP)
FormatFactory 5.6.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.6.5.0 - Free Time)
GL USB2.0 UVC Camera Device (HKLM-x32\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 1.0.0.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
HP 3D DriveGuard (HKLM\...\{EE6D6D5E-539C-44B6-BEF0-AA7C20DE170B}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Hotkey Support (HKLM-x32\...\{963F09EA-0B0A-4CFC-B04F-AD9B6614794C}) (Version: 6.2.39.1 - HP)
HP Webcam HD 2300 Software (HKLM-x32\...\{74E6771A-47B5-433E-A96F-15E29F70F920}) (Version: 1.00.0000 - Hewlett-Packard)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
IrfanView 4.70 (64-bit) (HKLM\...\IrfanView64) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KONICA MINOLTA PagePro 1300W (HKLM\...\KONICA MINOLTA PagePro 1300W) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{E8266049-8C7B-4A09-9E11-8BD100E0076A}) (Version: 8.0.1.2379 - GenesysLogic)
Microsoft .NET Framework 4.8 (CSY) (HKLM\...\{39DC4515-B8C1-3AD9-AA88-D7C8A333612F}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Security Client (HKLM\...\{2AA3C13E-0531-41B8-AE48-AE28C940A809}) (Version: 4.10.0209.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23026 (HKLM\...\{BC958BD2-5DAC-3862-BB1A-C1BE0790438D}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23026 (HKLM\...\{0D3E9E15-DE7A-300B-96F1-B4AF12B96488}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.1.0 - Mozilla)
Mozilla Thunderbird (x64 en-US) (HKLM\...\Mozilla Thunderbird 115.16.2 (x64 en-US)) (Version: 115.16.2 - Mozilla)
MP3 Skype recorder v.6 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\MP3SkypeRecorder) (Version: 6.1.5 - Domit LTD)
Nero ControlCenter (HKLM-x32\...\{ABC88553-8770-4B97-B43E-5A90647A5B63}) (Version: 11.4.2006 - Nero AG) Hidden
Nero Core (HKLM-x32\...\{EF1C9DB5-D928-4F38-89DE-B1BB8911462E}) (Version: 1.0.01700 - Nero AG)
Nero Core Components (HKLM-x32\...\{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.7.3045 - Nero AG) Hidden
Nero KnowHow PLUS (HKLM-x32\...\{AACDE618-4162-4074-B01D-67C5E8D07233}) (Version: 1.3.5005 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{7BC834B5-9093-4A6D-8303-01760E4E61B2}) (Version: 20.1.1020 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 20.0.1006 - Nero AG) Hidden
Odinstalace tiskárny EPSON Stylus SX200 Series (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
OpenOffice 4.1.15 (HKLM-x32\...\{45B154A5-9E97-452F-94DE-08EBE6BD0D85}) (Version: 4.115.9813 - Apache Software Foundation)
Opera Stable 77.0.4054.277 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 77.0.4054.277) (Version: 77.0.4054.277 - Opera Software)
Opera Stable 95.0.4635.90 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 95.0.4635.90) (Version: 95.0.4635.90 - Opera Software)
PredatorCreator verze 2.3.9.0 (HKLM-x32\...\PredatorCreator_is1) (Version: 2.3.9.0 - )
Prohlížeč Seznam.cz (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Seznam Browser) (Version: 6.24.3 - Seznam.cz a.s.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
Skype verze 8.132 (HKLM-x32\...\Skype_is1) (Version: 8.132 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Viber (HKLM-x32\...\{A91FC964-07DF-4856-99FA-FDF33DE9D16C}) (Version: 11.8.0.60 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\{a388723b-b292-4b27-987e-dd5cee72be11}) (Version: 11.8.0.60 - Viber Media S.a.r.l)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.691 - McAfee, LLC)
WhatsApp (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\WhatsApp) (Version: 2.2306.9 - WhatsApp)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)

Chrome apps:
============
TikTok (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\004ce63915fc9acbf754487309c151af) (Version: 1.0 - Google\Chrome)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-671632164-325227383-1259036689-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\HP\Desktop\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc

==================== Loaded Modules (Whitelisted) =============

2019-11-23 19:27 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2024-11-19 15:45 - 2024-11-19 15:45 - 000029696 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\nsn9F4B.tmp\registry.dll
2024-11-19 15:45 - 2024-11-19 15:45 - 000011264 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\nsn9F4B.tmp\System.dll
2019-11-23 19:27 - 2012-06-05 15:59 - 000025299 ____R (Brother Industries, Ltd) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\brlm03a.dll
2019-11-23 19:27 - 2008-11-26 10:25 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BrFirmUpdateCheck.dll
2019-11-23 19:27 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\brlmw03a.dll
2019-11-23 19:27 - 2011-04-11 12:53 - 000163840 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brmfcmon\BRMFCWNDCze.dll
2019-11-23 19:27 - 2010-03-29 05:32 - 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brcccze.dll
2019-11-23 19:27 - 2010-03-10 18:16 - 000770048 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2019-11-23 19:27 - 2012-10-09 15:30 - 000372736 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2019-11-23 19:27 - 2009-09-28 13:38 - 005390336 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2024-08-11 18:00 - 2024-08-11 18:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-10-24 15:10 - 2012-10-24 17:12 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000058368 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MIMF64_N.dll
2011-06-14 17:13 - 2011-03-29 14:05 - 000115200 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MLMN64_N.DLL
2011-06-14 17:13 - 2011-03-04 10:13 - 000115712 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MSPO64_N.dll
2011-06-14 17:13 - 2011-05-05 16:21 - 001629696 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\mstm64_n.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000050176 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MTAG64_N.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000056832 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\MIPR64_N.DLL
2019-11-23 19:27 - 2003-06-30 00:00 - 000259584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2019-11-23 19:27 - 2005-07-05 00:00 - 000131584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2019-11-23 19:27 - 2003-06-30 00:00 - 000406016 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\MSVCP140.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\ucrtbase.DLL
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\VCRUNTIME140.dll
2024-11-19 10:06 - 2024-11-19 10:06 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\Avast Software\Avast\defs\24111900\avast.local_vc142.crt\VCRUNTIME140_1.dll
2024-02-13 08:43 - 2024-02-13 08:43 - 004309504 _____ (Rainberry, Inc.) [File not signed] C:\Users\HP\Desktop\uTorrentPortable\App\uTorrent\bt_datachannel.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) =============

