Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivka

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
vondra007
Návštěvník
Návštěvník
Příspěvky: 82
Registrován: 24 bře 2007 00:24

Preventivka

#1 Příspěvek od vondra007 »

Prosím o kontrolu. Děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-01-2021
Ran by vondr (administrator) on ACER (Acer Aspire A515-54) (23-01-2021 12:02:55)
Running from C:\Users\vondr\Downloads
Loaded Profiles: vondr
Platform: Windows 10 Home Version 1909 18363.1316 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SMART Technologies ULC -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\vondr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [953120 2019-12-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [209856 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2772416 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [654272 2019-12-01] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [68544 2019-11-08] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [287680 2019-12-11] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [17860720 2020-06-09] (MyHeritage (USA) Inc. -> MyHeritage)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455872 2020-06-22] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1938296 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [Discord] => C:\Users\vondr\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [movavi_suite_agent] => "C:\Users\vondr\AppData\Roaming\Movavi Video Suite 21\AgentInformer.exe"
HKLM\...\Print\Monitors\SMART Local Port: C:\Windows\system32\smrtlocalmon.dll [38336 2019-12-11] (SMART Technologies ULC -> SMART Technologies ULC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\Installer\chrmstp.exe [2021-01-15] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
Startup: C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-03-20]
ShortcutTarget: MEGAsync.lnk -> C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04F3C3E4-866C-4D2A-A7BA-911D1AAEB0F2} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [42024 2020-07-27] (Acer Incorporated -> )
Task: {063E0D4F-A169-42D1-B0D0-6D23A17987C4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {096D3188-360A-44AE-AD0E-A8B12CA94972} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {1726979B-C5CD-489F-BE1F-D13C2B9D105C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {2022ACBC-9B6B-4E83-845A-D644A1F7F084} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2051A499-55AF-40E9-A3B3-8D20AD3BB528} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3A63133B-6693-4CB2-B7A7-FCC88C32D7BE} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {402F12A1-9F43-47BD-BE21-DA3EE8817383} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4829224 2020-07-27] (Acer Incorporated -> )
Task: {41DE8B83-1F4F-40C9-B643-4F880FCCAEB0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {4DDAADA0-4CA2-4DE4-8B4C-7E6C550DF545} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {5FE2E219-EBA8-46B6-A95A-F81054A8CA79} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {6FADE556-B535-4B09-9300-5260E40CA893} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {73136951-D3EA-421A-8B36-39C07D0E4620} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2962984 2020-07-27] (Acer Incorporated -> )
Task: {76207EF4-D7A4-476C-AAF1-D17A3C9F2BB7} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1589696 2016-08-25] (Corel Corporation -> Corel Corporation)
Task: {7B966F81-F4DC-4EA6-B885-3D140F0354AF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7E2B130B-E9BA-439E-ACBB-9AC688F759D4} - System32\Tasks\App Explorer => C:\Users\vondr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7968424 2020-12-03] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {7F4414B9-004D-4202-B52B-04C054268D56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {834D74AC-9B61-4762-8C0A-E88BCDEBF722} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {8DE0C78B-7DCE-45AA-9BF5-7EE547BF8A77} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {9E4C7CCA-BDC2-4302-AB00-9C22CC5CEC55} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2776440 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4817966-D9C3-4129-A180-DD0E4D3EA406} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-10] (Acer Incorporated -> Acer Incorporated)
Task: {AA11E31D-FB1D-4214-9E59-64592C4E120F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AEFA965A-3D04-44F5-8DB6-235B26A89664} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B254A56A-7DA6-4E18-9839-8F87C485448E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {C7540E9F-992B-49BA-BD6F-B49A96C035A3} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {C89F0CE5-459B-4AF6-97B1-A17E6DCE98AA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9DE60DD-62E5-4B80-BD33-C9BB9757C30C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {D024C990-8584-4BE7-A555-0A4FAE095D04} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {DDF8A764-0C98-41FF-8073-91917C60210E} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {E3962082-6F97-4076-B540-EB981D5F9E24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED85F9E6-92A4-4947-89EA-CD2FB68DB28C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {F057957B-3FB0-4C8F-8912-B23662056E9D} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-10] (Acer Incorporated -> Acer Incorporated)
Task: {F529DC17-CC82-427D-916F-E08A16B4112E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {F5D9ED7C-22FB-406A-AEB1-B54A25166D3B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FF5CD041-D220-4605-8D4D-5B53C3652B6D} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3501418858-3935017464-633493477-1001 => C:\Users\vondr\AppData\Local\MEGAsync\MEGAupdater.exe [1303800 2020-11-17] (Mega Limited -> Mega Limited)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{4e8c78d5-12f3-471b-bd12-26482e625aea}: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{774ed856-bf70-462c-ac71-60ea5fe1934c}: [DhcpNameServer] 40.33.1.66

Edge:
=======
Edge Profile: C:\Users\vondr\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-12]

