Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-06-2021
Ran by Jirka (administrator) on DESKTOP-5L00R9K (LENOVO 90F1001FCK) (11-06-2021 10:51:13)
Running from C:\Users\Jirka\Downloads
Loaded Profiles: Jirka
Platform: Windows 10 Home Version 2004 19041.985 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <4>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(FileOpen Systems Inc. -> FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
(FileOpen Systems Inc. -> FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManager64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <6>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Schneider Electric -> Schneider Electric) [File not signed] C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe
(Schneider Electric -> Schneider Electric) [File not signed] C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
(Schneider Electric -> Schneider Electric) [File not signed] C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
(Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Solitea, a.s. -> Solitea Česká republika, a.s.) C:\Program Files (x86)\Solitea\Money S3 START\MS3Auto.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Skd8821] => C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Skd8821.exe [2203648 2015-07-24] (LITE-ON TECHNOLOGY CORP.) [File not signed]
HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [1459160 2017-02-03] (FileOpen Systems Inc. -> FileOpen Systems Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [170240 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2710856 2009-11-02] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-09-04] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-05] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Display] => C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [480176 2019-06-07] (Schneider Electric -> Schneider Electric) [File not signed]
HKU\S-1-5-21-3534509474-1781900124-1265873159-1001\...\Run: [VideoDownloadCapture] => C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe [6540952 2018-09-11] (Apowersoft Ltd -> Apowersoft)
HKU\S-1-5-21-3534509474-1781900124-1265873159-1001\...\Run: [S3AutomaticSTART] => C:\Program Files (x86)\Solitea\Money S3 START\MS3Auto.exe [18470160 2021-06-07] (Solitea, a.s. -> Solitea Česká republika, a.s.)
HKU\S-1-5-21-3534509474-1781900124-1265873159-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-3534509474-1781900124-1265873159-1001\...\Policies\Explorer: [NoDrives] 00000007
HKU\S-1-5-21-3534509474-1781900124-1265873159-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [S3AutomaticSTART] => C:\Program Files (x86)\Solitea\Money S3 START\MS3Auto.exe [18470160 2021-06-07] (Solitea, a.s. -> Solitea Česká republika, a.s.)
HKLM\...\Windows x64\Print Processors\Canon iP2700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA4.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon TR7500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDM.DLL [482816 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor TR7500 series: C:\WINDOWS\system32\CNCALDM.DLL [254464 2017-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP2700 series: C:\WINDOWS\system32\CNMLMA4.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TR7500 series: C:\WINDOWS\system32\CNMLMDM.DLL [1302016 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [36864 2014-02-05] (Windows (R) Win 7 DDK provider) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-04] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk [2020-06-05]
ShortcutTarget: APC UPS Status.lnk -> C:\Program Files (x86)\APC\PowerChute Personal Edition\Display.exe (Schneider Electric -> Schneider Electric) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00FDF91E-C920-45A1-AF1E-57B30284CAE6} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Jirka\Downloads\esetonlinescanner_csy.exe
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" was unlocked. <==== ATTENTION
Task: {05FBFE8A-42D0-4A2C-8B37-3295BFA67E7B} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5}
Task: {0FD1BC1D-A5EA-4D27-BBC3-76C374EF6DD8} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {1ACB8312-4BFB-4451-9781-BC44E4F4E8BA} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1C0D7B9E-763F-4513-ADEB-6ABA8F0E4342} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {20361C2D-0F12-4CDA-8C85-CB25FEAC59B1} - System32\Tasks\Lenovo\SHUpdate => C:\Program Files (x86)\Lenovo\SHAREit\ShareitUpdater.exe [808352 2015-07-13] (LENOVO -> )
Task: {2B0D86BC-ACAD-48F0-A7AD-2DA63BA518E9} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [10893616 2021-05-20] (Lespeed Technology Co., Ltd -> WiseCleaner.com)