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2021-12-02 00:34 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-671632164-325227383-1259036689-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{D3A894DB-018F-47AB-A7C2-3903E9CF0833}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{88168338-C954-404E-BB82-3249649A9FCA}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{3EE278F6-EB1F-48FE-8AD2-B09BC567F37C}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{C6C48C4E-878F-4313-A843-4BC26E5D3686}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{0506BDDE-950B-4071-8982-D576CD01DBFE}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{ADEE4E27-A9C6-4225-B4B2-F27208325616}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{53C60C09-143F-4D24-B4C2-07E74F83B6D9}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{1243158D-51B7-48E8-A2F3-A2CC5EA1164A}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{7D9607B0-3619-41A1-A64A-3A04B251023B}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{0AFAFCFC-5327-4165-AF59-879F2BF87728}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{C2E3B327-1F9C-4F64-B17D-58756F88A653}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{F6C2A46D-805E-430D-8DAA-BB54C7B2FD47}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{BA18EF4A-7439-4F34-A70C-190F03DB4C7D}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [UDP Query User{D435E0CE-1927-449A-AA1A-A23FC257E650}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{DDACAD40-F36E-4284-8508-C04A21629D87}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [UDP Query User{FB661B80-E433-488E-9092-9A79D77F1156}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [TCP Query User{2D8E8AF6-B8AD-4387-9282-9F18ED279EE9}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{52C72881-1CED-4F94-AA1B-4AE07D2590E1}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{8C645C3A-5160-41C3-9790-C7EB84B580F4}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E8508B6B-5A8D-4246-B3C6-96D56124124F}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{51B10772-9FE0-4FF7-B597-00EB9C7D7C26}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E756117C-E1F5-4925-8D4F-1219A35F7C65}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [{9B9BC33E-559F-49C0-83A5-ED25D5E1778F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E0745099-D81D-408F-983F-46230853AC68}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5356089F-E214-4EBF-B85A-09747D0A355A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E3C4D874-8FC6-4602-B74D-6CBD979BC104}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{080AE790-A2DD-4CE6-AD4D-41F9C1DF7072}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\77.0.4054.203\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{C5DD63B1-53E5-4D1D-A797-FC0076EB420F}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48EF909E-E9D1-4A4D-85B9-B5EF55303495}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{F933C2D6-C751-4628-A609-0DD57C2870FA}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{68DA4FD1-6624-4C75-8517-75F8F76E9E0E}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [{0A64DEB8-16C1-4218-AB0E-1C04416345BB}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{4C9E4063-C2EF-423E-9D02-4D6FAF0E66EF}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{D17FBDF1-30E2-4B1D-80DD-E88870BB720D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{2FE2D000-7198-46A7-9D52-C020A5987B4D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{6FA57F77-14B1-4235-9CA4-F2A4BD1D9F47}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{B3023066-8296-440B-A880-3B571154928D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{748D3A51-037B-439A-BDEB-01ADBEDB1204}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{056F2932-114E-4C40-9F75-79D8CD8AD7F2}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [{35358941-A9E1-4A6B-B1B5-5E82EB83829D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{427D3D67-7F26-4C16-A96E-428EBF243C4C}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [UDP Query User{11EA66BF-101B-4745-9A3D-C4541F5532CF}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [TCP Query User{5620BA99-6828-4EA3-BCE4-CAB39360201D}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [UDP Query User{263D01CA-EE67-4913-8018-FE7909B19F90}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [{5A02DB45-D0B0-4D7D-AF10-8478546AAD44}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D06566CC-B948-43FC-BEE9-DF894A7A5B24}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\95.0.4635.84\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{8A647DCA-EC40-4503-A1AB-3B57A9EBE888}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{8DEE86F6-79A7-4AC7-A90E-072F520049EE}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [{E4F1BA21-D763-4644-8BF6-AA4467C3FC93}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{42B0009F-A62F-4CA0-98CE-0EB13FB41890}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B2919BBB-B852-477F-B9DE-30865EDBEEC8}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\95.0.4635.90\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{95057BD6-B040-45D9-AC98-38749AEBCACA}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{8C79B1E9-9331-4625-A9E5-18E02DD075BB}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{1776C13C-A11D-4A5C-8A2C-8A48155DFA02}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48820952-4FC9-4ECC-9A44-2254EB9DBAB7}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File
FirewallRules: [{E03A80ED-FB4F-49E3-99EB-559350FD7D64}] => (Allow) C:\Users\HP\AppData\Roaming\uTorrent\uTorrent.exe (Zdenek Svub -> BitTorrent, Inc.)
FirewallRules: [{86C32B23-C3CC-433E-89EC-8E531013ED64}] => (Allow) C:\Users\HP\AppData\Roaming\uTorrent\uTorrent.exe (Zdenek Svub -> BitTorrent, Inc.)
FirewallRules: [TCP Query User{2B391957-A3BA-4023-8650-5A12D8659949}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{9B0E6FE5-4A69-4DEB-A420-95DC7C8C7E16}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{1A3E95E7-4777-4F4B-A969-F5FBEEBA9B99}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{78D73197-DFE6-4710-BF41-B2E0684856A7}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

17-11-2024 05:07:40 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (11/19/2024 04:29:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 841095

Error: (11/19/2024 04:29:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 841095

Error: (11/19/2024 04:29:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/19/2024 03:41:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 41839

Error: (11/19/2024 03:41:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 41839

Error: (11/19/2024 03:41:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/19/2024 02:36:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9861962

Error: (11/19/2024 02:36:17 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9861962


System errors:
=============
Error: (11/19/2024 05:05:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/19/2024 05:05:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (11/19/2024 05:05:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (11/19/2024 05:05:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/19/2024 05:05:41 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (11/19/2024 05:05:41 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/19/2024 05:05:41 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/19/2024 05:05:41 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.


Windows Defender:
================Event[0]:

Date: 2019-11-02 08:36:10.699
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-11-01 12:33:34.092
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-31 14:41:50.684
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-29 12:02:31.399
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-27 06:50:55.213
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68ICF Ver. F.32 12/05/2012
Motherboard: Hewlett-Packard 17A7
Processor: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz
Percentage of memory in use: 73%
Total physical RAM: 8055.55 MB
Available physical RAM: 2172.18 MB
Total Virtual: 16109.25 MB
Available Virtual: 9265.67 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:21.81 GB) (Model: Patriot Burst ATA Device) NTFS

\\?\Volume{2723956c-f665-11e9-9394-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: F1D3BAFD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-10-23.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-19-2024
# Duration: 00:00:07
# OS: Windows 7 Service Pack 1
# Cleaned: 12
# Failed: 0


***** [ Services ] *****

Deleted WCAssistantService

***** [ Folders ] *****

Deleted C:\Users\HP\AppData\Local\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted HKCU\Software\csastats
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\.DEFAULT\Software\Mozilla\NativeMessagingHosts\com.webcompanion.native
Deleted HKU\S-1-5-18\SOFTWARE\Mozilla\NativeMessagingHosts\com.webcompanion.native
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