FireFox:
========
FF DefaultProfile: gteda8g8.default
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\gteda8g8.default [2020-06-06]
FF NewTab: Mozilla\Firefox\Profiles\gteda8g8.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\3zlkr7ca.default-release [2021-01-23]
FF NewTab: Mozilla\Firefox\Profiles\3zlkr7ca.default-release -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default [2021-01-23]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Prezentace) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-20]
CHR Extension: (Dokumenty) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-20]
CHR Extension: (Disk Google) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-20]
CHR Extension: (Tabulky) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-20]
CHR Extension: (Gmail) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\System Profile [2020-07-10]
CHR HKU\S-1-5-21-3501418858-3935017464-633493477-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300584 2020-07-27] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\elevation_service.exe [1409264 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2021-01-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-02-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\FileSyncHelper.exe [2191224 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\OneDriveUpdaterService.exe [2556280 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [635328 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [36936 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [208808 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [332944 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [247952 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [97424 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42568 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [176528 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [522616 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [109064 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84640 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469040 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [214936 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [325056 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 SMARTMouseFilterx64; C:\Windows\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U1 avgbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-23 12:01 - 2021-01-23 12:02 - 000053267 _____ C:\Users\vondr\Downloads\Addition.txt
2021-01-23 11:59 - 2021-01-23 12:03 - 000028648 _____ C:\Users\vondr\Downloads\FRST.txt
2021-01-23 11:59 - 2021-01-23 12:03 - 000000000 ____D C:\FRST
2021-01-23 11:58 - 2021-01-23 11:58 - 002296832 _____ (Farbar) C:\Users\vondr\Downloads\FRST64.exe
2021-01-23 11:23 - 2021-01-23 11:23 - 000491068 _____ C:\Users\vondr\Downloads\document(3).pdf
2021-01-23 11:21 - 2021-01-23 11:22 - 000193973 _____ C:\Users\vondr\Downloads\document(2).pdf
2021-01-23 11:21 - 2021-01-23 11:21 - 000201962 _____ C:\Users\vondr\Downloads\document(1).pdf
2021-01-23 11:18 - 2021-01-23 11:18 - 000256743 _____ C:\Users\vondr\Downloads\document.pdf
2021-01-22 21:48 - 2021-01-22 21:48 - 000000000 ____D C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ
2021-01-22 19:39 - 2021-01-22 21:19 - 1056279596 _____ C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ.rar
2021-01-20 20:10 - 2021-01-20 20:10 - 000101126 _____ C:\Users\vondr\Downloads\Jakub Vraj - hodnocení 1. pololetí.pdf
2021-01-20 20:08 - 2021-01-20 20:08 - 000947989 _____ C:\Users\vondr\Downloads\Elen Vrajová hodnocení 1. pololetí.pdf
2021-01-20 20:04 - 2021-01-20 20:04 - 000175730 _____ C:\Users\vondr\Documents\img20210120_20041257.pdf
2021-01-20 20:01 - 2021-01-20 20:01 - 000131319 _____ C:\Users\vondr\Documents\img20210120_20011630.pdf
2021-01-20 20:00 - 2021-01-20 20:00 - 000152357 _____ C:\Users\vondr\Documents\img20210120_20002051.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000949615 _____ C:\Users\vondr\Downloads\Lýdie Vrajová hodnocení 1. pololetí.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000170524 _____ C:\Users\vondr\Documents\img20210120_19593500.pdf
2021-01-20 19:58 - 2021-01-20 19:58 - 000326312 _____ C:\Users\vondr\Documents\img20210120_19583054.pdf
2021-01-20 13:28 - 2021-01-20 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 13:53 - 2021-01-19 13:53 - 001658948 _____ C:\Users\vondr\Downloads\prilohy_5832.zip
2021-01-16 22:22 - 2021-01-16 22:22 - 000667464 _____ C:\Users\vondr\Downloads\Otázky specka skupina X.pdf
2021-01-16 10:47 - 2021-01-16 10:47 - 000002402 _____ C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-16 10:47 - 2021-01-16 10:47 - 000002394 _____ C:\Users\vondr\Desktop\Microsoft Teams.lnk
2021-01-16 09:39 - 2021-01-16 09:39 - 008934985 _____ C:\Users\vondr\Downloads\Daniel - Metodika hudební výchovy.pdf
2021-01-16 09:18 - 2021-01-16 09:18 - 000000000 ____D C:\Users\vondr\Downloads\metodika hudební výchovy
2021-01-14 21:25 - 2021-01-14 21:25 - 003221282 _____ C:\Users\vondr\Downloads\svp_zakladni_skola(1).pdf
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-01-13 21:14 - 2021-01-13 21:14 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2021-01-13 21:14 - 2021-01-13 21:14 - 000094720 _____ C:\Windows\system32\VirtualMonitorManager.dll
2021-01-13 21:14 - 2021-01-13 21:14 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 001101312 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000696832 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000455680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000294912 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000208384 _____ C:\Windows\SysWOW64\HeatCore.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000053248 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2021-01-13 21:12 - 2021-01-13 21:12 - 002590720 _____ C:\Windows\system32\dwmscene.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000549888 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-01-13 21:12 - 2021-01-13 21:12 - 000331264 _____ C:\Windows\SysWOW64\ssdm.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000266752 _____ C:\Windows\system32\HeatCore.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000186368 _____ C:\Windows\system32\BthpanContextHandler.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000164864 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-01-13 21:11 - 2021-01-13 21:11 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-01-13 21:11 - 2021-01-13 21:11 - 000453632 _____ C:\Windows\system32\ssdm.dll
2021-01-13 21:11 - 2021-01-13 21:11 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-01-13 21:11 - 2021-01-13 21:11 - 000061440 _____ C:\Windows\system32\rdsxvmaudio.dll
2021-01-13 14:37 - 2021-01-13 14:38 - 238280628 _____ C:\Users\vondr\Downloads\VID_20210113_105618.mp4
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\vondr\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\Public\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\ProgramData\Documents\Blackmagic Design
2021-01-13 14:35 - 2021-01-13 14:35 - 000000000 ____D C:\Users\vondr\AppData\Roaming\Blackmagic Design
2021-01-13 14:30 - 2021-01-13 15:53 - 1479669340 _____ C:\Users\vondr\Downloads\Seherezada a gentleman 1 (1990).avi
2021-01-12 22:16 - 2021-01-12 22:19 - 229196490 _____ C:\Users\vondr\Downloads\Požehnej nám, Pane.mp4
2021-01-12 18:41 - 2021-01-12 18:41 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-01-12 17:41 - 2021-01-12 18:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-12 17:41 - 2021-01-12 18:41 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-12 17:41 - 2021-01-12 18:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-11 21:56 - 2021-01-11 21:56 - 000012629 _____ C:\ProgramData\mijprvzl.ern
2021-01-11 21:56 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\AgentInformer
2021-01-11 21:43 - 2021-01-11 21:43 - 000000000 ____D C:\ProgramData\Movavi
2021-01-11 21:04 - 2021-01-11 21:44 - 000000000 ____D C:\Users\vondr\AppData\Roaming\MOVAVI
2021-01-11 21:02 - 2021-01-11 21:02 - 000000000 ___HD C:\Users\vondr\AppData\Local\Downloaded Installations
2021-01-11 20:58 - 2021-01-11 20:58 - 000000000 ___HD C:\Users\vondr\AppData\Local\cache
2021-01-11 20:53 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\Movavi
2021-01-11 20:53 - 2021-01-11 20:53 - 000012763 _____ C:\ProgramData\juutbubq.wrj
2021-01-11 20:53 - 2021-01-11 20:53 - 000000016 _____ C:\ProgramData\mntemp
2021-01-11 20:53 - 2021-01-11 20:53 - 000000000 ___HD C:\Users\vondr\AppData\Local\VideoEditorPlus
2021-01-10 15:31 - 2021-01-10 16:39 - 000000000 ____D C:\Users\vondr\Downloads\Talentové zkoušky 12. 1. Reg. č. 37
2021-01-08 22:47 - 2021-01-08 22:47 - 001188732 _____ C:\Users\vondr\Downloads\Ze zrna chléb.ppsx
2021-01-07 13:22 - 2021-01-07 13:22 - 000085189 _____ C:\Users\vondr\Downloads\REKTION DER VERBEN (2) (1).pdf
2021-01-06 18:05 - 2021-01-06 18:05 - 010458055 _____ C:\Users\vondr\Downloads\Ze zrna chléb 3. třída.pdf
2021-01-06 18:02 - 2021-01-09 09:12 - 001188788 _____ C:\Users\vondr\Downloads\Ze zrna chléb.pptx
2021-01-06 18:02 - 2021-01-06 18:02 - 008905203 _____ C:\Users\vondr\Downloads\Ze zrna chléb přílohy.pdf
2021-01-06 18:02 - 2021-01-06 18:02 - 007323433 _____ C:\Users\vondr\Downloads\Ze zrna chléb 4. třída.pdf
2021-01-03 20:38 - 2021-01-03 20:38 - 000040306 _____ C:\Users\vondr\Downloads\Terminologie- prezentace.pptx
2021-01-03 20:03 - 2021-01-03 20:03 - 000233607 _____ C:\Users\vondr\Downloads\Specialni_pedagogika (1).pdf
2021-01-01 13:14 - 2021-01-01 13:17 - 875328632 _____ C:\Users\vondr\Downloads\Photos(31).zip
2021-01-01 13:12 - 2021-01-01 13:14 - 566918143 _____ C:\Users\vondr\Downloads\Photos(30).zip
2021-01-01 13:09 - 2021-01-01 13:09 - 075316402 _____ C:\Users\vondr\Downloads\Photos(29).zip
2021-01-01 13:03 - 2021-01-01 13:05 - 709800516 _____ C:\Users\vondr\Downloads\Photos(28).zip
2021-01-01 12:57 - 2021-01-01 12:58 - 231462310 _____ C:\Users\vondr\Downloads\Photos(27).zip
2021-01-01 12:52 - 2021-01-01 12:53 - 272690407 _____ C:\Users\vondr\Downloads\Photos(26).zip
2021-01-01 12:49 - 2021-01-01 12:50 - 046862024 _____ C:\Users\vondr\Downloads\Photos(25).zip
2021-01-01 12:43 - 2021-01-01 12:43 - 080102189 _____ C:\Users\vondr\Downloads\Photos(24).zip
2021-01-01 12:36 - 2021-01-01 12:36 - 042234807 _____ C:\Users\vondr\Downloads\Photos(23).zip
2021-01-01 12:35 - 2021-01-01 12:35 - 002547399 _____ C:\Users\vondr\Downloads\Photos(22).zip
2021-01-01 12:34 - 2021-01-01 12:35 - 059813674 _____ C:\Users\vondr\Downloads\Photos(21).zip
2021-01-01 12:33 - 2021-01-01 12:34 - 145034378 _____ C:\Users\vondr\Downloads\Photos(20).zip
2021-01-01 12:23 - 2021-01-01 12:25 - 303354575 _____ C:\Users\vondr\Downloads\Photos(19).zip
2021-01-01 12:20 - 2021-01-01 12:22 - 402008563 _____ C:\Users\vondr\Downloads\Photos(18).zip
2021-01-01 12:17 - 2021-01-01 12:21 - 930500063 _____ C:\Users\vondr\Downloads\Photos(17).zip
2021-01-01 12:13 - 2021-01-01 12:15 - 586408013 _____ C:\Users\vondr\Downloads\Photos(16).zip
2021-01-01 12:03 - 2021-01-01 12:05 - 730303733 _____ C:\Users\vondr\Downloads\Photos(15).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 008095447 _____ C:\Users\vondr\Downloads\Photos(14).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 006039894 _____ C:\Users\vondr\Downloads\Photos(13).zip
2021-01-01 11:55 - 2021-01-01 11:55 - 028306500 _____ C:\Users\vondr\Downloads\Photos(12).zip
2021-01-01 11:54 - 2021-01-01 11:54 - 021209297 _____ C:\Users\vondr\Downloads\Photos(11).zip
2021-01-01 11:53 - 2021-01-01 11:54 - 071520486 _____ C:\Users\vondr\Downloads\Photos(10).zip
2021-01-01 11:48 - 2021-01-01 11:51 - 714091045 _____ C:\Users\vondr\Downloads\Photos(9).zip
2021-01-01 11:45 - 2021-01-01 11:45 - 106831176 _____ C:\Users\vondr\Downloads\Photos(8).zip
2021-01-01 11:28 - 2021-01-01 11:29 - 464833017 _____ C:\Users\vondr\Downloads\Photos(7).zip
2021-01-01 10:51 - 2021-01-01 10:55 - 532913154 _____ C:\Users\vondr\Downloads\Photos(6).zip
2021-01-01 10:50 - 2021-01-01 10:54 - 548419463 _____ C:\Users\vondr\Downloads\Photos(5).zip
2021-01-01 10:49 - 2021-01-01 10:56 - 777901906 _____ C:\Users\vondr\Downloads\Photos(4).zip
2021-01-01 10:18 - 2021-01-01 10:22 - 1150225471 _____ C:\Users\vondr\Downloads\Photos(3).zip
2021-01-01 10:14 - 2021-01-01 10:15 - 122609245 _____ C:\Users\vondr\Downloads\Photos(2).zip
2021-01-01 10:13 - 2021-01-01 10:13 - 037763002 _____ C:\Users\vondr\Downloads\Photos.zip
2021-01-01 10:12 - 2021-01-01 10:12 - 020014540 _____ C:\Users\vondr\Downloads\Photos(1).zip
2020-12-30 16:42 - 2020-12-30 18:08 - 861230662 _____ C:\Users\vondr\Downloads\Zorro Tajemná tvář (1998) CZ-dabing.avi
2020-12-28 22:21 - 2020-12-28 22:21 - 000230832 _____ C:\Windows\system32\spacedeskSrvLibConnectorUsb.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-23 12:00 - 2019-10-26 19:51 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-23 12:00 - 2019-07-18 13:46 - 000718198 _____ C:\Windows\system32\perfh005.dat
2021-01-23 12:00 - 2019-07-18 13:46 - 000145242 _____ C:\Windows\system32\perfc005.dat
2021-01-23 12:00 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2021-01-23 11:57 - 2020-03-22 08:07 - 000000000 ___HD C:\Users\vondr\AppData\Local\CrashDumps
2021-01-23 11:55 - 2020-03-20 15:01 - 000000000 ____D C:\Program Files\CCleaner
2021-01-23 11:53 - 2020-03-21 05:35 - 000000000 ___RD C:\Users\vondr\OneDrive
2021-01-23 11:53 - 2020-03-21 05:33 - 000000000 __SHD C:\Users\vondr\IntelGraphicsProfiles
2021-01-23 11:53 - 2020-03-20 14:37 - 000000000 ___HD C:\Users\vondr\AppData\LocalLow\Mozilla
2021-01-23 11:53 - 2019-10-26 19:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-23 11:53 - 2019-10-26 19:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-01-23 11:53 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-23 11:37 - 2020-03-21 05:21 - 000000000 ____D C:\Users\vondr
2021-01-23 11:00 - 2020-03-21 10:23 - 000000000 ____D C:\Users\vondr\Documents\MyHeritage
2021-01-23 09:36 - 2020-03-21 05:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\Packages
2021-01-23 09:14 - 2020-03-20 18:42 - 000000000 ___HD C:\Users\vondr\AppData\Local\Deployment
2021-01-23 09:11 - 2020-03-21 05:21 - 000000000 ___HD C:\Users\vondr\AppData\Local\Host App Service
2021-01-23 09:08 - 2020-06-14 20:46 - 000000916 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-23 09:08 - 2020-06-14 20:46 - 000000912 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-22 21:16 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2021-01-22 18:31 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-22 15:01 - 2020-06-14 20:46 - 000003976 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 15:01 - 2020-06-14 20:46 - 000003744 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-22 15:01 - 2020-06-09 18:13 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-21 18:54 - 2020-03-20 16:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-20 23:00 - 2020-09-30 09:07 - 000002296 _____ C:\Windows\system32\Tasks\Power Button
2021-01-20 23:00 - 2020-09-30 09:07 - 000002222 _____ C:\Windows\system32\Tasks\Quick Access
2021-01-20 23:00 - 2020-06-09 18:13 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-20 23:00 - 2020-06-09 18:13 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-20 23:00 - 2020-05-25 15:32 - 000002728 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-01-20 23:00 - 2020-05-05 21:09 - 000002596 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTaskCore
2021-01-20 23:00 - 2020-03-22 09:31 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-01-20 23:00 - 2020-03-22 07:36 - 000003482 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-01-20 23:00 - 2020-03-21 05:13 - 000003692 _____ C:\Windows\system32\Tasks\AcerCMUpdateTask2.1.16258
2021-01-20 23:00 - 2020-03-20 15:01 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-01-20 23:00 - 2020-03-20 15:01 - 000002236 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-01-20 23:00 - 2020-03-20 14:54 - 000003400 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-20 23:00 - 2020-03-20 14:54 - 000003176 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-20 23:00 - 2020-03-20 14:52 - 000003250 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2021-01-20 23:00 - 2019-10-26 20:28 - 000002712 _____ C:\Windows\system32\Tasks\UEIPInvitation
2021-01-20 23:00 - 2019-10-26 20:23 - 000004302 _____ C:\Windows\system32\Tasks\Software Update Application
2021-01-20 23:00 - 2019-10-26 20:23 - 000003852 _____ C:\Windows\system32\Tasks\ACCAgent
2021-01-20 23:00 - 2019-10-26 20:23 - 000002730 _____ C:\Windows\system32\Tasks\ACC
2021-01-20 23:00 - 2019-10-26 20:23 - 000002408 _____ C:\Windows\system32\Tasks\App Explorer
2021-01-20 23:00 - 2019-10-26 20:23 - 000002328 _____ C:\Windows\system32\Tasks\ACCBackgroundApplication
2021-01-20 17:12 - 2020-10-14 13:40 - 000000000 ____D C:\Users\vondr\Desktop\Kubova složka
2021-01-20 15:07 - 2020-03-28 08:23 - 000000000 ____D C:\Users\vondr\AppData\Roaming\vlc
2021-01-20 14:56 - 2020-05-08 07:25 - 000000000 ____D C:\Users\vondr\Desktop\Lydinka
2021-01-20 13:28 - 2020-06-14 20:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-16 23:10 - 2020-10-23 18:12 - 000000000 ___RD C:\Users\vondr\Documents\MEGAsync
2021-01-16 23:09 - 2020-03-22 14:18 - 000000000 ____D C:\Users\vondr\Documents\Učitelství 1. stupeň ZŠ
2021-01-16 10:47 - 2020-04-28 20:55 - 000000000 ___HD C:\Users\vondr\AppData\Local\SquirrelTemp
2021-01-15 21:13 - 2020-10-18 14:34 - 000000000 ____D C:\Users\vondr\Desktop\Elen
2021-01-15 14:50 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2021-01-15 09:56 - 2020-10-17 05:51 - 000002379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2021-01-14 11:34 - 2020-03-20 14:51 - 000000000 ____D C:\ProgramData\AVG
2021-01-14 11:24 - 2020-03-21 05:33 - 000000000 __RHD C:\Users\vondr\3D Objects
2021-01-14 11:24 - 2019-10-26 19:43 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-13 22:17 - 2019-10-26 19:40 - 000585688 _____ C:\Windows\system32\FNTCACHE.DAT
2021-01-13 22:17 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2021-01-13 22:17 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\system32\config\BBI
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 21:21 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2021-01-13 21:19 - 2020-03-21 07:36 - 000000000 ____D C:\Windows\system32\MRT
2021-01-13 21:17 - 2020-03-21 07:36 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-13 21:11 - 2019-10-26 19:42 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2021-01-13 19:25 - 2020-03-20 15:18 - 000000000 ____D C:\Users\vondr\Desktop\Programy
2021-01-13 19:15 - 2020-03-20 15:11 - 000000000 ___HD C:\Users\vondr\AppData\Local\MEGAsync
2021-01-12 18:41 - 2020-06-06 13:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\ElevatedDiagnostics
2021-01-12 16:50 - 2020-06-26 19:30 - 000000000 ___HD C:\Users\vondr\AppData\Local\D3DSCache
2021-01-12 08:57 - 2020-03-20 14:55 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-12 08:52 - 2020-06-14 20:52 - 000000000 ___RD C:\Users\vondr\Dropbox
2021-01-11 22:37 - 2020-04-09 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-11 20:59 - 2020-03-24 14:38 - 000000806 _____ C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2021-01-11 20:59 - 2020-03-24 14:38 - 000000000 ___HD C:\Users\vondr\AppData\Local\Pinnacle
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\ProgramData\Documents\PCLECHAL.INI
2021-01-10 16:26 - 2020-12-08 14:15 - 000001768 _____ C:\Users\vondr\Desktop\DaVinci Resolve Project Server.lnk
2021-01-10 16:26 - 2020-12-08 14:15 - 000001748 _____ C:\Users\vondr\Desktop\Resolve.lnk
2021-01-10 16:26 - 2020-11-01 19:01 - 000001165 _____ C:\Users\vondr\Desktop\MuseScore 3.lnk
2021-01-10 16:26 - 2020-09-05 20:27 - 000002228 _____ C:\Users\vondr\Desktop\Proclaim.lnk
2021-01-10 16:26 - 2020-06-06 07:10 - 000001008 _____ C:\Users\vondr\Desktop\Open Broadcaster Software.lnk
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Macromed
2021-01-08 12:34 - 2020-12-16 19:37 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2021-01-05 10:23 - 2020-03-21 05:35 - 000000000 ___HD C:\Users\vondr\AppData\Local\PlaceholderTileLogoFolder
2021-01-05 09:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ServiceState
2021-01-04 11:38 - 2020-06-06 07:10 - 000000000 ____D C:\Users\vondr\AppData\Roaming\OBS
2021-01-02 10:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\NDF