Task: {2C1FF07A-F624-4FDD-89F9-0722E2D22169} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {2C96D69E-F04F-44AF-B789-F69DD83BFF37} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b27ebeb0-94c1-455c-afa4-c36988e0cdfc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {4C1FC051-E796-4FEC-BE27-157F460E2265} - System32\Tasks\McAfeeLogon => C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe
Task: {510F3BAA-A506-4247-9E85-7B1CD1D8BCD5} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-30] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {54BAA605-C90B-4AD6-87A9-9FF286CC58D7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\afcb7e78-4c49-4dad-8819-f0ea6b9c28ca => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {645168DA-3C25-4EB7-81AE-3D66483A9DC8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-02] (LENOVO -> Lenovo)
Task: {6C54581A-877F-483F-85C1-281FDA806B73} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [4856576 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {6D8AB2F4-E982-4C3D-A566-DD72855F94CF} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Jirka\Downloads\esetonlinescanner_csy.exe
Task: {7B8BA506-F852-4FBB-AFAE-5655FD560692} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {7B9DA3F6-D96A-4E61-ADC2-7190C07AE277} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f0f3e6bc-9999-4aad-8306-1b2f1a55159a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Antivirus Emergency Update" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\ebtools" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\eM Client Database Backup (S-1-5-21-3534509474-1781900124-1265873159-1001)" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\EOSv3 Scheduler onLogOn" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\EOSv3 Scheduler onTime" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\McAfeeLogon" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\PDVDServ12 Task" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\RtHDVBg_LENOVO_MICPKEY" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\RTKCPL" /ENABLE
Task: {7D9B6972-7ED5-4D1B-AEFC-23D117B8689F} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {7E27F6A4-9573-4404-BDFE-2CCD4F5FA655} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144456 2021-05-19] (Lenovo -> Lenovo Group Ltd.)
Task: {8BCD6FA9-8801-4829-8B81-671643E71E95} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe
Task: {9EA23479-D2D4-4275-8E73-27C9559986B0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\894747ce-bb75-4f70-9b9f-0f721737a80b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {A084237B-4EB6-4B2A-8124-21BE626F5FC8} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [287688 2017-03-08] (LENOVO -> Lenovo)
Task: {B2CD0492-524D-4271-A453-0CBEDDBAC96E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-20] (Google LLC -> Google LLC)
Task: {BE17C831-BE9E-4573-A8A4-687253E79E0F} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\ScheduleEventAction.exe [23968 2021-05-17] (Lenovo -> Lenovo Group Ltd.)
Task: {C13DAD95-387B-4AF0-8DAB-48C04132853E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16412952 2015-09-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {C5D2D632-DB40-4479-94C1-F7F223A0F2E7} - System32\Tasks\eM Client Database Backup (S-1-5-21-3534509474-1781900124-1265873159-1001) => C:\Program Files (x86)\eM Client\MailClient.exe [253600 2021-06-02] (eM Client, s.r.o. -> eM Client s.r.o.)
Task: {C7FAE1A4-06E0-451D-A334-94334969CAAF} - System32\Tasks\RtHDVBg_LENOVO_MICPKEY => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1413384 2015-09-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {D1B06344-13D7-44D3-A8CA-84BF64F279CB} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C}
Task: {D2F8D7C6-79D9-4564-A69B-D0352056F816} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {DE04CF9D-E91D-47B1-904F-0CFE68737BAD} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {E3A03211-3A39-4663-AC25-E2FEEF51F95D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62392 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {E817DB57-C9C5-4337-B95C-C8443B946046} - System32\Tasks\Lenovo\SHPrompt => C:\Program Files (x86)\Lenovo\SHAREit\ShareitPrompt.exe [829344 2015-07-13] (LENOVO -> )
Task: {F3718CF8-1A1B-4429-B534-A19BCFFC491E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {F881B307-B704-42B4-824E-6F06FD960B01} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-20] (Google LLC -> Google LLC)
Task: {F904407E-2758-4D99-9422-9D31574BD215} - System32\Tasks\ebtools => C:\Program Files (x86)\EUROBYTE TOOLS\vp4.exe