Deleted Seznam Doplněk – Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2424 octets] - [19/11/2024 18:01:09]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Dejte nový log FRST+Addition.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2024
Ran by HP (administrator) on HP-PC (Hewlett-Packard HP EliteBook 8570p) (19-11-2024 19:04:11)
Running from C:\Users\HP\Desktop\FRST64.exe
Loaded Profiles: HP
Platform: Microsoft Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser not detected!
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\FormatFactory\net_updater64.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\Program Files (x86)\FormatFactory\luminati\brightdata.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\McAfee\WebAdvisor\uihost.exe ->) (DOMIT LIMITED -> Domit UK LTD) C:\Users\HP\AppData\Local\MP3SkypeRecorder\app-6.1.5\MP3SkypeRecorder6.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\Program Files (x86)\FormatFactory\net_updater64.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] => C:\Windows\system32\MSTM64_N.EXE [247736 2011-04-06] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC. -> KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427304 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-10-24] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [File not signed]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123172880 2024-10-29] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [MP3 Skype Recorder 6] => C:\Users\HP\AppData\Local\MP3SkypeRecorder\MP3SkypeRecorder6.exe [486344 2021-03-22] (DOMIT LIMITED -> Domit UK LTD)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [electron.app.Messenger for Desktop] => C:\Users\HP\AppData\Local\Programs\messengerfordesktop\Messenger for Desktop.exe (No File)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [Opera Browser Assistant] => C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4140448 2023-03-08] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45359408 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\MIPR64_N: C:\Windows\System32\spool\prtprocs\x64\MIPR64_N.DLL [56832 2011-03-04] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\...\Windows x64\Print Processors\MIPR64_Q: MIPR64_Q.DLL (No File)
HKLM\...\Print\Monitors\EPSON Stylus SX200 Series 64MonitorBE: C:\Windows\system32\E_ILMEFE.DLL [108032 2007-12-07] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\MLMN64_N: C:\Windows\system32\MLMN64_N.DLL [115200 2011-03-29] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Button Manager.lnk [2019-11-06]
ShortcutTarget: HP Button Manager.lnk -> C:\Program Files (x86)\Hewlett-Packard\HP Webcam HD 2300 Software\BM.exe (Hewlett-Packard Company -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {392815FF-29C4-4E5C-9A6A-DB60C5A6411A} - System32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D} => C:\Program Files (x86)\iTunes\iTunes.exe (No File)
Task: {87841E93-5D65-4C19-93D0-C917162FCBC9} - System32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Downloads\irfanview_lang_czech.exe -d C:\Users\HP\Downloads
Task: {ADCAF5AF-F505-48D5-BE26-F4D851D0602F} - System32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.exe -d C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4
Task: {617AF69E-9421-4CFE-A2E4-94B74152E6F2} - System32\Tasks\{C4F60685-8378-428C-BC58-A38C53BCBA46} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\AppData\Local\Temp\jre-8u371-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1
Task: {7E739240-E306-4CA1-8A98-D178D18724BC} - System32\Tasks\{EDB426A0-0C45-4A44-92AF-2438E09571BF} => C:\Program Files (x86)\Messenger for Desktop\Messenger.exe [47730823 2015-06-13] () [File not signed]
Task: {F58CDE7E-D1A8-4BCC-9268-BB22C70C72BC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {7136F75E-BC48-4EEF-A74D-75166E132CE5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {F789B2AD-0D5B-4A0C-9AC3-B035A60C5AEA} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5205800 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2AEF0F22-8243-479C-999F-8ADAD28FB8CB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {F657A011-92F6-4260-ACC5-D560D1539EFB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {8CB4BE63-8C25-4AE8-A9E9-EF1B8F05D7C6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "64a706f7-6c4d-48de-9102-ced1924fe0c3" --version "6.30.11385" --silent
Task: {34D45D91-E8AC-4797-AA00-4ABA81016767} - System32\Tasks\CCleanerSkipUAC - HP => C:\Program Files\CCleaner\CCleaner.exe [39135536 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {2E03E3D2-964F-491A-B074-09AD84CA6E40} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
Task: {2DD315DE-222C-440E-9044-8E0D3C4F5DEF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
Task: {A46F933E-B6EB-4AFF-AC5C-F579D11938F3} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [969208 2017-07-17] (HP Inc. -> HP)
Task: {247FFE56-D51F-48B0-8BC1-065C51C38416} - System32\Tasks\Opera scheduled assistant Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2635168 2023-10-30] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\HP\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {0F78A616-F10B-4C7B-A3DC-A67B6A63A918} - System32\Tasks\Opera scheduled Autoupdate 1582706894 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [2635168 2023-10-30] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{20944061-44D7-472A-B933-2B215F7CDB28}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\144424D2836453333313: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\144424D2930334030373: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\75966496D22556075616475627: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\75966496D22556075616475627: [DhcpDomain] WiFi-Repeater
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\A54554D2953434550564: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\A54554D2953434550564F5548747: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\C496E64616F5548747: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6B4DCE15-484E-42CF-8BC2-001A5F90065F}\C496E64616F5548747: [DhcpDomain] WiFi-Repeater

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2022-03-31] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-11-13] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2024-11-19]
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://forum.elektrolab.eu; hxxps://hkfwc.kilimanjarospot.top; hxxps://messages.google.com; hxxps://ooxxx.com; hxxps://web.whatsapp.com; hxxps://www.elektroda.pl; hxxps://www.svarecky-obchod.cz
CHR Extension: (Rizikové weby) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\iddkbojnnljflgkjchlpjlhpfhhbeefk [2023-10-25]
CHR Extension: (Plná Peňaženka Líštička) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbilggjmecggkclacdgebaielibaifdc [2024-10-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-02]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-11-12]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-10]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-11-12]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-10]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-11-12]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-10-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-10-17]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2024-11-12]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable [2024-11-19]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2024-08-21]
OPR Extension: (Opera Wallet) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2024-08-21]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-10-02] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7261480 2024-10-23] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [774952 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1221416 2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-11-12] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-25] (Google Inc -> Google LLC)
S2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [965952 2017-07-17] (HP Inc. -> HP)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP)
R2 luminati_net_updater_win_formatfactory_pcfreetime_com; C:\Program Files (x86)\FormatFactory\net_updater64.exe [9756752 2023-02-14] (Bright Data Ltd -> BrightData Ltd. (certified))
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [972936 2022-03-31] (McAfee, LLC -> McAfee, LLC)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] <==== ATTENTION
S2 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [20536 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [233016 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [381496 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [294960 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [84536 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [28752 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [273976 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [550456 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [23472 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [97848 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [69176 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [951352 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [1202232 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203832 2024-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [307256 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [367096 2021-10-04] (Bitdefender SRL -> Bitdefender)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [3495680 2016-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
S2 MLPTDR_N; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
S2 MLPTDR_Q; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 RsProxy; C:\Windows\system32\drivers\RsProxy.sys [15976 2019-11-06] (Realtek Semiconductor Corp -> )
S3 ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [261640 2019-08-11] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2021-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
U1 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-19 18:00 - 2024-11-19 18:02 - 000000000 ____D C:\AdwCleaner
2024-11-19 17:59 - 2024-11-19 17:59 - 008790880 _____ (Malwarebytes) C:\Users\HP\Desktop\adwcleaner.exe
2024-11-19 17:00 - 2024-11-19 17:05 - 000050399 _____ C:\Users\HP\Desktop\Addition.txt
2024-11-19 16:57 - 2024-11-19 19:04 - 000025086 _____ C:\Users\HP\Desktop\FRST.txt
2024-11-19 16:56 - 2024-11-19 19:04 - 000000000 ____D C:\FRST
2024-11-19 16:52 - 2024-11-19 16:52 - 002402816 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2024-11-19 15:45 - 2024-11-19 15:45 - 000000000 ____D C:\Users\HP\AppData\LocalLow\uTorrent
2024-11-19 15:45 - 2024-11-19 15:45 - 000000000 ____D C:\Users\HP\AppData\Local\uTorrent
2024-11-16 15:09 - 2024-11-16 15:09 - 000000000 ____D C:\Users\HP\Documents\Nová složka
2024-11-15 08:35 - 2024-11-19 11:47 - 000000000 ____D C:\Users\HP\Documents\Vírus
2024-11-13 19:05 - 2024-11-13 19:06 - 044943296 _____ C:\Users\HP\Desktop\vlc-3.0.21-win64.exe
2024-11-11 11:18 - 2024-11-11 11:19 - 000000000 ____D C:\Users\HP\Documents\Čidlo vlhkosti
2024-11-10 14:41 - 2024-11-10 14:41 - 000011280 _____ C:\Users\HP\Desktop\AB PULSe 4K MINI.odt
2024-11-07 12:12 - 2024-11-08 14:30 - 000000000 ____D C:\Users\HP\Documents\ECHONITY-Život rodin na Slovensku a v Čechách
2024-11-04 07:24 - 2024-11-04 07:24 - 000001066 _____ C:\Users\HP\Desktop\Any Video Converter.lnk
2024-10-28 15:02 - 2024-10-28 15:02 - 000001100 _____ C:\Users\Public\Desktop\OpenOffice 4.1.15.lnk
2024-10-28 15:02 - 2024-10-28 15:02 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.15
2024-10-28 12:41 - 2024-10-28 12:41 - 002220432 _____ (Zdenek Svub) C:\Users\HP\Desktop\uTorrent221_2022.exe
2024-10-28 12:38 - 2024-10-28 12:38 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2024-10-28 12:35 - 2024-10-28 12:35 - 002705072 _____ (Zdenek Svub) C:\Users\HP\Desktop\uTorrent313_2022.exe
2024-10-28 11:48 - 2024-10-28 12:41 - 000000938 _____ C:\Users\HP\Desktop\µTorrent.lnk
2024-10-28 11:48 - 2024-10-28 11:48 - 000000825 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2024-10-28 11:44 - 2024-11-04 17:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2024-10-27 11:57 - 2024-10-27 11:57 - 000000000 ____D C:\Windows\system32\Tasks\Apple
2024-10-27 11:57 - 2024-10-27 11:57 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2024-10-23 10:53 - 2024-10-23 10:52 - 000315688 _____ (Gen Digital Inc.) C:\Windows\system32\aswBoot.exe
2024-10-22 02:57 - 2024-10-22 02:57 - 000000000 ____D C:\Users\HP\AppData\Local\BitTorrentHelper