==================== Files in the root of some directories ========

2020-03-24 14:38 - 2021-01-11 20:59 - 000000806 _____ () C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2020-03-24 14:38 - 2020-03-24 14:49 - 000000678 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManager.log
2020-03-24 14:38 - 2020-03-24 14:47 - 000000647 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManagerPrevious.log
2020-05-18 21:12 - 2020-05-18 21:15 - 000000716 _____ () C:\Users\vondr\AppData\Roaming\{E4A5EDDB-14CF-DFF1-5402-0DB91944F0C4}
2020-03-24 14:39 - 2020-06-04 19:42 - 000003584 ____H () C:\Users\vondr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-01-2021
Ran by vondr (23-01-2021 12:04:50)
Running from C:\Users\vondr\Downloads
Windows 10 Home Version 1909 18363.1316 (X64) (2020-03-21 04:13:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3501418858-3935017464-633493477-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3501418858-3935017464-633493477-503 - Limited - Disabled)
evraj (S-1-5-21-3501418858-3935017464-633493477-1002 - Limited - Disabled)
Guest (S-1-5-21-3501418858-3935017464-633493477-501 - Limited - Enabled)
vondr (S-1-5-21-3501418858-3935017464-633493477-1001 - Administrator - Enabled) => C:\Users\vondr
WDAGUtilityAccount (S-1-5-21-3501418858-3935017464-633493477-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security Ultra (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Jumpstart (HKLM-x32\...\{4335EAF1-21F1-43D3-8F6F-D7E481E6959A}) (Version: 3.3.19180.60 - Acer)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
App Explorer (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Host App Service) (Version: 0.273.4.186 - SweetLabs) <==== ATTENTION
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 87.0.7485.90 - Autoři prohlížeče AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1066.0 - AVG Technologies) Hidden
Avidemux VC++ 64bits (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\{958c1728-e7f8-47a4-980a-8dafc359bffe}) (Version: 2.7.5 - Mean)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
calibre (HKLM-x32\...\{13EA2450-6C59-4732-97E5-0BD1D17C8C16}) (Version: 4.12.0 - Kovid Goyal)
calibre 64bit (HKLM\...\{0FD8DB9D-5D78-4919-9413-0940F43334DD}) (Version: 4.23.0 - Kovid Goyal)
Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3019 - Acer Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Corel Update Manager (HKLM-x32\...\{FB8387EF-D663-4152-A13E-6B963AC1052A}) (Version: 2.3 - Corel corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DaVinci Resolve (HKLM\...\{8CD009CC-08AB-4873-BA5C-DC4AEA8BACEB}) (Version: 16.2.7010 - Blackmagic Design)
Dazzle Video Capture DVC100 X64 Driver 1.06 (HKLM-x32\...\{BFF23267-1D19-444E-93E2-E5059BE805EA}) (Version: 1.06.0000 - Pinnacle)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Discord (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated)
Dropbox (HKLM-x32\...\Dropbox) (Version: 113.4.507 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 5.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 5.2.1.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Media Creator Student (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Media Creator Student) (Version: - NOVÁ ŠKOLA, s.r.o.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\Proplus2019Retail - cs-cz) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\Proplus2019Retail - en-us) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.2 - Mozilla)
MuseScore 3 (HKLM\...\{0595F182-4FEF-48B9-B32A-7FB2B58B4D40}) (Version: 3.5.2.311459983 - Werner Schweer and Others)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8580 - MyHeritage.com)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Pinnacle Studio 21 (HKLM\...\{41C196DB-9ED2-449E-A056-20E67255BFC8}) (Version: 21.1.0.132 - Corel Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd)
Proclaim (HKLM-x32\...\{1FC10733-55C3-4306-BCE2-FAEAB6234DB9}) (Version: 3.0.32 - Faithlife Corporation)
Quick Access Service (HKLM\...\{AB25551C-74EF-4BAB-9989-891517FCF9FF}) (Version: 3.00.3017 - Acer Incorporated)
SMART Czech Handwriting Resources (HKLM-x32\...\{65A75580-36A0-4490-8181-0967DD6C1464}) (Version: 15.1.10.0 - SMART Technologies ULC)
SMART Gallery Essentials (HKLM-x32\...\{B1BCD573-39C5-48CD-A2A7-F6525BB7072B}) (Version: 2.0.2.0 - SMART Technologies ULC)
SMART Ink (HKLM-x32\...\{431EB801-5D66-409A-B208-AEF76AD7F677}) (Version: 5.6.132.0 - SMART Technologies ULC)
SMART Lesson Activity Toolkit (HKLM-x32\...\{8AD57A09-153E-4F6D-A269-0AD8AC54B82A}) (Version: 2.0.7.0 - SMART Technologies ULC)
SMART Notebook (HKLM-x32\...\{F0215213-10A6-43DB-9BE4-3FD3DB5D8E53}) (Version: 19.1.2790.0 - SMART Technologies ULC)
SMART Ovladače produktů (HKLM-x32\...\{8F02AE90-9219-42E6-AD41-0C0055227B9B}) (Version: 12.15.139.0 - SMART Technologies ULC)
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
User Experience Improvement Program Service (HKLM\...\{E9495FD3-F73D-4D33-A104-047F9E8BE6C7}) (Version: 4.00.3106 - Acer Incorporated)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4 [2020-12-25] (Acer Incorporated)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2020-12-18] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.50.3.0_x86__kgqvnymyfvs32 [2021-01-22] (king.com)
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3019.0_x64__48frkmn4z8aw4 [2020-09-02] (Acer Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-22] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.6.9.0_x86__q4d96b2w5wcc2 [2021-01-15] (Evernote)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2020-12-04] (GoTrustID Inc.)
InspIS SETmobile -> C:\Program Files\WindowsApps\57320732D6B4D.InspISSETmobile_1.10.20098.0_x86__beccaw7yyhy3g [2020-06-06] (Itelligence-cz, a.s.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-26] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-03-22] (LinkedIn)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-15] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.11214.5532.0_x64__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation)
Movie & Audio Studio -> C:\Program Files\WindowsApps\MAGIXSoftwareGmbH.MovieAudioStudio_1.1.4.0_x64__awcgk3qbzve1y [2019-10-26] (MAGIX Software GmbH)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-14] (Netflix, Inc.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3017.0_x64__48frkmn4z8aw4 [2020-09-30] (Acer Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.9.205.0_x64__dt26b99r8h8gj [2020-04-03] (Realtek Semiconductor Corp)
Simple Mahjong -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleMahjong_6.0.46.0_x64__kx24dqmazqk8j [2020-11-23] (Random Salad Games LLC)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.0.0.0_x64__kx24dqmazqk8j [2020-12-10] (Random Salad Games LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-11] (Spotify AB) [Startup Task]
User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3106.0_x64__48frkmn4z8aw4 [2019-10-26] (Acer Incorporated)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{C1340C88-050F-43F2-90D8-A4737F931936} -> [MEGA] => C:\MEGA [2020-03-20 15:14]
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{D7523B04-701A-444C-8BB8-30CAC820E23E} -> [MEGAsync] => C:\Users\vondr\Documents\MEGAsync [2020-10-23 18:12]
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\vondr\Dropbox [2020-06-14 20:52]
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => pvmjpgx40.dll
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media Creator Student\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()
Shortcut: C:\Users\Public\Desktop\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()