Task: {FA86FB7D-7CA1-4978-866F-34E8BC1B9892} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 79.98.72.27 79.98.72.2
Tcpip\..\Interfaces\{e178b505-66bd-4d4e-804d-8e2a74cb8464}: [DhcpNameServer] 79.98.72.27 79.98.72.2

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jirka\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-30]
Edge HomePage: Default -> hxxp://www.idnes.cz/
Edge StartupUrls: Default -> "hxxp://www.blesk.cz/"
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: v7lb8ezr.default-1614698427935
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\v7lb8ezr.default-1614698427935 [2021-06-11]
FF Homepage: Mozilla\Firefox\Profiles\v7lb8ezr.default-1614698427935 -> www.idnes.cz
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default [2021-06-11]
CHR StartupUrls: Default -> "hxxps://sledovanitv.cz/home#ct1"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G10&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Překladač Google) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-06-25]
CHR Extension: (Dokumenty) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Opera: 
=======
OPR Profile: C:\Users\Jirka\AppData\Roaming\Opera Software\Opera Stable [2019-06-01]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.cz/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 APC Data Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [14256 2019-06-07] (Schneider Electric -> Schneider Electric) [File not signed]
R2 APC UPS Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [4261808 2019-06-07] (Schneider Electric -> Schneider Electric) [File not signed]
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [623360 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe [370944 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [8198768 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [153736 2017-03-02] (Canon Inc. -> CANON INC.)
R2 FileOpenManager; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [349656 2017-02-03] (FileOpen Systems Inc. -> FileOpen Systems Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [397472 2018-03-15] (Canon Inc. -> )
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\LenovoVantageService.exe [28576 2021-05-17] (Lenovo -> Lenovo Group Ltd.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.3.290.0\\McCSPServiceHost.exe [2054080 2017-02-04] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [241040 2016-11-14] (McAfee, Inc. -> McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [383032 2016-11-14] (McAfee, Inc. -> McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [342768 2016-11-14] (McAfee, Inc. -> McAfee, Inc.)
S2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1465840 2016-12-22] (McAfee, Inc. -> McAfee, Inc.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1694992 2021-06-07] (Solitea, a.s. -> Solitea Česká republika, a.s.)
S4 Sks8821; C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe [137216 2010-05-04] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [35800 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [216488 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [365592 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [250392 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [99352 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [17344 2021-05-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [41424 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [181072 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [523016 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [107936 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [83000 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851272 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [471480 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [215464 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [327104 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [88456 2016-11-18] (McAfee, Inc. -> McAfee, Inc.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [216704 2016-08-02] (McAfee, Inc. -> McAfee, Inc.)
R3 mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [484576 2016-11-18] (McAfee, Inc. -> McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [366320 2016-11-18] (McAfee, Inc. -> McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85048 2016-11-18] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [518184 2016-11-18] (McAfee, Inc. -> McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [916432 2016-11-18] (McAfee, Inc. -> McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [498152 2016-10-24] (McAfee, Inc. -> McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [109336 2016-10-24] (McAfee, Inc. -> McAfee, Inc.)