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-19 18:47 - 2019-10-25 16:12 - 000000000 ____D C:\Program Files (x86)\Google
2024-11-19 18:03 - 2021-12-03 16:27 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2024-11-19 17:58 - 2019-11-01 13:08 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Skype for Desktop
2024-11-19 17:03 - 2024-05-22 16:03 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-11-19 09:27 - 2009-07-14 05:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2024-11-19 09:27 - 2009-07-14 05:45 - 000035424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2024-11-19 09:21 - 2024-05-22 16:03 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-11-19 09:21 - 2024-05-22 16:03 - 000003246 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-11-19 09:21 - 2024-05-22 16:03 - 000002796 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - HP
2024-11-19 09:21 - 2023-04-20 05:49 - 000003214 _____ C:\Windows\system32\Tasks\{C4F60685-8378-428C-BC58-A38C53BCBA46}
2024-11-19 09:21 - 2021-12-10 13:10 - 000002970 _____ C:\Windows\system32\Tasks\{EDB426A0-0C45-4A44-92AF-2438E09571BF}
2024-11-19 09:21 - 2021-11-12 19:33 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2024-11-19 09:21 - 2021-05-03 18:42 - 000002934 _____ C:\Windows\system32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D}
2024-11-19 09:21 - 2020-02-26 09:48 - 000004244 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582706894
2024-11-19 09:21 - 2020-02-26 09:48 - 000004016 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1582706894
2024-11-19 09:21 - 2019-11-17 13:10 - 000003210 _____ C:\Windows\system32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B}
2024-11-19 09:21 - 2019-11-16 20:55 - 000003124 _____ C:\Windows\system32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2}
2024-11-19 09:21 - 2019-11-02 10:12 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-11-19 09:21 - 2019-10-25 16:12 - 000003682 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2024-11-19 09:21 - 2019-10-25 16:12 - 000003554 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2024-11-19 08:29 - 2019-10-24 14:51 - 000000000 ___SD C:\Users\HP\AppData\Roaming\Microsoft\Credentials
2024-11-18 12:41 - 2010-11-21 10:27 - 000668792 _____ C:\Windows\system32\perfh005.dat
2024-11-18 12:41 - 2010-11-21 10:27 - 000141420 _____ C:\Windows\system32\perfc005.dat
2024-11-18 12:41 - 2009-07-14 06:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2024-11-18 12:41 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2024-11-18 12:37 - 2022-09-29 08:06 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-11-18 12:35 - 2024-05-22 16:03 - 000000000 ____D C:\Program Files\CCleaner
2024-11-18 12:35 - 2019-10-24 15:07 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2024-11-18 12:34 - 2021-11-12 19:30 - 000000000 ____D C:\ProgramData\Avast Software
2024-11-18 12:34 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-11-18 10:14 - 2020-12-30 20:55 - 000000000 ____D C:\Users\HP\Documents\Přihlasovací údaje
2024-11-16 15:16 - 2020-03-11 14:46 - 000000000 ____D C:\Users\HP\Documents\OPRAVY
2024-11-16 15:08 - 2022-10-12 07:28 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2024-11-15 08:34 - 2019-11-04 19:24 - 000000000 ____D C:\Users\HP\Documents\ViberDownloads
2024-11-13 18:59 - 2019-11-02 09:40 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2024-11-13 18:50 - 2019-10-25 15:14 - 000000000 ____D C:\Windows\system32\MRT
2024-11-13 18:46 - 2019-10-25 15:14 - 202035632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-11-13 07:25 - 2022-09-15 06:12 - 000019730 _____ C:\Users\HP\Desktop\Rudolf Podrazil.odt
2024-11-12 17:52 - 2019-11-01 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-11-12 15:14 - 2023-03-12 16:58 - 000000000 ____D C:\Users\HP\Documents\Věci na prodej
2024-11-12 11:32 - 2024-05-22 08:28 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2024-11-07 15:17 - 2022-11-23 08:39 - 000000000 ____D C:\Users\HP\Documents\Marketagent
2024-11-05 12:52 - 2022-10-13 08:24 - 000000000 ____D C:\Users\HP\Documents\Marta Petráková-Dluh-Plyn+Elektřina+Voda
2024-11-04 08:31 - 2022-10-12 07:28 - 000002047 _____ C:\Users\Public\Desktop\Acrobat Reader.lnk
2024-11-04 07:27 - 2023-10-19 22:17 - 000000000 ____D C:\Users\HP\AppData\Roaming\Any Video Converter
2024-11-04 07:24 - 2023-10-19 22:17 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anvsoft
2024-10-31 05:13 - 2024-09-12 21:31 - 000000000 ____D C:\Users\HP\Documents\Petr (Pražák)
2024-10-30 13:34 - 2019-10-24 15:26 - 000065832 _____ C:\Users\HP\AppData\Local\GDIPFONTCACHEV1.DAT
2024-10-30 13:34 - 2009-07-14 05:45 - 000300344 _____ C:\Windows\system32\FNTCACHE.DAT
2024-10-28 15:02 - 2019-11-02 09:58 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2024-10-28 11:46 - 2024-05-21 08:13 - 000000000 ____D C:\Users\HP\Desktop\Torrent
2024-10-28 10:38 - 2019-12-28 09:10 - 000000000 ____D C:\Users\HP\Documents\Potvrdění SEPA platebních příkazů
2024-10-27 12:20 - 2024-04-07 14:10 - 000000000 ____D C:\Users\HP\Desktop\Slovenský národný panel
2024-10-27 11:59 - 2023-04-25 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2024-10-27 11:59 - 2023-04-25 17:12 - 000000000 ____D C:\Program Files\7-Zip
2024-10-27 11:57 - 2021-05-02 07:46 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2024-10-27 11:57 - 2019-11-18 21:07 - 000001092 _____ C:\Users\Public\Desktop\WinRAR.lnk
2024-10-27 11:57 - 2019-11-18 20:30 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-27 11:57 - 2019-11-18 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-27 11:57 - 2019-11-18 20:30 - 000000000 ____D C:\Program Files\WinRAR
2024-10-27 11:54 - 2021-09-26 15:29 - 000001153 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2024-10-27 11:54 - 2021-09-26 15:29 - 000001105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2024-10-27 11:54 - 2021-09-26 15:29 - 000000000 ____D C:\Program Files (x86)\CDBurnerXP
2024-10-23 10:53 - 2021-11-12 19:33 - 001202232 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSP.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000550456 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswNetHub.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000307256 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswVmm.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000294960 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsh.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000273976 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswMonFlt.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000097848 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRdr2.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000084536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbuniv.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000069176 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRvrt.sys
2024-10-23 10:53 - 2021-11-12 19:33 - 000028752 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswKbd.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000951352 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSnx.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000381496 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsdriver.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000233016 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArPot.sys
2024-10-23 10:52 - 2021-11-12 19:33 - 000020536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArDisk.sys
2024-10-23 10:50 - 2024-10-17 19:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2024-10-23 10:50 - 2021-12-05 15:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-10-23 10:50 - 2009-07-14 06:08 - 000032532 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2024-10-20 07:39 - 2019-11-06 10:03 - 000000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics

==================== Files in the root of some directories ========

2019-11-18 20:32 - 2023-03-04 15:50 - 000023552 _____ () C:\Users\HP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2023-12-28 09:06 - 2023-10-19 22:17 - 000000036 _____ () C:\Users\HP\AppData\Local\_LOCAL_GUID

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2024-11-14 10:20
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2024
Ran by HP (19-11-2024 19:05:34)
Running from C:\Users\HP\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X64) (2019-10-24 13:51:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-671632164-325227383-1259036689-500 - Administrator - Disabled)
Guest (S-1-5-21-671632164-325227383-1259036689-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-671632164-325227383-1259036689-1002 - Limited - Enabled)
HP (S-1-5-21-671632164-325227383-1259036689-1000 - Administrator - Enabled) => C:\Users\HP

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
7-Zip 24.08 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2408-000001000000}) (Version: 24.08.00.0 - Igor Pavlov)
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 24.004.20272 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Any Video Converter 9.0.4 (HKLM-x32\...\Any Video Converter) (Version: 9.0.4 - Anvsoft)
Apple Mobile Device Support (HKLM\...\{AAFEC555-4154-4A21-9523-30B8CDE94533}) (Version: 18.0.0.33 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.21.5 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.10.6133 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1631.4 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite DCP-195C (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 6.30 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP)
FormatFactory 5.6.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.6.5.0 - Free Time)
GL USB2.0 UVC Camera Device (HKLM-x32\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 1.0.0.0 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
HP 3D DriveGuard (HKLM\...\{EE6D6D5E-539C-44B6-BEF0-AA7C20DE170B}) (Version: 5.1.12.1 - Hewlett-Packard Company)
HP Hotkey Support (HKLM-x32\...\{963F09EA-0B0A-4CFC-B04F-AD9B6614794C}) (Version: 6.2.39.1 - HP)
HP Webcam HD 2300 Software (HKLM-x32\...\{74E6771A-47B5-433E-A96F-15E29F70F920}) (Version: 1.00.0000 - Hewlett-Packard)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
IrfanView 4.70 (64-bit) (HKLM\...\IrfanView64) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KONICA MINOLTA PagePro 1300W (HKLM\...\KONICA MINOLTA PagePro 1300W) (Version: - )
Lenovo EasyCamera (HKLM-x32\...\{E8266049-8C7B-4A09-9E11-8BD100E0076A}) (Version: 8.0.1.2379 - GenesysLogic)
Microsoft .NET Framework 4.8 (CSY) (HKLM\...\{39DC4515-B8C1-3AD9-AA88-D7C8A333612F}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Security Client (HKLM\...\{2AA3C13E-0531-41B8-AE48-AE28C940A809}) (Version: 4.10.0209.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23026 (HKLM\...\{BC958BD2-5DAC-3862-BB1A-C1BE0790438D}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23026 (HKLM\...\{0D3E9E15-DE7A-300B-96F1-B4AF12B96488}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.1.0 - Mozilla)
Mozilla Thunderbird (x64 en-US) (HKLM\...\Mozilla Thunderbird 115.16.2 (x64 en-US)) (Version: 115.16.2 - Mozilla)
MP3 Skype recorder v.6 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\MP3SkypeRecorder) (Version: 6.1.5 - Domit LTD)
Nero ControlCenter (HKLM-x32\...\{ABC88553-8770-4B97-B43E-5A90647A5B63}) (Version: 11.4.2006 - Nero AG) Hidden
Nero Core (HKLM-x32\...\{EF1C9DB5-D928-4F38-89DE-B1BB8911462E}) (Version: 1.0.01700 - Nero AG)
Nero Core Components (HKLM-x32\...\{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.7.3045 - Nero AG) Hidden
Nero KnowHow PLUS (HKLM-x32\...\{AACDE618-4162-4074-B01D-67C5E8D07233}) (Version: 1.3.5005 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{7BC834B5-9093-4A6D-8303-01760E4E61B2}) (Version: 20.1.1020 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 20.0.1006 - Nero AG) Hidden
Odinstalace tiskárny EPSON Stylus SX200 Series (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
OpenOffice 4.1.15 (HKLM-x32\...\{45B154A5-9E97-452F-94DE-08EBE6BD0D85}) (Version: 4.115.9813 - Apache Software Foundation)
Opera Stable 77.0.4054.277 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 77.0.4054.277) (Version: 77.0.4054.277 - Opera Software)
Opera Stable 95.0.4635.90 (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Opera 95.0.4635.90) (Version: 95.0.4635.90 - Opera Software)
PredatorCreator verze 2.3.9.0 (HKLM-x32\...\PredatorCreator_is1) (Version: 2.3.9.0 - )
Prohlížeč Seznam.cz (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\Seznam Browser) (Version: 6.24.3 - Seznam.cz a.s.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
Skype verze 8.132 (HKLM-x32\...\Skype_is1) (Version: 8.132 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Viber (HKLM-x32\...\{A91FC964-07DF-4856-99FA-FDF33DE9D16C}) (Version: 11.8.0.60 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\{a388723b-b292-4b27-987e-dd5cee72be11}) (Version: 11.8.0.60 - Viber Media S.a.r.l)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.691 - McAfee, LLC)
WhatsApp (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\WhatsApp) (Version: 2.2306.9 - WhatsApp)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)

Chrome apps:
============
TikTok (HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\004ce63915fc9acbf754487309c151af) (Version: 1.0 - Google\Chrome)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-671632164-325227383-1259036689-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-10-23] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\HP\Desktop\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TikTok.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc

==================== Loaded Modules (Whitelisted) =============

2024-08-11 18:00 - 2024-08-11 18:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000058368 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MIMF64_N.dll
2011-06-14 17:13 - 2011-03-29 14:05 - 000115200 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MLMN64_N.DLL
2011-06-14 17:13 - 2011-03-04 10:13 - 000115712 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MSPO64_N.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000050176 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\System32\MTAG64_N.dll
2011-06-14 17:13 - 2011-03-04 10:13 - 000056832 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\MIPR64_N.DLL
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\MSVCP140.dll
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\ucrtbase.DLL
2021-11-12 19:33 - 2021-11-12 19:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\VCRUNTIME140.dll
2024-11-19 18:36 - 2024-11-19 18:36 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\Avast Software\Avast\defs\24111904\avast.local_vc142.crt\VCRUNTIME140_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) =============

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2022-03-31] (McAfee, LLC -> McAfee, LLC)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-671632164-325227383-1259036689-1000\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2021-12-02 00:34 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-671632164-325227383-1259036689-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{D3A894DB-018F-47AB-A7C2-3903E9CF0833}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{88168338-C954-404E-BB82-3249649A9FCA}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{3EE278F6-EB1F-48FE-8AD2-B09BC567F37C}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{C6C48C4E-878F-4313-A843-4BC26E5D3686}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{0506BDDE-950B-4071-8982-D576CD01DBFE}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{ADEE4E27-A9C6-4225-B4B2-F27208325616}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{53C60C09-143F-4D24-B4C2-07E74F83B6D9}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{1243158D-51B7-48E8-A2F3-A2CC5EA1164A}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{7D9607B0-3619-41A1-A64A-3A04B251023B}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{0AFAFCFC-5327-4165-AF59-879F2BF87728}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{C2E3B327-1F9C-4F64-B17D-58756F88A653}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{F6C2A46D-805E-430D-8DAA-BB54C7B2FD47}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{BA18EF4A-7439-4F34-A70C-190F03DB4C7D}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [UDP Query User{D435E0CE-1927-449A-AA1A-A23FC257E650}C:\users\hp\appdata\local\viber\qtwebengineprocess.exe] => (Block) C:\users\hp\appdata\local\viber\qtwebengineprocess.exe (Viber Media S.à r.l. -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{DDACAD40-F36E-4284-8508-C04A21629D87}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [UDP Query User{FB661B80-E433-488E-9092-9A79D77F1156}C:\users\hp\appdata\local\viber\viber.exe] => (Allow) C:\users\hp\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [TCP Query User{2D8E8AF6-B8AD-4387-9282-9F18ED279EE9}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{52C72881-1CED-4F94-AA1B-4AE07D2590E1}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{8C645C3A-5160-41C3-9790-C7EB84B580F4}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E8508B6B-5A8D-4246-B3C6-96D56124124F}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{51B10772-9FE0-4FF7-B597-00EB9C7D7C26}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E756117C-E1F5-4925-8D4F-1219A35F7C65}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [{9B9BC33E-559F-49C0-83A5-ED25D5E1778F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E0745099-D81D-408F-983F-46230853AC68}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5356089F-E214-4EBF-B85A-09747D0A355A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E3C4D874-8FC6-4602-B74D-6CBD979BC104}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{080AE790-A2DD-4CE6-AD4D-41F9C1DF7072}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\77.0.4054.203\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{C5DD63B1-53E5-4D1D-A797-FC0076EB420F}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48EF909E-E9D1-4A4D-85B9-B5EF55303495}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{F933C2D6-C751-4628-A609-0DD57C2870FA}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{68DA4FD1-6624-4C75-8517-75F8F76E9E0E}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [{0A64DEB8-16C1-4218-AB0E-1C04416345BB}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{4C9E4063-C2EF-423E-9D02-4D6FAF0E66EF}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{D17FBDF1-30E2-4B1D-80DD-E88870BB720D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{2FE2D000-7198-46A7-9D52-C020A5987B4D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{6FA57F77-14B1-4235-9CA4-F2A4BD1D9F47}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{B3023066-8296-440B-A880-3B571154928D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{748D3A51-037B-439A-BDEB-01ADBEDB1204}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{056F2932-114E-4C40-9F75-79D8CD8AD7F2}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [{35358941-A9E1-4A6B-B1B5-5E82EB83829D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{427D3D67-7F26-4C16-A96E-428EBF243C4C}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [UDP Query User{11EA66BF-101B-4745-9A3D-C4541F5532CF}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [TCP Query User{5620BA99-6828-4EA3-BCE4-CAB39360201D}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [UDP Query User{263D01CA-EE67-4913-8018-FE7909B19F90}C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe] => (Allow) C:\users\hp\appdata\roaming\seznam browser\seznam.cz.exe (Seznam.cz, a.s. -> Seznam.cz)
FirewallRules: [{5A02DB45-D0B0-4D7D-AF10-8478546AAD44}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D06566CC-B948-43FC-BEE9-DF894A7A5B24}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\95.0.4635.84\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{8A647DCA-EC40-4503-A1AB-3B57A9EBE888}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{8DEE86F6-79A7-4AC7-A90E-072F520049EE}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [{E4F1BA21-D763-4644-8BF6-AA4467C3FC93}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{42B0009F-A62F-4CA0-98CE-0EB13FB41890}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B2919BBB-B852-477F-B9DE-30865EDBEEC8}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\95.0.4635.90\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{95057BD6-B040-45D9-AC98-38749AEBCACA}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{8C79B1E9-9331-4625-A9E5-18E02DD075BB}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{1776C13C-A11D-4A5C-8A2C-8A48155DFA02}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48820952-4FC9-4ECC-9A44-2254EB9DBAB7}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File
FirewallRules: [{E03A80ED-FB4F-49E3-99EB-559350FD7D64}] => (Allow) C:\Users\HP\AppData\Roaming\uTorrent\uTorrent.exe (Zdenek Svub -> BitTorrent, Inc.)
FirewallRules: [{86C32B23-C3CC-433E-89EC-8E531013ED64}] => (Allow) C:\Users\HP\AppData\Roaming\uTorrent\uTorrent.exe (Zdenek Svub -> BitTorrent, Inc.)
FirewallRules: [TCP Query User{2B391957-A3BA-4023-8650-5A12D8659949}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{9B0E6FE5-4A69-4DEB-A420-95DC7C8C7E16}C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\hp\desktop\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{1A3E95E7-4777-4F4B-A969-F5FBEEBA9B99}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{78D73197-DFE6-4710-BF41-B2E0684856A7}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

17-11-2024 05:07:40 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (11/19/2024 07:04:27 PM) (Source: VSS) (EventID: 12297) (User: )
Description: Chyba služby Stínová kopie svazku: Po dobu vytváření stínové kopie na svazku \\?\Volume{2723956d-f665-11e9-9394-806e6f6e6963}\ nelze zapsat vstupně-výstupní zápisy.
Index svazku v sadě stínové kopie: 0. Podrobnosti o chybě: Otevřeno[0x00000000, Operace byla dokončena úspěšně.
], Zapsáno[0x80042302, V součásti Stínová kopie svazku došlo k neočekávané chybě.
Další informace získáte v protokolu událostí aplikace.
], Uvolněno[0x00000000, Operace byla dokončena úspěšně.
], Spuštěno[0x00000000, Operace byla dokončena úspěšně.
].


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (11/19/2024 07:04:27 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Chyba služby Stínová kopie svazků: Neočekávaná chyba DeviceIoControl(\\?\Volume{2723956d-f665-11e9-9394-806e6f6e6963} - 0000000000000240,0x0053c000,000000000038DD00,0,000000000038ED10,4096,[0]). hr = 0x80070005, Přístup byl odepřen..

Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: calling flush-and-hold IOCTL
Aktuální stav: flush-and-hold writes
Název svazku: \\?\Volume{2723956d-f665-11e9-9394-806e6f6e6963}\

Error: (11/19/2024 04:29:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 841095

Error: (11/19/2024 04:29:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 841095

Error: (11/19/2024 04:29:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/19/2024 03:41:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 41839

Error: (11/19/2024 03:41:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 41839

Error: (11/19/2024 03:41:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (11/19/2024 07:09:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/19/2024 07:09:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (11/19/2024 07:09:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/19/2024 07:09:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (11/19/2024 07:09:48 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (11/19/2024 07:09:48 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/19/2024 07:09:47 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (11/19/2024 07:09:47 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.


Windows Defender:
================Event[0]:

Date: 2019-11-02 08:36:10.699
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-11-01 12:33:34.092
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-31 14:41:50.684
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-29 12:02:31.399
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2019-10-27 06:50:55.213
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16500.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68ICF Ver. F.32 12/05/2012
Motherboard: Hewlett-Packard 17A7
Processor: Intel(R) Core(TM) i5-3320M CPU @ 2.60GHz
Percentage of memory in use: 56%
Total physical RAM: 8055.55 MB
Available physical RAM: 3531.15 MB
Total Virtual: 16109.25 MB
Available Virtual: 10808.88 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:21.54 GB) (Model: Patriot Burst ATA Device) NTFS

\\?\Volume{2723956c-f665-11e9-9394-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: F1D3BAFD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\...\Windows x64\Print Processors\MIPR64_Q: MIPR64_Q.DLL (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {392815FF-29C4-4E5C-9A6A-DB60C5A6411A} - System32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D} => C:\Program Files (x86)\iTunes\iTunes.exe (No File)
Task: {87841E93-5D65-4C19-93D0-C917162FCBC9} - System32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Downloads\irfanview_lang_czech.exe -d C:\Users\HP\Downloads
Task: {ADCAF5AF-F505-48D5-BE26-F4D851D0602F} - System32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.exe -d C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4
Task: {617AF69E-9421-4CFE-A2E4-94B74152E6F2} - System32\Tasks\{C4F60685-8378-428C-BC58-A38C53BCBA46} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\AppData\Local\Temp\jre-8u371-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] <==== ATTENTION
U1 aswbdisk; no ImagePath
S2 MLPTDR_N; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
S2 MLPTDR_Q; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\HP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [TCP Query User{D3A894DB-018F-47AB-A7C2-3903E9CF0833}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{88168338-C954-404E-BB82-3249649A9FCA}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{3EE278F6-EB1F-48FE-8AD2-B09BC567F37C}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{C6C48C4E-878F-4313-A843-4BC26E5D3686}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{0506BDDE-950B-4071-8982-D576CD01DBFE}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{ADEE4E27-A9C6-4225-B4B2-F27208325616}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{53C60C09-143F-4D24-B4C2-07E74F83B6D9}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{1243158D-51B7-48E8-A2F3-A2CC5EA1164A}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{7D9607B0-3619-41A1-A64A-3A04B251023B}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{0AFAFCFC-5327-4165-AF59-879F2BF87728}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{C2E3B327-1F9C-4F64-B17D-58756F88A653}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{F6C2A46D-805E-430D-8DAA-BB54C7B2FD47}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{2D8E8AF6-B8AD-4387-9282-9F18ED279EE9}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{52C72881-1CED-4F94-AA1B-4AE07D2590E1}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{8C645C3A-5160-41C3-9790-C7EB84B580F4}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E8508B6B-5A8D-4246-B3C6-96D56124124F}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{51B10772-9FE0-4FF7-B597-00EB9C7D7C26}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E756117C-E1F5-4925-8D4F-1219A35F7C65}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{C5DD63B1-53E5-4D1D-A797-FC0076EB420F}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48EF909E-E9D1-4A4D-85B9-B5EF55303495}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{F933C2D6-C751-4628-A609-0DD57C2870FA}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{68DA4FD1-6624-4C75-8517-75F8F76E9E0E}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [TCP Query User{748D3A51-037B-439A-BDEB-01ADBEDB1204}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{056F2932-114E-4C40-9F75-79D8CD8AD7F2}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{8A647DCA-EC40-4503-A1AB-3B57A9EBE888}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{8DEE86F6-79A7-4AC7-A90E-072F520049EE}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{1776C13C-A11D-4A5C-8A2C-8A48155DFA02}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48820952-4FC9-4ECC-9A44-2254EB9DBAB7}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-11-2024
Ran by HP (19-11-2024 22:39:54) Run:1
Running from C:\Users\HP\Desktop
Loaded Profiles: HP
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\...\Windows x64\Print Processors\MIPR64_Q: MIPR64_Q.DLL (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {392815FF-29C4-4E5C-9A6A-DB60C5A6411A} - System32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D} => C:\Program Files (x86)\iTunes\iTunes.exe (No File)
Task: {87841E93-5D65-4C19-93D0-C917162FCBC9} - System32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Downloads\irfanview_lang_czech.exe -d C:\Users\HP\Downloads
Task: {ADCAF5AF-F505-48D5-BE26-F4D851D0602F} - System32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.exe -d C:\Users\HP\Desktop\FreeRapid-0.9u4\FreeRapid-0.9u4
Task: {617AF69E-9421-4CFE-A2E4-94B74152E6F2} - System32\Tasks\{C4F60685-8378-428C-BC58-A38C53BCBA46} => C:\Windows\System32\pcalua.exe [9728 2019-06-12] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Users\HP\AppData\Local\Temp\jre-8u371-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] <==== ATTENTION
U1 aswbdisk; no ImagePath
S2 MLPTDR_N; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
S2 MLPTDR_Q; C:\Windows\system32\ [0 0000-00-00] () <==== ATTENTION [zero byte File/Folder]
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\HP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [TCP Query User{D3A894DB-018F-47AB-A7C2-3903E9CF0833}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [UDP Query User{88168338-C954-404E-BB82-3249649A9FCA}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => No File
FirewallRules: [TCP Query User{3EE278F6-EB1F-48FE-8AD2-B09BC567F37C}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{C6C48C4E-878F-4313-A843-4BC26E5D3686}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{0506BDDE-950B-4071-8982-D576CD01DBFE}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{ADEE4E27-A9C6-4225-B4B2-F27208325616}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{53C60C09-143F-4D24-B4C2-07E74F83B6D9}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{1243158D-51B7-48E8-A2F3-A2CC5EA1164A}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{7D9607B0-3619-41A1-A64A-3A04B251023B}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{0AFAFCFC-5327-4165-AF59-879F2BF87728}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{C2E3B327-1F9C-4F64-B17D-58756F88A653}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{F6C2A46D-805E-430D-8DAA-BB54C7B2FD47}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{2D8E8AF6-B8AD-4387-9282-9F18ED279EE9}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{52C72881-1CED-4F94-AA1B-4AE07D2590E1}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{8C645C3A-5160-41C3-9790-C7EB84B580F4}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E8508B6B-5A8D-4246-B3C6-96D56124124F}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{51B10772-9FE0-4FF7-B597-00EB9C7D7C26}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{E756117C-E1F5-4925-8D4F-1219A35F7C65}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{C5DD63B1-53E5-4D1D-A797-FC0076EB420F}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48EF909E-E9D1-4A4D-85B9-B5EF55303495}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{F933C2D6-C751-4628-A609-0DD57C2870FA}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{68DA4FD1-6624-4C75-8517-75F8F76E9E0E}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [TCP Query User{748D3A51-037B-439A-BDEB-01ADBEDB1204}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{056F2932-114E-4C40-9F75-79D8CD8AD7F2}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{8A647DCA-EC40-4503-A1AB-3B57A9EBE888}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{8DEE86F6-79A7-4AC7-A90E-072F520049EE}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe] => (Block) C:\program files\java\jre-1.8\launch4j-tmp\frd.exe => No File
FirewallRules: [TCP Query User{1776C13C-A11D-4A5C-8A2C-8A48155DFA02}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File
FirewallRules: [UDP Query User{48820952-4FC9-4ECC-9A44-2254EB9DBAB7}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe] => (Allow) C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Environments\Windows x64\Print Processors\MIPR64_Q => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{392815FF-29C4-4E5C-9A6A-DB60C5A6411A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{392815FF-29C4-4E5C-9A6A-DB60C5A6411A}" => removed successfully
C:\Windows\System32\Tasks\{3024340E-70B9-4E4F-A340-7D71B207311D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3024340E-70B9-4E4F-A340-7D71B207311D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{87841E93-5D65-4C19-93D0-C917162FCBC9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87841E93-5D65-4C19-93D0-C917162FCBC9}" => removed successfully
C:\Windows\System32\Tasks\{5A429414-9D9A-4367-9D8E-22E2E3707AC2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5A429414-9D9A-4367-9D8E-22E2E3707AC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ADCAF5AF-F505-48D5-BE26-F4D851D0602F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ADCAF5AF-F505-48D5-BE26-F4D851D0602F}" => removed successfully
C:\Windows\System32\Tasks\{7375B543-2C2D-41BD-9E36-772AC79B736B} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7375B543-2C2D-41BD-9E36-772AC79B736B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{617AF69E-9421-4CFE-A2E4-94B74152E6F2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{617AF69E-9421-4CFE-A2E4-94B74152E6F2}" => removed successfully
C:\Windows\System32\Tasks\{C4F60685-8378-428C-BC58-A38C53BCBA46} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C4F60685-8378-428C-BC58-A38C53BCBA46}" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\DCIService => removed successfully
DCIService => service removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\MLPTDR_N => removed successfully
MLPTDR_N => service removed successfully
HKLM\System\CurrentControlSet\Services\MLPTDR_Q => removed successfully
MLPTDR_Q => service removed successfully
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Users\HP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\FormatFactoryShell => removed successfully
HKLM\Software\Classes\CLSID\{A3888923-CFD3-4A6B-89BF-08E6B95716E8} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\FormatFactoryShell => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D3A894DB-018F-47AB-A7C2-3903E9CF0833}C:\program files\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{88168338-C954-404E-BB82-3249649A9FCA}C:\program files\java\jre1.8.0_231\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3EE278F6-EB1F-48FE-8AD2-B09BC567F37C}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C6C48C4E-878F-4313-A843-4BC26E5D3686}C:\program files\java\jre1.8.0_231\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0506BDDE-950B-4071-8982-D576CD01DBFE}C:\program files\java\jre1.8.0_241\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ADEE4E27-A9C6-4225-B4B2-F27208325616}C:\program files\java\jre1.8.0_241\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{53C60C09-143F-4D24-B4C2-07E74F83B6D9}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1243158D-51B7-48E8-A2F3-A2CC5EA1164A}C:\program files\java\jre1.8.0_241\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7D9607B0-3619-41A1-A64A-3A04B251023B}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0AFAFCFC-5327-4165-AF59-879F2BF87728}C:\program files\java\jre1.8.0_251\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C2E3B327-1F9C-4F64-B17D-58756F88A653}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F6C2A46D-805E-430D-8DAA-BB54C7B2FD47}C:\program files\java\jre1.8.0_261\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2D8E8AF6-B8AD-4387-9282-9F18ED279EE9}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{52C72881-1CED-4F94-AA1B-4AE07D2590E1}C:\program files\java\jre1.8.0_271\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8C645C3A-5160-41C3-9790-C7EB84B580F4}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E8508B6B-5A8D-4246-B3C6-96D56124124F}C:\program files\java\jre1.8.0_281\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{51B10772-9FE0-4FF7-B597-00EB9C7D7C26}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E756117C-E1F5-4925-8D4F-1219A35F7C65}C:\program files\java\jre1.8.0_291\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C5DD63B1-53E5-4D1D-A797-FC0076EB420F}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48EF909E-E9D1-4A4D-85B9-B5EF55303495}C:\program files\java\jre1.8.0_311\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F933C2D6-C751-4628-A609-0DD57C2870FA}C:\program files\java\jre1.8.0_311\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{68DA4FD1-6624-4C75-8517-75F8F76E9E0E}C:\program files\java\jre1.8.0_311\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{748D3A51-037B-439A-BDEB-01ADBEDB1204}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{056F2932-114E-4C40-9F75-79D8CD8AD7F2}C:\program files\java\jre1.8.0_321\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8A647DCA-EC40-4503-A1AB-3B57A9EBE888}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8DEE86F6-79A7-4AC7-A90E-072F520049EE}C:\program files\java\jre-1.8\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1776C13C-A11D-4A5C-8A2C-8A48155DFA02}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48820952-4FC9-4ECC-9A44-2254EB9DBAB7}C:\program files\java\jre1.8.0_421\launch4j-tmp\frd.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 44933880 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 842767 B
Edge => 0 B
Chrome => 393692043 B
Firefox => 0 B
Opera => 15538442 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33125 B
systemprofile32 => 66672 B
LocalService => 99797 B
NetworkService => 141796 B
HP => 502093734 B