==================== Loaded Modules (Whitelisted) =============

2020-03-20 18:19 - 2020-03-20 18:19 - 000649360 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCP120.dll
2020-03-20 18:19 - 2020-03-20 18:19 - 000952464 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCR120.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-3501418858-3935017464-633493477-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\sharepoint.com -> hxxps://sgocz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\acer01.jpg
DNS Servers: 217.170.96.24 - 217.170.96.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "sbsdk-server"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{AFA40E3C-3A4B-4D65-8CA6-2F2B538ADC7C}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C2693F67-7F90-47E8-BAC5-D21DDCD29430}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{625B6298-3E39-4BEC-A378-34A10B5D7E6B}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C9FC2339-E561-4842-9402-4D5258E73E35}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{51C9519E-14B3-4F3D-A4B1-0A71D350B899}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{D72A7625-1716-4338-B3B5-95DD8614EB91}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{09D6004D-C58D-490B-92DA-528EFADFE65E}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{542580BC-9B62-4D86-96A9-F3D4A9037CCA}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{43EBF8B2-78A5-478F-8737-CD4E37CA9E7A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{787DE9E6-18DE-4520-AC9C-C763A57D9E06}] => (Allow) LPort=2869
FirewallRules: [{48745246-F828-4CCF-9F54-2C2579EBD72E}] => (Allow) LPort=1900
FirewallRules: [{EE2BAC3B-FB30-41F8-8090-77100E129D37}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D6771A49-9327-41B2-A4D0-64947F8B8919}] => (Allow) C:\Users\vondr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0F000823-23F3-43F9-A139-CE3F64959B36}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{26B391DD-70F9-469C-814E-56B10A122B9E}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{AF476B1F-839F-46A0-A1C2-091B1864670F}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{8F9789AB-7DAC-43F0-B841-04CAF38381E2}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{3C588922-5C1D-4EE4-B940-C8C369183531}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{20C929A6-B975-46FB-A382-9158625F9A33}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [TCP Query User{91B19305-4BCC-4AD6-AB10-CB5D60170EEF}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{7C1324A5-6FAA-43D2-AF0D-DD6C0B0A5196}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B928F4C-4ACC-4C04-92B0-186D1440FED9}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{831393B5-BA13-44CE-9606-EFB19A4E36BF}] => (Allow) C:\Program Files\davinci\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{E25C9EDF-66FE-4BA1-865F-82F1837CABBF}] => (Allow) C:\Program Files\davinci\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{30D2C5AB-8965-42D6-A687-AE4AC40BA1C0}] => (Allow) C:\Program Files\davinci\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C234F19C-AF58-4FE5-A281-81D84501DDE7}] => (Allow) C:\Program Files\davinci\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C7226308-2E81-419B-9F35-935FDC831C1C}] => (Allow) C:\Program Files\davinci\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B44025CC-6B06-43E3-BAB1-6746DE8F8B6D}] => (Allow) C:\Program Files\davinci\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{49FC318C-4341-47A6-92BB-8D630F47434E}] => (Allow) C:\Program Files\davinci\ElementsPanelDaemon.exe => No File
FirewallRules: [{52DC84E4-B8EC-4B01-A719-6251941F5C3D}] => (Allow) C:\Program Files\davinci\OxygenPanelDaemon.exe => No File
FirewallRules: [{2D6BA5AB-6B51-421E-840C-B339012E5546}] => (Allow) C:\Program Files\davinci\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{BECE0FFE-EB35-403A-A8E2-0AF257719E09}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe => No File
FirewallRules: [{FD129A87-620A-43BF-911F-653068019978}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7999DFAB-C0D8-4548-847A-8ABD0D9B60BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{917CE632-2F9F-459F-8421-E82CDE1A019B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E332BB6-CCF1-4EE7-B94B-4F72F702E1EB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{43530F86-3C03-4AC1-AC0E-21104197E8FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32D0840B-EA7A-4C0F-9CA8-2E0AEC438823}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{80C6F615-431D-4F32-9E08-C56AC6AFF3FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1F87DB70-2A00-4255-9E90-20B4A9FDFFB7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{907BB384-1F31-4BF9-85E7-0309FE0A2DE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{60569595-7D50-4349-B3C9-214CDDFCBCF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F2CB1F22-4353-4BD8-8123-9B9005E931BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3103ADEF-248D-4235-8303-8A36BDE6BBCE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D740F461-293F-40A7-8466-57B9374A709F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2DBC9A17-6817-44FD-8CD8-298EBD2D11B7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5A92702F-6A10-40DC-B73C-FF31767C0BBC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{91E4FA52-F20F-433F-902B-0B59B1A89E3B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{97D81E44-7E64-4A4C-8A8D-BE4D0A091E53}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{232C1E3C-E03D-4DC7-9955-504E53AC69C4}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{A412419D-5F4D-426F-B274-3FB19BDAD14F}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, LLC -> AVG Technologies)
FirewallRules: [{B37A68AD-CE85-465D-A121-751962EDF1A5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

20-01-2021 16:45:59 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/23/2021 11:57:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2e5c
Čas spuštění chybující aplikace: 0x01d6f1760d9e9def
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: b3a5f487-e96f-4199-ac41-dd399c110882
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/23/2021 11:53:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x261c
Čas spuštění chybující aplikace: 0x01d6f1760289df63
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: a56583ca-a11b-4911-86c2-9c4ef1c0faa0
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration

Error: (01/23/2021 09:38:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x20dc
Čas spuštění chybující aplikace: 0x01d6f16324fd7245
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: fa664e4e-085a-474f-9555-c6770fac6933
Úplný název chybujícího balíčku: Microsoft.People_10.1909.10841.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x

Error: (01/23/2021 09:14:07 AM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (10896,G,0) Pokus o otevření souboru C:\Users\vondr\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (01/23/2021 09:09:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2b04
Čas spuštění chybující aplikace: 0x01d6f15f00e3940d
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 14ae9055-4c5a-45a7-bdef-4ddd8febf5f1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/23/2021 09:08:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x250c
Čas spuštění chybující aplikace: 0x01d6f15ef6027d8b
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 9594b515-6c3c-4ebb-85fd-39a672d67afb
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration

Error: (01/23/2021 08:40:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x3574
Čas spuštění chybující aplikace: 0x01d6f15b10213421
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 8bab9574-687e-489c-99e6-b6a36b43fea5
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration

Error: (01/22/2021 04:06:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x445c
Čas spuštění chybující aplikace: 0x01d6f0c722b4ae57
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 3c6e8e51-a018-462f-92a4-af0d59076bea
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (01/23/2021 11:58:37 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 11:55:04 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 11:53:42 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 11:53:24 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (11:08:22, ‎23.‎01.‎2021) bylo neočekávané.

Error: (01/23/2021 11:53:17 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.

Error: (01/23/2021 09:38:37 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 09:10:02 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 09:08:42 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2020-03-21 05:15:53.826
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

CodeIntegrity:
===================================

Date: 2021-01-23 11:55:28.208
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-01-23 11:55:28.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-01-23 11:55:28.182
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-01-23 11:54:29.838
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 11:54:29.826
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 11:54:29.813
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 11:54:29.802
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 11:54:29.789
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Insyde Corp. V1.12 08/23/2019
Motherboard: CML Doc_WC
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 84%
Total physical RAM: 7908.93 MB
Available physical RAM: 1203.04 MB
Total Virtual: 12772.93 MB
Available Virtual: 5729.8 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:952.75 GB) (Free:755.21 GB) NTFS

\\?\Volume{1d5ebf39-7363-46c2-85c5-6d21b232b7ac}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS
\\?\Volume{c3e08722-726c-4ee4-9a79-cd22e2eab3a5}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: Preventivka

#2 Příspěvek od Diallix »

Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

vondra007
Návštěvník
Návštěvník
Příspěvky: 82
Registrován: 24 bře 2007 00:24

Re: Preventivka

#3 Příspěvek od vondra007 »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.9.1
# -------------------------------
# Build: 01-20-2021
# Database: 2021-01-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-23-2021
# Duration: 00:00:02
# OS: Windows 10 Home
# Cleaned: 55
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Default\AppData\Local\Host App Service
Deleted C:\Users\Public\App Explorer
Deleted C:\Users\vondr\AppData\Local\Host App Service

***** [ Files ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\App Explorer.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\APP EXPLORER

***** [ Registry ] *****

Deleted HKCU\Software\App Host Service
Deleted HKCU\Software\Host App Service
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{993F5746-4C15-42BC-99C1-064A1764271B}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E2B130B-E9BA-439E-ACBB-9AC688F759D4}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer
Deleted HKLM\Software\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
Deleted HKLM\Software\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Trymedia Systems
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.AcerCareCenter Folder C:\Program Files (x86)\ACER\CARE CENTER
Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{04F3C3E4-866C-4D2A-A7BA-911D1AAEB0F2}
Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04F3C3E4-866C-4D2A-A7BA-911D1AAEB0F2}
Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{402F12A1-9F43-47BD-BE21-DA3EE8817383}
Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACCAgent
Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACCBackgroundApplication
Deleted Preinstalled.AcerCareCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AFB52E98-7597-4484-9202-58F0FD3512ED}
Deleted Preinstalled.AcerCareCenter Task C:\Windows\System32\Tasks\ACCAGENT
Deleted Preinstalled.AcerCareCenter Task C:\Windows\System32\Tasks\ACCBACKGROUNDAPPLICATION
Deleted Preinstalled.AcerConfigurationManager Folder C:\Program Files (x86)\ACER\AMUNDSEN\2.1.16258
Deleted Preinstalled.AcerConfigurationManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4DDAADA0-4CA2-4DE4-8B4C-7E6C550DF545}
Deleted Preinstalled.AcerConfigurationManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AcerCMUpdateTask2.1.16258
Deleted Preinstalled.AcerConfigurationManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{414D554E-4453-454E-0201-000000016258}
Deleted Preinstalled.AcerConfigurationManager Task C:\Windows\System32\Tasks\ACERCMUPDATETASK2.1.16258
Deleted Preinstalled.AcerJumpstart Folder C:\Program Files (x86)\ACER\ACER JUMPSTART
Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{834D74AC-9B61-4762-8C0A-E88BCDEBF722}
Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED85F9E6-92A4-4947-89EA-CD2FB68DB28C}
Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Power Button
Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Quick Access
Deleted Preinstalled.AcerQuickAccess Task C:\Windows\System32\Tasks\POWER BUTTON
Deleted Preinstalled.AcerQuickAccess Task C:\Windows\System32\Tasks\QUICK ACCESS
Deleted Preinstalled.AcerQuickAccessService Folder C:\Program Files\ACER\QUICK ACCESS SERVICE
Deleted Preinstalled.AcerQuickAccessService Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AB25551C-74EF-4BAB-9989-891517FCF9FF}
Deleted Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4817966-D9C3-4129-A180-DD0E4D3EA406}
Deleted Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F057957B-3FB0-4C8F-8912-B23662056E9D}
Deleted Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UEIPInvitation
Deleted Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UbtFrameworkService
Deleted Preinstalled.AcerUEIPFramework Task C:\Windows\System32\Tasks\UBTFRAMEWORKSERVICE
Deleted Preinstalled.AcerUEIPFramework Task C:\Windows\System32\Tasks\UEIPINVITATION
Deleted Preinstalled.AcerUpdater Folder C:\ProgramData\ACER\ACER UPDATER
Deleted Preinstalled.UserExperienceImprovementProgramService Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM SERVICE\FRAMEWORK
Deleted Preinstalled.UserExperienceImprovementProgramService Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E9495FD3-F73D-4D33-A104-047F9E8BE6C7}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [7637 octets] - [23/01/2021 16:21:16]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: Preventivka