R3 mfeplk; C:\WINDOWS\system32\drivers\mfeplk.sys [110248 2016-11-18] (McAfee, Inc. -> McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254800 2016-11-18] (McAfee, Inc. -> McAfee, Inc.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-09-10] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R1 SpyEmrg; C:\WINDOWS\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\WINDOWS\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S3 SpyEmrgGuard; C:\WINDOWS\System32\Drivers\spyemrg_guard.sys [19768 2015-03-09] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2021-06-08] (Adlice -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-11 10:51 - 2021-06-11 10:57 - 000034214 _____ C:\Users\Jirka\Downloads\FRST.txt
2021-06-11 10:48 - 2021-06-11 10:55 - 000000000 ____D C:\FRST
2021-06-11 10:47 - 2021-06-11 10:47 - 002300416 _____ (Farbar) C:\Users\Jirka\Downloads\FRST64.exe
2021-06-08 13:15 - 2021-06-08 13:15 - 004553464 _____ (WiseCleaner.com ) C:\Users\Jirka\Downloads\WRCFree_10.3.5.694.exe
2021-06-04 09:35 - 2021-06-04 09:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-04 08:25 - 2021-06-08 14:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-03 10:35 - 2021-06-03 10:35 - 000087579 _____ C:\Users\Jirka\Downloads\06143620_210423_210603.pdf
2021-06-02 11:18 - 2021-06-02 11:20 - 000000994 _____ C:\Users\Jirka\Desktop\Jirka zdrav.stav.lnk
2021-06-02 11:06 - 2021-06-02 09:42 - 000114074 ____N C:\Users\Jirka\Desktop\AB291_OckovaciCertifikat.pdf
2021-05-31 07:57 - 2021-05-31 07:57 - 000215464 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2021-05-31 07:57 - 2021-05-31 07:56 - 000340224 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2021-05-28 08:24 - 2021-05-28 08:24 - 000017344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2021-05-27 10:17 - 2021-05-27 10:17 - 000093416 _____ C:\Users\Jirka\Downloads\Rámcová smlouva.pdf
2021-05-25 10:22 - 2021-05-25 10:22 - 000330187 _____ C:\Users\Jirka\Downloads\785544236.pdf
2021-05-24 19:19 - 2021-05-24 19:19 - 000434959 _____ C:\Users\Jirka\Downloads\60f2b418d6df4f7691a671eae49a0094-images.zip
2021-05-24 18:49 - 2021-05-24 18:49 - 000122013 _____ C:\Users\Jirka\Documents\OckovaciCertifikat.pdf
2021-05-23 10:54 - 2021-05-23 10:54 - 000089484 _____ C:\Users\Jirka\Downloads\mKonto_12590160_210423_210523.pdf
2021-05-19 16:39 - 2021-05-19 16:39 - 000001116 _____ C:\Users\Public\Desktop\OpenOffice 4.1.10.lnk
2021-05-19 16:39 - 2021-05-19 16:39 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.10
2021-05-19 16:29 - 2021-05-19 16:29 - 129973240 _____ C:\Users\Jirka\Downloads\Apache_OpenOffice_4.1.10_Win_x86_install_cs.exe
2021-05-16 09:02 - 2021-05-16 09:02 - 000026627 _____ C:\Users\Jirka\Documents\Lhůty revizí.odt
2021-05-15 19:28 - 2021-05-15 19:28 - 000000000 ____D C:\Users\Jirka\AppData\LocalLow\IGDump
2021-05-15 10:19 - 2021-05-15 10:19 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-15 10:18 - 2021-05-15 10:18 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-15 10:18 - 2021-05-15 10:18 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-15 10:18 - 2021-05-15 10:18 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-15 10:17 - 2021-05-15 10:17 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-15 10:17 - 2021-05-15 10:17 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-15 10:16 - 2021-05-15 10:16 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-15 10:15 - 2021-05-15 10:15 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-15 10:15 - 2021-05-15 10:15 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-15 10:15 - 2021-05-15 10:15 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-15 10:13 - 2021-05-15 10:13 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-15 10:13 - 2021-05-15 10:13 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-14 09:24 - 2021-05-14 09:25 - 034954752 _____ C:\Users\Jirka\Downloads\Elektroprumysl_kveten_2021.pdf
2021-05-12 11:30 - 2021-05-12 11:31 - 000193465 _____ C:\Users\Jirka\Documents\vi1.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-11 10:50 - 2019-02-05 09:58 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-11 10:49 - 2017-03-10 20:27 - 000000000 ____D C:\Users\Jirka\AppData\LocalLow\Mozilla