RecycleBin => 0 B
EmptyTemp: => 913.1 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 19-11-2024 22:43:11)


Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

==== End of Fixlog 22:43:11 ====

Smazáno. Nastala nějaká změna?

Určitě ano alespoň ty nesmyslné hlášky přestaly vyskakovat.
Jedno však nemohu za nic na světě obnovit a to je v prohlížeči Chrome mi zmizlo rozšíření v pravém horním rohu na upozornění příchozího e-mailu od seznam.cz. Po spuštění FRST najednou toto rozšíření zmizlo.
Jinak mockrát děkuji za obětavou pomoc a kdyby se s tím rozšířením dalo něco dělat byl bych nesmírně rád.

Zmazal to Adwcleaner:

***** [ Chromium (and derivatives) ] *****

Deleted Seznam Doplněk – Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig

Ak to mas v karantene Adwc, tak to pojde obnovit

Díky za nakopnutí, trochu jsem to popletl že mi to smazalo při spuštění FRST. Nyní jsem spustil ten Adwcleaner, otevřel karanténu a jsou tam 4 položky, jedna z nich asi bude ten doplněk viď?

PUP.Optional.Seznam.cz , ten mám označit a kliknout na "Obnovit" ?

Ano

Pozn.: Všelijaké utility od Seznamu, někdy nejsou příliš prospěšné chodu systému. Určitě vás moc nezdrží občasné otevření mailu a zkontrolování. Osobně tyto utility nepoužívám. Ale jak řekl kolega, obnovit tu utilitu od Seznamu bude možné.

Děkuji Vám moc oběma za nezištnou pomoc a přeji hodně úspěchů ve všem.

I za kolegu: Nemáte zač!