#4 Příspěvek od Diallix »

Poprosim o nove logy FRST + ADDITION
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

vondra007
Návštěvník
Návštěvník
Příspěvky: 82
Registrován: 24 bře 2007 00:24

Re: Preventivka

#5 Příspěvek od vondra007 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-01-2021
Ran by vondr (administrator) on ACER (Acer Aspire A515-54) (23-01-2021 19:18:49)
Running from C:\Users\vondr\Downloads
Loaded Profiles: vondr
Platform: Windows 10 Home Version 1909 18363.1316 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
(Mega Limited -> Mega Limited) C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SMART Technologies ULC -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [953120 2019-12-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [209856 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2772416 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [654272 2019-12-01] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [68544 2019-11-08] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [287680 2019-12-11] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [17860720 2020-06-09] (MyHeritage (USA) Inc. -> MyHeritage)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455872 2020-06-22] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1938296 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [Discord] => C:\Users\vondr\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKLM\...\Print\Monitors\SMART Local Port: C:\Windows\system32\smrtlocalmon.dll [38336 2019-12-11] (SMART Technologies ULC -> SMART Technologies ULC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\Installer\chrmstp.exe [2021-01-15] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {063E0D4F-A169-42D1-B0D0-6D23A17987C4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {096D3188-360A-44AE-AD0E-A8B12CA94972} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {1726979B-C5CD-489F-BE1F-D13C2B9D105C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {2022ACBC-9B6B-4E83-845A-D644A1F7F084} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2051A499-55AF-40E9-A3B3-8D20AD3BB528} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3A63133B-6693-4CB2-B7A7-FCC88C32D7BE} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {41DE8B83-1F4F-40C9-B643-4F880FCCAEB0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {5FE2E219-EBA8-46B6-A95A-F81054A8CA79} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {6FADE556-B535-4B09-9300-5260E40CA893} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {73136951-D3EA-421A-8B36-39C07D0E4620} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
Task: {76207EF4-D7A4-476C-AAF1-D17A3C9F2BB7} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1589696 2016-08-25] (Corel Corporation -> Corel Corporation)
Task: {7B966F81-F4DC-4EA6-B885-3D140F0354AF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7F4414B9-004D-4202-B52B-04C054268D56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {8DE0C78B-7DCE-45AA-9BF5-7EE547BF8A77} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {9E4C7CCA-BDC2-4302-AB00-9C22CC5CEC55} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2776440 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA11E31D-FB1D-4214-9E59-64592C4E120F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AEFA965A-3D04-44F5-8DB6-235B26A89664} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B254A56A-7DA6-4E18-9839-8F87C485448E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {C7540E9F-992B-49BA-BD6F-B49A96C035A3} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe
Task: {C89F0CE5-459B-4AF6-97B1-A17E6DCE98AA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9DE60DD-62E5-4B80-BD33-C9BB9757C30C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {D024C990-8584-4BE7-A555-0A4FAE095D04} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {DDF8A764-0C98-41FF-8073-91917C60210E} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {E176CF1A-9AF2-4BEF-A13B-9EDF430D2325} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3501418858-3935017464-633493477-1001 => C:\Users\vondr\AppData\Local\MEGAsync\MEGAupdater.exe [1303800 2020-12-21] (Mega Limited -> Mega Limited)
Task: {E3962082-6F97-4076-B540-EB981D5F9E24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {F529DC17-CC82-427D-916F-E08A16B4112E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {F5D9ED7C-22FB-406A-AEB1-B54A25166D3B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{4e8c78d5-12f3-471b-bd12-26482e625aea}: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{774ed856-bf70-462c-ac71-60ea5fe1934c}: [DhcpNameServer] 40.33.1.66

Edge:
=======
Edge Profile: C:\Users\vondr\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-23]