2021-06-11 10:13 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-11 09:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-11 08:37 - 2020-09-07 10:02 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-11 08:37 - 2020-09-07 10:02 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-06-11 08:37 - 2020-09-07 10:02 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-06-11 08:37 - 2020-09-07 10:02 - 000003348 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-11 08:37 - 2020-09-07 10:02 - 000003236 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-06-11 08:37 - 2020-09-07 10:02 - 000003190 _____ C:\WINDOWS\system32\Tasks\eM Client Database Backup (S-1-5-21-3534509474-1781900124-1265873159-1001)
2021-06-11 08:37 - 2020-09-07 10:02 - 000003116 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2021-06-11 08:37 - 2020-09-07 10:02 - 000003036 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2021-06-11 08:37 - 2020-09-07 10:02 - 000002656 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2021-06-11 08:37 - 2020-09-07 10:02 - 000002584 _____ C:\WINDOWS\system32\Tasks\ebtools
2021-06-11 08:37 - 2020-09-07 10:02 - 000002546 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon
2021-06-11 08:37 - 2020-09-07 10:02 - 000002396 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_LENOVO_MICPKEY
2021-06-11 08:37 - 2020-09-07 10:02 - 000002340 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2021-06-11 08:37 - 2020-09-07 10:02 - 000002272 _____ C:\WINDOWS\system32\Tasks\PDVDServ12 Task
2021-06-11 08:37 - 2020-09-07 10:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-06-11 08:28 - 2020-09-07 09:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-11 08:20 - 2017-03-17 03:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-11 08:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-11 08:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-11 08:12 - 2017-03-08 17:05 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-11 08:05 - 2017-04-29 13:08 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-06-11 08:05 - 2017-03-08 23:25 - 000000000 __SHD C:\Users\Jirka\IntelGraphicsProfiles
2021-06-10 18:49 - 2021-01-12 18:27 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\eM Client
2021-06-10 07:44 - 2021-04-26 09:47 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-09 13:34 - 2021-01-12 13:53 - 000001111 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2021-06-09 13:34 - 2021-01-12 13:51 - 000000000 ____D C:\Program Files (x86)\eM Client
2021-06-08 14:34 - 2015-10-14 16:22 - 000000000 ____D C:\ProgramData\Lenovo
2021-06-08 14:22 - 2020-09-07 09:27 - 000000000 ____D C:\Users\Jirka
2021-06-08 14:14 - 2020-09-07 10:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-08 14:14 - 2020-09-07 09:21 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-08 14:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-08 14:14 - 2017-03-10 20:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-08 13:21 - 2017-11-15 10:29 - 000028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2021-06-08 13:16 - 2020-09-07 10:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\WiseCleaner
2021-06-08 13:16 - 2020-09-05 15:40 - 000001311 _____ C:\Users\Public\Desktop\Wise Registry Cleaner.lnk
2021-06-08 13:16 - 2020-09-05 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2021-06-08 13:14 - 2020-11-26 10:45 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\WiseUpdate
2021-06-05 08:24 - 2020-06-07 09:17 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-05 08:24 - 2020-06-07 09:17 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-04 16:28 - 2018-05-02 10:46 - 000000000 ____D C:\Users\Jirka\Documents\Jirka zdrav.stav
2021-06-04 14:52 - 2020-01-20 12:31 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-04 14:52 - 2020-01-20 12:31 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-06-04 14:18 - 2017-10-23 12:36 - 000000000 ____D C:\ProgramData\CanonIJPLM
2021-06-04 09:35 - 2017-03-10 20:26 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-04 09:17 - 2017-03-28 12:10 - 000000000 ____D C:\ProgramData\Avg
2021-06-04 09:15 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-03 13:04 - 2017-03-11 12:20 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\vlc
2021-06-02 10:57 - 2017-03-10 09:31 - 000165097 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-06-01 17:57 - 2017-03-08 19:52 - 000000000 ____D C:\Users\Jirka\Documents\eM Client
2021-06-01 14:17 - 2019-08-30 16:46 - 000000000 ____D C:\tmp
2021-05-31 19:32 - 2017-03-08 20:12 - 279399919 _____ C:\Users\Jirka\Documents\zaloha.ar!