FireFox:
========
FF DefaultProfile: gteda8g8.default
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\gteda8g8.default [2020-06-06]
FF NewTab: Mozilla\Firefox\Profiles\gteda8g8.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\3zlkr7ca.default-release [2021-01-23]
FF NewTab: Mozilla\Firefox\Profiles\3zlkr7ca.default-release -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default [2021-01-23]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Prezentace) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-20]
CHR Extension: (Dokumenty) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-20]
CHR Extension: (Disk Google) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-20]
CHR Extension: (Tabulky) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-20]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-20]
CHR Extension: (Gmail) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-23]
CHR HKU\S-1-5-21-3501418858-3935017464-633493477-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\elevation_service.exe [1409264 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2021-01-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-02-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\FileSyncHelper.exe [2191224 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\OneDriveUpdaterService.exe [2556280 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [635328 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [36936 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [208808 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [332944 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [247952 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [97424 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42568 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [176528 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [522616 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [109064 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84640 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469040 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [214936 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [325056 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 SMARTMouseFilterx64; C:\Windows\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U1 avgbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-23 19:07 - 2021-01-23 19:07 - 000001163 _____ C:\Users\vondr\Desktop\MEGAsync.lnk
2021-01-23 19:07 - 2021-01-23 19:07 - 000000000 ____D C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2021-01-23 19:06 - 2021-01-23 19:07 - 000000000 ____D C:\Users\vondr\AppData\Local\MEGAsync
2021-01-23 19:06 - 2021-01-23 19:06 - 028581176 _____ (MEGA Limited) C:\Users\vondr\Downloads\MEGAsyncSetup32.exe
2021-01-23 18:50 - 2021-01-23 18:50 - 000000000 ____D C:\Users\vondr\Documents\Mega záloha
2021-01-23 16:20 - 2021-01-23 16:22 - 000000000 ____D C:\AdwCleaner
2021-01-23 16:20 - 2021-01-23 16:20 - 008457584 _____ (Malwarebytes) C:\Users\vondr\Downloads\adwcleaner_8.0.9.1.exe
2021-01-23 16:14 - 2021-01-23 16:14 - 000001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-01-23 16:14 - 2021-01-23 16:14 - 000001143 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-01-23 11:59 - 2021-01-23 19:19 - 000025427 _____ C:\Users\vondr\Downloads\FRST.txt
2021-01-23 11:59 - 2021-01-23 19:19 - 000000000 ____D C:\FRST
2021-01-23 11:58 - 2021-01-23 11:58 - 002296832 _____ (Farbar) C:\Users\vondr\Downloads\FRST64.exe
2021-01-23 11:23 - 2021-01-23 11:23 - 000491068 _____ C:\Users\vondr\Downloads\document(3).pdf
2021-01-23 11:21 - 2021-01-23 11:22 - 000193973 _____ C:\Users\vondr\Downloads\document(2).pdf
2021-01-23 11:21 - 2021-01-23 11:21 - 000201962 _____ C:\Users\vondr\Downloads\document(1).pdf
2021-01-23 11:18 - 2021-01-23 11:18 - 000256743 _____ C:\Users\vondr\Downloads\document.pdf
2021-01-22 21:48 - 2021-01-22 21:48 - 000000000 ____D C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ
2021-01-22 19:39 - 2021-01-22 21:19 - 1056279596 _____ C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ.rar
2021-01-20 20:10 - 2021-01-20 20:10 - 000101126 _____ C:\Users\vondr\Downloads\Jakub Vraj - hodnocení 1. pololetí.pdf
2021-01-20 20:08 - 2021-01-20 20:08 - 000947989 _____ C:\Users\vondr\Downloads\Elen Vrajová hodnocení 1. pololetí.pdf
2021-01-20 20:04 - 2021-01-20 20:04 - 000175730 _____ C:\Users\vondr\Documents\img20210120_20041257.pdf
2021-01-20 20:01 - 2021-01-20 20:01 - 000131319 _____ C:\Users\vondr\Documents\img20210120_20011630.pdf
2021-01-20 20:00 - 2021-01-20 20:00 - 000152357 _____ C:\Users\vondr\Documents\img20210120_20002051.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000949615 _____ C:\Users\vondr\Downloads\Lýdie Vrajová hodnocení 1. pololetí.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000170524 _____ C:\Users\vondr\Documents\img20210120_19593500.pdf
2021-01-20 19:58 - 2021-01-20 19:58 - 000326312 _____ C:\Users\vondr\Documents\img20210120_19583054.pdf
2021-01-20 13:28 - 2021-01-20 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 13:53 - 2021-01-19 13:53 - 001658948 _____ C:\Users\vondr\Downloads\prilohy_5832.zip
2021-01-16 22:22 - 2021-01-16 22:22 - 000667464 _____ C:\Users\vondr\Downloads\Otázky specka skupina X.pdf
2021-01-16 10:47 - 2021-01-16 10:47 - 000002402 _____ C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-16 10:47 - 2021-01-16 10:47 - 000002394 _____ C:\Users\vondr\Desktop\Microsoft Teams.lnk
2021-01-16 09:39 - 2021-01-16 09:39 - 008934985 _____ C:\Users\vondr\Downloads\Daniel - Metodika hudební výchovy.pdf
2021-01-16 09:18 - 2021-01-16 09:18 - 000000000 ____D C:\Users\vondr\Downloads\metodika hudební výchovy
2021-01-14 21:25 - 2021-01-14 21:25 - 003221282 _____ C:\Users\vondr\Downloads\svp_zakladni_skola(1).pdf
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-01-13 21:14 - 2021-01-13 21:14 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2021-01-13 21:14 - 2021-01-13 21:14 - 000094720 _____ C:\Windows\system32\VirtualMonitorManager.dll
2021-01-13 21:14 - 2021-01-13 21:14 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 001101312 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000696832 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000455680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000294912 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000208384 _____ C:\Windows\SysWOW64\HeatCore.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000053248 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2021-01-13 21:12 - 2021-01-13 21:12 - 002590720 _____ C:\Windows\system32\dwmscene.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000549888 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-01-13 21:12 - 2021-01-13 21:12 - 000331264 _____ C:\Windows\SysWOW64\ssdm.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000266752 _____ C:\Windows\system32\HeatCore.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000186368 _____ C:\Windows\system32\BthpanContextHandler.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000164864 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-01-13 21:11 - 2021-01-13 21:11 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-01-13 21:11 - 2021-01-13 21:11 - 000453632 _____ C:\Windows\system32\ssdm.dll
2021-01-13 21:11 - 2021-01-13 21:11 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-01-13 21:11 - 2021-01-13 21:11 - 000061440 _____ C:\Windows\system32\rdsxvmaudio.dll
2021-01-13 14:37 - 2021-01-13 14:38 - 238280628 _____ C:\Users\vondr\Downloads\VID_20210113_105618.mp4
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\vondr\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\Public\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\ProgramData\Documents\Blackmagic Design
2021-01-13 14:35 - 2021-01-13 14:35 - 000000000 ____D C:\Users\vondr\AppData\Roaming\Blackmagic Design
2021-01-13 14:30 - 2021-01-13 15:53 - 1479669340 _____ C:\Users\vondr\Downloads\Seherezada a gentleman 1 (1990).avi
2021-01-12 22:16 - 2021-01-12 22:19 - 229196490 _____ C:\Users\vondr\Downloads\Požehnej nám, Pane.mp4
2021-01-12 18:41 - 2021-01-12 18:41 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-01-12 17:41 - 2021-01-12 18:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-12 17:41 - 2021-01-12 18:41 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-12 17:41 - 2021-01-12 18:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-11 21:56 - 2021-01-11 21:56 - 000012629 _____ C:\ProgramData\mijprvzl.ern
2021-01-11 21:56 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\AgentInformer
2021-01-11 21:43 - 2021-01-11 21:43 - 000000000 ____D C:\ProgramData\Movavi
2021-01-11 21:04 - 2021-01-11 21:44 - 000000000 ____D C:\Users\vondr\AppData\Roaming\MOVAVI
2021-01-11 21:02 - 2021-01-11 21:02 - 000000000 ___HD C:\Users\vondr\AppData\Local\Downloaded Installations
2021-01-11 20:58 - 2021-01-11 20:58 - 000000000 ___HD C:\Users\vondr\AppData\Local\cache
2021-01-11 20:53 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\Movavi
2021-01-11 20:53 - 2021-01-11 20:53 - 000012763 _____ C:\ProgramData\juutbubq.wrj
2021-01-11 20:53 - 2021-01-11 20:53 - 000000016 _____ C:\ProgramData\mntemp
2021-01-11 20:53 - 2021-01-11 20:53 - 000000000 ___HD C:\Users\vondr\AppData\Local\VideoEditorPlus
2021-01-10 15:31 - 2021-01-10 16:39 - 000000000 ____D C:\Users\vondr\Downloads\Talentové zkoušky 12. 1. Reg. č. 37
2021-01-08 22:47 - 2021-01-08 22:47 - 001188732 _____ C:\Users\vondr\Downloads\Ze zrna chléb.ppsx
2021-01-07 13:22 - 2021-01-07 13:22 - 000085189 _____ C:\Users\vondr\Downloads\REKTION DER VERBEN (2) (1).pdf
2021-01-06 18:05 - 2021-01-06 18:05 - 010458055 _____ C:\Users\vondr\Downloads\Ze zrna chléb 3. třída.pdf
2021-01-06 18:02 - 2021-01-09 09:12 - 001188788 _____ C:\Users\vondr\Downloads\Ze zrna chléb.pptx
2021-01-06 18:02 - 2021-01-06 18:02 - 008905203 _____ C:\Users\vondr\Downloads\Ze zrna chléb přílohy.pdf
2021-01-06 18:02 - 2021-01-06 18:02 - 007323433 _____ C:\Users\vondr\Downloads\Ze zrna chléb 4. třída.pdf
2021-01-03 20:38 - 2021-01-03 20:38 - 000040306 _____ C:\Users\vondr\Downloads\Terminologie- prezentace.pptx
2021-01-03 20:03 - 2021-01-03 20:03 - 000233607 _____ C:\Users\vondr\Downloads\Specialni_pedagogika (1).pdf
2021-01-01 13:14 - 2021-01-01 13:17 - 875328632 _____ C:\Users\vondr\Downloads\Photos(31).zip
2021-01-01 13:12 - 2021-01-01 13:14 - 566918143 _____ C:\Users\vondr\Downloads\Photos(30).zip
2021-01-01 13:09 - 2021-01-01 13:09 - 075316402 _____ C:\Users\vondr\Downloads\Photos(29).zip
2021-01-01 13:03 - 2021-01-01 13:05 - 709800516 _____ C:\Users\vondr\Downloads\Photos(28).zip
2021-01-01 12:57 - 2021-01-01 12:58 - 231462310 _____ C:\Users\vondr\Downloads\Photos(27).zip
2021-01-01 12:52 - 2021-01-01 12:53 - 272690407 _____ C:\Users\vondr\Downloads\Photos(26).zip
2021-01-01 12:49 - 2021-01-01 12:50 - 046862024 _____ C:\Users\vondr\Downloads\Photos(25).zip
2021-01-01 12:43 - 2021-01-01 12:43 - 080102189 _____ C:\Users\vondr\Downloads\Photos(24).zip
2021-01-01 12:36 - 2021-01-01 12:36 - 042234807 _____ C:\Users\vondr\Downloads\Photos(23).zip
2021-01-01 12:35 - 2021-01-01 12:35 - 002547399 _____ C:\Users\vondr\Downloads\Photos(22).zip
2021-01-01 12:34 - 2021-01-01 12:35 - 059813674 _____ C:\Users\vondr\Downloads\Photos(21).zip
2021-01-01 12:33 - 2021-01-01 12:34 - 145034378 _____ C:\Users\vondr\Downloads\Photos(20).zip
2021-01-01 12:23 - 2021-01-01 12:25 - 303354575 _____ C:\Users\vondr\Downloads\Photos(19).zip
2021-01-01 12:20 - 2021-01-01 12:22 - 402008563 _____ C:\Users\vondr\Downloads\Photos(18).zip
2021-01-01 12:17 - 2021-01-01 12:21 - 930500063 _____ C:\Users\vondr\Downloads\Photos(17).zip
2021-01-01 12:13 - 2021-01-01 12:15 - 586408013 _____ C:\Users\vondr\Downloads\Photos(16).zip
2021-01-01 12:03 - 2021-01-01 12:05 - 730303733 _____ C:\Users\vondr\Downloads\Photos(15).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 008095447 _____ C:\Users\vondr\Downloads\Photos(14).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 006039894 _____ C:\Users\vondr\Downloads\Photos(13).zip
2021-01-01 11:55 - 2021-01-01 11:55 - 028306500 _____ C:\Users\vondr\Downloads\Photos(12).zip
2021-01-01 11:54 - 2021-01-01 11:54 - 021209297 _____ C:\Users\vondr\Downloads\Photos(11).zip
2021-01-01 11:53 - 2021-01-01 11:54 - 071520486 _____ C:\Users\vondr\Downloads\Photos(10).zip
2021-01-01 11:48 - 2021-01-01 11:51 - 714091045 _____ C:\Users\vondr\Downloads\Photos(9).zip
2021-01-01 11:45 - 2021-01-01 11:45 - 106831176 _____ C:\Users\vondr\Downloads\Photos(8).zip
2021-01-01 11:28 - 2021-01-01 11:29 - 464833017 _____ C:\Users\vondr\Downloads\Photos(7).zip
2021-01-01 10:51 - 2021-01-01 10:55 - 532913154 _____ C:\Users\vondr\Downloads\Photos(6).zip
2021-01-01 10:50 - 2021-01-01 10:54 - 548419463 _____ C:\Users\vondr\Downloads\Photos(5).zip
2021-01-01 10:49 - 2021-01-01 10:56 - 777901906 _____ C:\Users\vondr\Downloads\Photos(4).zip
2021-01-01 10:18 - 2021-01-01 10:22 - 1150225471 _____ C:\Users\vondr\Downloads\Photos(3).zip
2021-01-01 10:14 - 2021-01-01 10:15 - 122609245 _____ C:\Users\vondr\Downloads\Photos(2).zip
2021-01-01 10:13 - 2021-01-01 10:13 - 037763002 _____ C:\Users\vondr\Downloads\Photos.zip
2021-01-01 10:12 - 2021-01-01 10:12 - 020014540 _____ C:\Users\vondr\Downloads\Photos(1).zip
2020-12-30 16:42 - 2020-12-30 18:08 - 861230662 _____ C:\Users\vondr\Downloads\Zorro Tajemná tvář (1998) CZ-dabing.avi
2020-12-28 22:21 - 2020-12-28 22:21 - 000230832 _____ C:\Windows\system32\spacedeskSrvLibConnectorUsb.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-23 19:09 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-23 19:07 - 2020-07-02 18:26 - 000000000 ____D C:\Windows\system32\Tasks\MEGA
2021-01-23 19:07 - 2020-03-20 15:11 - 000000000 ___HD C:\Users\vondr\AppData\Local\Mega Limited
2021-01-23 19:05 - 2020-03-20 14:37 - 000000000 ___HD C:\Users\vondr\AppData\LocalLow\Mozilla
2021-01-23 18:55 - 2020-03-22 08:07 - 000000000 ___HD C:\Users\vondr\AppData\Local\CrashDumps
2021-01-23 18:55 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2021-01-23 18:51 - 2020-03-20 15:01 - 000000000 ____D C:\Program Files\CCleaner
2021-01-23 18:50 - 2020-03-20 15:14 - 000000000 ___RD C:\MEGA
2021-01-23 18:43 - 2020-03-21 05:35 - 000000000 ___RD C:\Users\vondr\OneDrive
2021-01-23 18:43 - 2020-03-21 05:33 - 000000000 __SHD C:\Users\vondr\IntelGraphicsProfiles
2021-01-23 18:43 - 2020-03-20 14:51 - 000000000 ____D C:\ProgramData\AVG
2021-01-23 18:35 - 2019-10-26 19:51 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-23 18:35 - 2019-07-18 13:46 - 000718198 _____ C:\Windows\system32\perfh005.dat
2021-01-23 18:35 - 2019-07-18 13:46 - 000145242 _____ C:\Windows\system32\perfc005.dat
2021-01-23 18:31 - 2019-10-26 19:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-23 18:30 - 2019-10-26 19:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-01-23 18:30 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\system32\config\BBI
2021-01-23 17:20 - 2020-03-20 18:42 - 000000000 ___HD C:\Users\vondr\AppData\Local\Deployment
2021-01-23 16:22 - 2019-10-26 20:28 - 000000000 ____D C:\Program Files\Acer
2021-01-23 16:22 - 2019-10-26 20:23 - 000000000 ____D C:\ProgramData\Acer
2021-01-23 16:22 - 2019-10-26 20:23 - 000000000 ____D C:\Program Files (x86)\Acer
2021-01-23 16:15 - 2020-03-28 08:23 - 000000000 ____D C:\Users\vondr\AppData\Roaming\vlc
2021-01-23 11:37 - 2020-03-21 05:21 - 000000000 ____D C:\Users\vondr
2021-01-23 11:00 - 2020-03-21 10:23 - 000000000 ____D C:\Users\vondr\Documents\MyHeritage
2021-01-23 09:36 - 2020-03-21 05:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\Packages
2021-01-23 09:08 - 2020-06-14 20:46 - 000000916 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-23 09:08 - 2020-06-14 20:46 - 000000912 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-22 21:16 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2021-01-22 18:31 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-22 15:01 - 2020-06-14 20:46 - 000003976 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 15:01 - 2020-06-14 20:46 - 000003744 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-22 15:01 - 2020-06-09 18:13 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-21 18:54 - 2020-03-20 16:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-20 23:00 - 2020-06-09 18:13 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-20 23:00 - 2020-06-09 18:13 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-20 23:00 - 2020-05-25 15:32 - 000002728 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-01-20 23:00 - 2020-05-05 21:09 - 000002596 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTaskCore
2021-01-20 23:00 - 2020-03-22 09:31 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-01-20 23:00 - 2020-03-22 07:36 - 000003482 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-01-20 23:00 - 2020-03-20 15:01 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-01-20 23:00 - 2020-03-20 15:01 - 000002236 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-01-20 23:00 - 2020-03-20 14:54 - 000003400 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-20 23:00 - 2020-03-20 14:54 - 000003176 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-20 23:00 - 2020-03-20 14:52 - 000003250 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2021-01-20 23:00 - 2019-10-26 20:23 - 000004302 _____ C:\Windows\system32\Tasks\Software Update Application
2021-01-20 23:00 - 2019-10-26 20:23 - 000002730 _____ C:\Windows\system32\Tasks\ACC
2021-01-20 17:12 - 2020-10-14 13:40 - 000000000 ____D C:\Users\vondr\Desktop\Kubova složka
2021-01-20 14:56 - 2020-05-08 07:25 - 000000000 ____D C:\Users\vondr\Desktop\Lydinka
2021-01-20 13:28 - 2020-06-14 20:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-16 23:09 - 2020-03-22 14:18 - 000000000 ____D C:\Users\vondr\Documents\Učitelství 1. stupeň ZŠ
2021-01-16 10:47 - 2020-04-28 20:55 - 000000000 ___HD C:\Users\vondr\AppData\Local\SquirrelTemp
2021-01-15 21:13 - 2020-10-18 14:34 - 000000000 ____D C:\Users\vondr\Desktop\Elen
2021-01-15 14:50 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2021-01-15 09:56 - 2020-10-17 05:51 - 000002379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2021-01-14 11:24 - 2020-03-21 05:33 - 000000000 __RHD C:\Users\vondr\3D Objects
2021-01-14 11:24 - 2019-10-26 19:43 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-13 22:17 - 2019-10-26 19:40 - 000585688 _____ C:\Windows\system32\FNTCACHE.DAT
2021-01-13 22:17 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 21:21 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2021-01-13 21:19 - 2020-03-21 07:36 - 000000000 ____D C:\Windows\system32\MRT
2021-01-13 21:17 - 2020-03-21 07:36 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-13 21:11 - 2019-10-26 19:42 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2021-01-13 19:25 - 2020-03-20 15:18 - 000000000 ____D C:\Users\vondr\Desktop\Programy
2021-01-12 18:41 - 2020-06-06 13:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\ElevatedDiagnostics
2021-01-12 16:50 - 2020-06-26 19:30 - 000000000 ___HD C:\Users\vondr\AppData\Local\D3DSCache
2021-01-12 08:57 - 2020-03-20 14:55 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-12 08:52 - 2020-06-14 20:52 - 000000000 ___RD C:\Users\vondr\Dropbox
2021-01-11 22:37 - 2020-04-09 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-11 20:59 - 2020-03-24 14:38 - 000000806 _____ C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2021-01-11 20:59 - 2020-03-24 14:38 - 000000000 ___HD C:\Users\vondr\AppData\Local\Pinnacle
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\ProgramData\Documents\PCLECHAL.INI
2021-01-10 16:26 - 2020-12-08 14:15 - 000001768 _____ C:\Users\vondr\Desktop\DaVinci Resolve Project Server.lnk
2021-01-10 16:26 - 2020-12-08 14:15 - 000001748 _____ C:\Users\vondr\Desktop\Resolve.lnk
2021-01-10 16:26 - 2020-11-01 19:01 - 000001165 _____ C:\Users\vondr\Desktop\MuseScore 3.lnk
2021-01-10 16:26 - 2020-09-05 20:27 - 000002228 _____ C:\Users\vondr\Desktop\Proclaim.lnk
2021-01-10 16:26 - 2020-06-06 07:10 - 000001008 _____ C:\Users\vondr\Desktop\Open Broadcaster Software.lnk
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Macromed
2021-01-08 12:34 - 2020-12-16 19:37 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2021-01-05 10:23 - 2020-03-21 05:35 - 000000000 ___HD C:\Users\vondr\AppData\Local\PlaceholderTileLogoFolder
2021-01-05 09:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ServiceState
2021-01-04 11:38 - 2020-06-06 07:10 - 000000000 ____D C:\Users\vondr\AppData\Roaming\OBS
2021-01-02 10:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\NDF

==================== Files in the root of some directories ========

2020-03-24 14:38 - 2021-01-11 20:59 - 000000806 _____ () C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2020-03-24 14:38 - 2020-03-24 14:49 - 000000678 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManager.log
2020-03-24 14:38 - 2020-03-24 14:47 - 000000647 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManagerPrevious.log
2020-05-18 21:12 - 2020-05-18 21:15 - 000000716 _____ () C:\Users\vondr\AppData\Roaming\{E4A5EDDB-14CF-DFF1-5402-0DB91944F0C4}
2020-03-24 14:39 - 2020-06-04 19:42 - 000003584 ____H () C:\Users\vondr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-01-2021
Ran by vondr (23-01-2021 19:20:53)
Running from C:\Users\vondr\Downloads
Windows 10 Home Version 1909 18363.1316 (X64) (2020-03-21 04:13:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3501418858-3935017464-633493477-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3501418858-3935017464-633493477-503 - Limited - Disabled)
evraj (S-1-5-21-3501418858-3935017464-633493477-1002 - Limited - Disabled)
Guest (S-1-5-21-3501418858-3935017464-633493477-501 - Limited - Enabled)
vondr (S-1-5-21-3501418858-3935017464-633493477-1001 - Administrator - Enabled) => C:\Users\vondr
WDAGUtilityAccount (S-1-5-21-3501418858-3935017464-633493477-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security Ultra (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Jumpstart (HKLM-x32\...\{4335EAF1-21F1-43D3-8F6F-D7E481E6959A}) (Version: 3.3.19180.60 - Acer)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 87.0.7485.90 - Autoři prohlížeče AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1066.0 - AVG Technologies) Hidden
Avidemux VC++ 64bits (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\{958c1728-e7f8-47a4-980a-8dafc359bffe}) (Version: 2.7.5 - Mean)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
calibre (HKLM-x32\...\{13EA2450-6C59-4732-97E5-0BD1D17C8C16}) (Version: 4.12.0 - Kovid Goyal)
calibre 64bit (HKLM\...\{0FD8DB9D-5D78-4919-9413-0940F43334DD}) (Version: 4.23.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Corel Update Manager (HKLM-x32\...\{FB8387EF-D663-4152-A13E-6B963AC1052A}) (Version: 2.3 - Corel corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DaVinci Resolve (HKLM\...\{8CD009CC-08AB-4873-BA5C-DC4AEA8BACEB}) (Version: 16.2.7010 - Blackmagic Design)
Dazzle Video Capture DVC100 X64 Driver 1.06 (HKLM-x32\...\{BFF23267-1D19-444E-93E2-E5059BE805EA}) (Version: 1.06.0000 - Pinnacle)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Discord (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 113.4.507 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 5.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 5.2.1.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Media Creator Student (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Media Creator Student) (Version: - NOVÁ ŠKOLA, s.r.o.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\Proplus2019Retail - cs-cz) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\Proplus2019Retail - en-us) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.2 - Mozilla)
MuseScore 3 (HKLM\...\{0595F182-4FEF-48B9-B32A-7FB2B58B4D40}) (Version: 3.5.2.311459983 - Werner Schweer and Others)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8580 - MyHeritage.com)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Pinnacle Studio 21 (HKLM\...\{41C196DB-9ED2-449E-A056-20E67255BFC8}) (Version: 21.1.0.132 - Corel Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd)
Proclaim (HKLM-x32\...\{1FC10733-55C3-4306-BCE2-FAEAB6234DB9}) (Version: 3.0.32 - Faithlife Corporation)
SMART Czech Handwriting Resources (HKLM-x32\...\{65A75580-36A0-4490-8181-0967DD6C1464}) (Version: 15.1.10.0 - SMART Technologies ULC)
SMART Gallery Essentials (HKLM-x32\...\{B1BCD573-39C5-48CD-A2A7-F6525BB7072B}) (Version: 2.0.2.0 - SMART Technologies ULC)
SMART Ink (HKLM-x32\...\{431EB801-5D66-409A-B208-AEF76AD7F677}) (Version: 5.6.132.0 - SMART Technologies ULC)
SMART Lesson Activity Toolkit (HKLM-x32\...\{8AD57A09-153E-4F6D-A269-0AD8AC54B82A}) (Version: 2.0.7.0 - SMART Technologies ULC)
SMART Notebook (HKLM-x32\...\{F0215213-10A6-43DB-9BE4-3FD3DB5D8E53}) (Version: 19.1.2790.0 - SMART Technologies ULC)
SMART Ovladače produktů (HKLM-x32\...\{8F02AE90-9219-42E6-AD41-0C0055227B9B}) (Version: 12.15.139.0 - SMART Technologies ULC)
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4 [2020-12-25] (Acer Incorporated)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2020-12-18] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.50.3.0_x86__kgqvnymyfvs32 [2021-01-22] (king.com)
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3019.0_x64__48frkmn4z8aw4 [2020-09-02] (Acer Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-22] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.6.9.0_x86__q4d96b2w5wcc2 [2021-01-15] (Evernote)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2020-12-04] (GoTrustID Inc.)
InspIS SETmobile -> C:\Program Files\WindowsApps\57320732D6B4D.InspISSETmobile_1.10.20098.0_x86__beccaw7yyhy3g [2020-06-06] (Itelligence-cz, a.s.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-26] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-03-22] (LinkedIn)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-15] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.11214.5532.0_x64__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation)
Movie & Audio Studio -> C:\Program Files\WindowsApps\MAGIXSoftwareGmbH.MovieAudioStudio_1.1.4.0_x64__awcgk3qbzve1y [2019-10-26] (MAGIX Software GmbH)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-14] (Netflix, Inc.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3017.0_x64__48frkmn4z8aw4 [2020-09-30] (Acer Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.9.205.0_x64__dt26b99r8h8gj [2020-04-03] (Realtek Semiconductor Corp)
Simple Mahjong -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleMahjong_6.0.46.0_x64__kx24dqmazqk8j [2020-11-23] (Random Salad Games LLC)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.0.0.0_x64__kx24dqmazqk8j [2020-12-10] (Random Salad Games LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-11] (Spotify AB) [Startup Task]
User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3106.0_x64__48frkmn4z8aw4 [2019-10-26] (Acer Incorporated)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\vondr\Dropbox [2020-06-14 20:52]
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-12-21] (Mega Limited -> )
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => pvmjpgx40.dll
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media Creator Student\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()
Shortcut: C:\Users\Public\Desktop\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()