2021-05-31 17:01 - 2017-03-08 20:01 - 000000000 ____D C:\Users\Jirka\Documents\Alena
2021-05-31 16:31 - 2020-09-07 09:38 - 001693398 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-31 16:31 - 2020-07-14 19:01 - 000523016 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2021-05-31 16:31 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-31 16:31 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-31 16:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-31 16:24 - 2020-09-07 09:21 - 000482768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-31 07:57 - 2020-10-18 08:11 - 000181072 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2021-05-31 07:57 - 2020-07-14 19:01 - 000471480 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2021-05-31 07:57 - 2020-07-14 19:01 - 000107936 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2021-05-31 07:57 - 2020-07-14 19:01 - 000041424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2021-05-31 07:57 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-05-31 07:57 - 2019-01-06 21:04 - 000250392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2021-05-31 07:57 - 2019-01-06 21:04 - 000099352 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2021-05-31 07:57 - 2018-05-13 07:03 - 000327104 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2021-05-31 07:57 - 2018-05-13 07:03 - 000083000 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2021-05-31 07:56 - 2020-07-14 19:01 - 000851272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2021-05-31 07:56 - 2020-07-14 19:01 - 000365592 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2021-05-31 07:56 - 2020-07-14 19:01 - 000216488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2021-05-31 07:56 - 2019-01-06 21:04 - 000035800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2021-05-27 07:51 - 2017-12-06 11:38 - 000000000 ____D C:\Users\Jirka\AppData\Local\Packages
2021-05-24 19:13 - 2017-03-08 20:01 - 000000000 ____D C:\Users\Jirka\Desktop\Utility 10
2021-05-22 10:52 - 2017-03-08 20:12 - 000000000 ____D C:\Users\Jirka\Documents\Word z W98
2021-05-20 14:11 - 2021-04-14 09:49 - 000023167 _____ C:\Users\Jirka\Documents\šňůra.odt
2021-05-20 13:52 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2021-05-19 16:39 - 2017-11-07 19:24 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2021-05-17 11:39 - 2020-09-07 09:25 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-05-17 11:39 - 2017-03-08 16:55 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2021-05-17 11:37 - 2015-07-10 13:04 - 000000187 _____ C:\WINDOWS\win.ini
2021-05-17 11:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-05-17 11:23 - 2017-03-08 20:10 - 000000000 ____D C:\Users\Jirka\Documents\Hes
2021-05-16 00:50 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-16 00:39 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-16 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-15 20:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-05-15 10:41 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 09:32 - 2020-10-08 19:05 - 000011004 _____ C:\Users\Jirka\Documents\Bez názvu 1.odt

==================== Files in the root of some directories ========

2017-03-11 09:36 - 2019-06-03 17:29 - 000021368 _____ (Schneider Electric) C:\Users\Jirka\en_res.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000021368 _____ (Schneider Electric) C:\Users\Jirka\es_res.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000021880 _____ (Schneider Electric) C:\Users\Jirka\fr_res.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000021880 _____ (Schneider Electric) C:\Users\Jirka\grm_res.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000021368 _____ (Schneider Electric) C:\Users\Jirka\it_res.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000020344 _____ (Schneider Electric) C:\Users\Jirka\jp_res.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 001079808 _____ (Microsoft Corporation) C:\Users\Jirka\mfc80u.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000626688 _____ (Microsoft Corporation) C:\Users\Jirka\msvcr80.dll
2017-03-11 09:36 - 2019-06-03 17:30 - 013923704 _____ (Schneider Electric) C:\Users\Jirka\PCPE Setup.exe
2017-03-11 09:36 - 2019-06-03 17:29 - 000021368 _____ (Schneider Electric) C:\Users\Jirka\pt_res.dll
2017-03-11 09:36 - 2019-06-03 17:30 - 000018808 _____ () C:\Users\Jirka\ResourceReader.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000020856 _____ (Schneider Electric) C:\Users\Jirka\ru_res.dll
2017-03-11 09:36 - 2019-06-03 17:29 - 000019832 _____ (Schneider Electric) C:\Users\Jirka\zh_res.dll
2017-03-15 19:08 - 2017-03-15 19:23 - 000000045 _____ () C:\Users\Jirka\AppData\Roaming\MCVi2UserDetail.ini
2019-10-06 10:38 - 2019-10-06 10:38 - 000003584 _____ () C:\Users\Jirka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-12-29 10:51 - 2018-12-29 10:51 - 000000093 _____ () C:\Users\Jirka\AppData\Local\fusioncache.dat

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================