==================== Loaded Modules (Whitelisted) =============

2020-07-22 00:16 - 2020-07-22 00:16 - 013053440 _____ () [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\avcodec-58.dll
2020-07-22 00:16 - 2020-07-22 00:16 - 002290176 _____ () [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\avformat-58.dll
2020-07-22 00:16 - 2020-07-22 00:16 - 000521728 _____ () [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\avutil-56.dll
2020-07-22 00:00 - 2020-07-22 00:00 - 000065024 _____ () [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\cares.dll
2020-07-22 00:16 - 2020-07-22 00:16 - 000145408 _____ () [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\swresample-3.dll
2020-07-22 00:16 - 2020-07-22 00:16 - 000570880 _____ () [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\swscale-5.dll
2020-05-19 04:23 - 2020-05-19 04:23 - 000340992 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll
2020-03-20 18:19 - 2020-03-20 18:19 - 000649360 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCP120.dll
2020-03-20 18:19 - 2020-03-20 18:19 - 000952464 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCR120.dll
2020-07-22 00:02 - 2020-07-22 00:02 - 000295936 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\libcurl.dll
2020-07-21 23:51 - 2020-07-21 23:51 - 002444288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\libcrypto-1_1.dll
2020-07-21 23:51 - 2020-07-21 23:51 - 000504320 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\libssl-1_1.dll
2020-04-28 04:04 - 2020-04-28 04:04 - 005118072 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\sharepoint.com -> hxxps://sgocz-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\acer01.jpg
DNS Servers: 217.170.96.24 - 217.170.96.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "sbsdk-server"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{AFA40E3C-3A4B-4D65-8CA6-2F2B538ADC7C}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C2693F67-7F90-47E8-BAC5-D21DDCD29430}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{625B6298-3E39-4BEC-A378-34A10B5D7E6B}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C9FC2339-E561-4842-9402-4D5258E73E35}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{51C9519E-14B3-4F3D-A4B1-0A71D350B899}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{D72A7625-1716-4338-B3B5-95DD8614EB91}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{09D6004D-C58D-490B-92DA-528EFADFE65E}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{542580BC-9B62-4D86-96A9-F3D4A9037CCA}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{43EBF8B2-78A5-478F-8737-CD4E37CA9E7A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{787DE9E6-18DE-4520-AC9C-C763A57D9E06}] => (Allow) LPort=2869
FirewallRules: [{48745246-F828-4CCF-9F54-2C2579EBD72E}] => (Allow) LPort=1900
FirewallRules: [{EE2BAC3B-FB30-41F8-8090-77100E129D37}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D6771A49-9327-41B2-A4D0-64947F8B8919}] => (Allow) C:\Users\vondr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0F000823-23F3-43F9-A139-CE3F64959B36}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{26B391DD-70F9-469C-814E-56B10A122B9E}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{AF476B1F-839F-46A0-A1C2-091B1864670F}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{8F9789AB-7DAC-43F0-B841-04CAF38381E2}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{3C588922-5C1D-4EE4-B940-C8C369183531}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{20C929A6-B975-46FB-A382-9158625F9A33}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [TCP Query User{91B19305-4BCC-4AD6-AB10-CB5D60170EEF}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{7C1324A5-6FAA-43D2-AF0D-DD6C0B0A5196}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B928F4C-4ACC-4C04-92B0-186D1440FED9}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{831393B5-BA13-44CE-9606-EFB19A4E36BF}] => (Allow) C:\Program Files\davinci\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{E25C9EDF-66FE-4BA1-865F-82F1837CABBF}] => (Allow) C:\Program Files\davinci\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{30D2C5AB-8965-42D6-A687-AE4AC40BA1C0}] => (Allow) C:\Program Files\davinci\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C234F19C-AF58-4FE5-A281-81D84501DDE7}] => (Allow) C:\Program Files\davinci\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C7226308-2E81-419B-9F35-935FDC831C1C}] => (Allow) C:\Program Files\davinci\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B44025CC-6B06-43E3-BAB1-6746DE8F8B6D}] => (Allow) C:\Program Files\davinci\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{2D6BA5AB-6B51-421E-840C-B339012E5546}] => (Allow) C:\Program Files\davinci\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{FD129A87-620A-43BF-911F-653068019978}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7999DFAB-C0D8-4548-847A-8ABD0D9B60BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{917CE632-2F9F-459F-8421-E82CDE1A019B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E332BB6-CCF1-4EE7-B94B-4F72F702E1EB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{43530F86-3C03-4AC1-AC0E-21104197E8FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32D0840B-EA7A-4C0F-9CA8-2E0AEC438823}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{80C6F615-431D-4F32-9E08-C56AC6AFF3FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1F87DB70-2A00-4255-9E90-20B4A9FDFFB7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{907BB384-1F31-4BF9-85E7-0309FE0A2DE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{60569595-7D50-4349-B3C9-214CDDFCBCF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F2CB1F22-4353-4BD8-8123-9B9005E931BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3103ADEF-248D-4235-8303-8A36BDE6BBCE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D740F461-293F-40A7-8466-57B9374A709F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2DBC9A17-6817-44FD-8CD8-298EBD2D11B7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5A92702F-6A10-40DC-B73C-FF31767C0BBC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{91E4FA52-F20F-433F-902B-0B59B1A89E3B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{97D81E44-7E64-4A4C-8A8D-BE4D0A091E53}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{232C1E3C-E03D-4DC7-9955-504E53AC69C4}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{A412419D-5F4D-426F-B274-3FB19BDAD14F}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, LLC -> AVG Technologies)
FirewallRules: [{B37A68AD-CE85-465D-A121-751962EDF1A5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

20-01-2021 16:45:59 Naplánovaný kontrolní bod
23-01-2021 16:22:19 AdwCleaner_BeforeCleaning_23/01/2021_16:22:19

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/23/2021 06:43:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2b98
Čas spuštění chybující aplikace: 0x01d6f1af4c2d3875
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 89c344b7-51e5-4d6d-8e02-595c4a7622b1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/23/2021 06:43:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x1f04
Čas spuštění chybující aplikace: 0x01d6f1af40d3620c
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 88f5a26b-d9f9-47e5-924b-31208c632ed0
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration

Error: (01/23/2021 12:23:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x2974
Čas spuštění chybující aplikace: 0x01d6f17a31a45147
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: b2e4221e-6815-41c6-b9f0-c5cae07ecb4c
Úplný název chybujícího balíčku: Microsoft.People_10.1909.10841.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x

Error: (01/23/2021 11:57:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2e5c
Čas spuštění chybující aplikace: 0x01d6f1760d9e9def
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: b3a5f487-e96f-4199-ac41-dd399c110882
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/23/2021 11:53:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x261c
Čas spuštění chybující aplikace: 0x01d6f1760289df63
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: a56583ca-a11b-4911-86c2-9c4ef1c0faa0
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration

Error: (01/23/2021 09:38:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x20dc
Čas spuštění chybující aplikace: 0x01d6f16324fd7245
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: fa664e4e-085a-474f-9555-c6770fac6933
Úplný název chybujícího balíčku: Microsoft.People_10.1909.10841.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x

Error: (01/23/2021 09:14:07 AM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (10896,G,0) Pokus o otevření souboru C:\Users\vondr\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (01/23/2021 09:09:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2b04
Čas spuštění chybující aplikace: 0x01d6f15f00e3940d
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 14ae9055-4c5a-45a7-bdef-4ddd8febf5f1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (01/23/2021 07:13:24 PM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 07:03:27 PM) (Source: DCOM) (EventID: 10000) (User: ACER)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (01/23/2021 06:55:44 PM) (Source: DCOM) (EventID: 10000) (User: ACER)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (01/23/2021 06:44:44 PM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 06:43:27 PM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/23/2021 06:31:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba ACCSvc neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (01/23/2021 06:30:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\system32\IntelIHVRouter08.dll

Error: (01/23/2021 06:30:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\system32\IntelIHVRouter08.dll


Windows Defender:
===================================
Date: 2020-03-21 05:15:53.826
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

CodeIntegrity:
===================================

Date: 2021-01-23 18:58:25.051
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 18:58:25.015
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 18:58:24.976
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 18:58:24.940
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 18:58:24.903
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 18:58:24.869
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 18:58:24.836
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-23 18:51:19.941
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Insyde Corp. V1.12 08/23/2019
Motherboard: CML Doc_WC
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 66%
Total physical RAM: 7908.93 MB
Available physical RAM: 2644.05 MB
Total Virtual: 12772.93 MB
Available Virtual: 7154.65 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:952.75 GB) (Free:757.2 GB) NTFS

\\?\Volume{1d5ebf39-7363-46c2-85c5-6d21b232b7ac}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS
\\?\Volume{c3e08722-726c-4ee4-9a79-cd22e2eab3a5}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 32C3B5EB)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: Preventivka

#6 Příspěvek od Diallix »

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {F529DC17-CC82-427D-916F-E08A16B4112E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {7F4414B9-004D-4202-B52B-04C054268D56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
U1 avgbdisk; no ImagePath
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
FirewallRules: [{787DE9E6-18DE-4520-AC9C-C763A57D9E06}] => (Allow) LPort=2869
FirewallRules: [{48745246-F828-4CCF-9F54-2C2579EBD72E}] => (Allow) LPort=1900

EmptyTemp:

Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

vondra007
Návštěvník
Návštěvník
Příspěvky: 82
Registrován: 24 bře 2007 00:24

Re: Preventivka

#7 Příspěvek od vondra007 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 23-01-2021
Ran by vondr (24-01-2021 08:40:48) Run:1
Running from C:\Users\vondr\Downloads
Loaded Profiles: vondr
Boot Mode: Normal
==============================================

fixlist content:
*****************
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {F529DC17-CC82-427D-916F-E08A16B4112E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {7F4414B9-004D-4202-B52B-04C054268D56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
U1 avgbdisk; no ImagePath
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
FirewallRules: [{787DE9E6-18DE-4520-AC9C-C763A57D9E06}] => (Allow) LPort=2869
FirewallRules: [{48745246-F828-4CCF-9F54-2C2579EBD72E}] => (Allow) LPort=1900

EmptyTemp:
*****************

HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F529DC17-CC82-427D-916F-E08A16B4112E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F529DC17-CC82-427D-916F-E08A16B4112E}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7F4414B9-004D-4202-B52B-04C054268D56}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F4414B9-004D-4202-B52B-04C054268D56}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\System\CurrentControlSet\Services\avgbdisk => could not remove, key could be protected
C:\Windows\system32\DrtmAuth9.bin => moved successfully
C:\Windows\system32\DrtmAuth8.bin => moved successfully
C:\Windows\system32\DrtmAuth7.bin => moved successfully
C:\Windows\system32\DrtmAuth6.bin => moved successfully
C:\Windows\system32\DrtmAuth5.bin => moved successfully
C:\Windows\system32\DrtmAuth4.bin => moved successfully
C:\Windows\system32\DrtmAuth3.bin => moved successfully
C:\Windows\system32\DrtmAuth2.bin => moved successfully
C:\Windows\system32\DrtmAuth18.bin => moved successfully
C:\Windows\system32\DrtmAuth17.bin => moved successfully
C:\Windows\system32\DrtmAuth16.bin => moved successfully
C:\Windows\system32\DrtmAuth15.bin => moved successfully
C:\Windows\system32\DrtmAuth12.bin => moved successfully
C:\Windows\system32\DrtmAuth11.bin => moved successfully
C:\Windows\system32\DrtmAuth10.bin => moved successfully
C:\Windows\system32\DrtmAuth1.bin => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{787DE9E6-18DE-4520-AC9C-C763A57D9E06}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{48745246-F828-4CCF-9F54-2C2579EBD72E}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 71798360 B
Java, Flash, Steam htmlcache => 1185 B
Windows/system/drivers => 2629306 B
Edge => 105485 B
Chrome => 299008 B
Brave => 0 B
Vivaldi => 0 B
Firefox => 230951207 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4386 B
NetworkService => 4386 B
vondr => 172884573 B

RecycleBin => 1819831891 B
EmptyTemp: => 2.2 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 24-01-2021 08:42:15)


Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\avgbdisk => could not remove, key could be protected

==== End of Fixlog 08:42:15 ====

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: Preventivka

#8 Příspěvek od Diallix »

Dobre. Ako je na tom pocitac?
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

vondra007
Návštěvník
Návštěvník
Příspěvky: 82
Registrován: 24 bře 2007 00:24

Re: Preventivka

#9 Příspěvek od vondra007 »

PC teď vypadá dobře.
Nedaří se mi přihlašovat na účty Microsoftu, ale to už asi nebude problém, který lze tady vyřešit.

Děkuji za pomoc.

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: Preventivka

#10 Příspěvek od Diallix »

V poriadku, nemate zac :]]
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

Zamčeno