Preventivka
Napsal: 23 led 2021 12:53
Prosím o kontrolu. Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-01-2021
Ran by vondr (administrator) on ACER (Acer Aspire A515-54) (23-01-2021 12:02:55)
Running from C:\Users\vondr\Downloads
Loaded Profiles: vondr
Platform: Windows 10 Home Version 1909 18363.1316 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SMART Technologies ULC -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\vondr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [953120 2019-12-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [209856 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2772416 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [654272 2019-12-01] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [68544 2019-11-08] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [287680 2019-12-11] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [17860720 2020-06-09] (MyHeritage (USA) Inc. -> MyHeritage)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455872 2020-06-22] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1938296 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [Discord] => C:\Users\vondr\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [movavi_suite_agent] => "C:\Users\vondr\AppData\Roaming\Movavi Video Suite 21\AgentInformer.exe"
HKLM\...\Print\Monitors\SMART Local Port: C:\Windows\system32\smrtlocalmon.dll [38336 2019-12-11] (SMART Technologies ULC -> SMART Technologies ULC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\Installer\chrmstp.exe [2021-01-15] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
Startup: C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-03-20]
ShortcutTarget: MEGAsync.lnk -> C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {04F3C3E4-866C-4D2A-A7BA-911D1AAEB0F2} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [42024 2020-07-27] (Acer Incorporated -> )
Task: {063E0D4F-A169-42D1-B0D0-6D23A17987C4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {096D3188-360A-44AE-AD0E-A8B12CA94972} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {1726979B-C5CD-489F-BE1F-D13C2B9D105C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {2022ACBC-9B6B-4E83-845A-D644A1F7F084} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2051A499-55AF-40E9-A3B3-8D20AD3BB528} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3A63133B-6693-4CB2-B7A7-FCC88C32D7BE} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {402F12A1-9F43-47BD-BE21-DA3EE8817383} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4829224 2020-07-27] (Acer Incorporated -> )
Task: {41DE8B83-1F4F-40C9-B643-4F880FCCAEB0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {4DDAADA0-4CA2-4DE4-8B4C-7E6C550DF545} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {5FE2E219-EBA8-46B6-A95A-F81054A8CA79} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {6FADE556-B535-4B09-9300-5260E40CA893} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {73136951-D3EA-421A-8B36-39C07D0E4620} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2962984 2020-07-27] (Acer Incorporated -> )
Task: {76207EF4-D7A4-476C-AAF1-D17A3C9F2BB7} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1589696 2016-08-25] (Corel Corporation -> Corel Corporation)
Task: {7B966F81-F4DC-4EA6-B885-3D140F0354AF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7E2B130B-E9BA-439E-ACBB-9AC688F759D4} - System32\Tasks\App Explorer => C:\Users\vondr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7968424 2020-12-03] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {7F4414B9-004D-4202-B52B-04C054268D56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {834D74AC-9B61-4762-8C0A-E88BCDEBF722} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {8DE0C78B-7DCE-45AA-9BF5-7EE547BF8A77} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {9E4C7CCA-BDC2-4302-AB00-9C22CC5CEC55} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2776440 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4817966-D9C3-4129-A180-DD0E4D3EA406} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-10] (Acer Incorporated -> Acer Incorporated)
Task: {AA11E31D-FB1D-4214-9E59-64592C4E120F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AEFA965A-3D04-44F5-8DB6-235B26A89664} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B254A56A-7DA6-4E18-9839-8F87C485448E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {C7540E9F-992B-49BA-BD6F-B49A96C035A3} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {C89F0CE5-459B-4AF6-97B1-A17E6DCE98AA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9DE60DD-62E5-4B80-BD33-C9BB9757C30C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {D024C990-8584-4BE7-A555-0A4FAE095D04} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {DDF8A764-0C98-41FF-8073-91917C60210E} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {E3962082-6F97-4076-B540-EB981D5F9E24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED85F9E6-92A4-4947-89EA-CD2FB68DB28C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {F057957B-3FB0-4C8F-8912-B23662056E9D} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-10] (Acer Incorporated -> Acer Incorporated)
Task: {F529DC17-CC82-427D-916F-E08A16B4112E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {F5D9ED7C-22FB-406A-AEB1-B54A25166D3B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FF5CD041-D220-4605-8D4D-5B53C3652B6D} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3501418858-3935017464-633493477-1001 => C:\Users\vondr\AppData\Local\MEGAsync\MEGAupdater.exe [1303800 2020-11-17] (Mega Limited -> Mega Limited)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{4e8c78d5-12f3-471b-bd12-26482e625aea}: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{774ed856-bf70-462c-ac71-60ea5fe1934c}: [DhcpNameServer] 40.33.1.66
Edge:
=======
Edge Profile: C:\Users\vondr\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-12]
FireFox:
========
FF DefaultProfile: gteda8g8.default
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\gteda8g8.default [2020-06-06]
FF NewTab: Mozilla\Firefox\Profiles\gteda8g8.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\3zlkr7ca.default-release [2021-01-23]
FF NewTab: Mozilla\Firefox\Profiles\3zlkr7ca.default-release -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default [2021-01-23]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Prezentace) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-20]
CHR Extension: (Dokumenty) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-20]
CHR Extension: (Disk Google) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-20]
CHR Extension: (Tabulky) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-20]
CHR Extension: (Gmail) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\System Profile [2020-07-10]
CHR HKU\S-1-5-21-3501418858-3935017464-633493477-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300584 2020-07-27] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\elevation_service.exe [1409264 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2021-01-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-02-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\FileSyncHelper.exe [2191224 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\OneDriveUpdaterService.exe [2556280 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [635328 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [36936 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [208808 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [332944 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [247952 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [97424 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42568 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [176528 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [522616 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [109064 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84640 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469040 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [214936 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [325056 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 SMARTMouseFilterx64; C:\Windows\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U1 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-23 12:01 - 2021-01-23 12:02 - 000053267 _____ C:\Users\vondr\Downloads\Addition.txt
2021-01-23 11:59 - 2021-01-23 12:03 - 000028648 _____ C:\Users\vondr\Downloads\FRST.txt
2021-01-23 11:59 - 2021-01-23 12:03 - 000000000 ____D C:\FRST
2021-01-23 11:58 - 2021-01-23 11:58 - 002296832 _____ (Farbar) C:\Users\vondr\Downloads\FRST64.exe
2021-01-23 11:23 - 2021-01-23 11:23 - 000491068 _____ C:\Users\vondr\Downloads\document(3).pdf
2021-01-23 11:21 - 2021-01-23 11:22 - 000193973 _____ C:\Users\vondr\Downloads\document(2).pdf
2021-01-23 11:21 - 2021-01-23 11:21 - 000201962 _____ C:\Users\vondr\Downloads\document(1).pdf
2021-01-23 11:18 - 2021-01-23 11:18 - 000256743 _____ C:\Users\vondr\Downloads\document.pdf
2021-01-22 21:48 - 2021-01-22 21:48 - 000000000 ____D C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ
2021-01-22 19:39 - 2021-01-22 21:19 - 1056279596 _____ C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ.rar
2021-01-20 20:10 - 2021-01-20 20:10 - 000101126 _____ C:\Users\vondr\Downloads\Jakub Vraj - hodnocení 1. pololetí.pdf
2021-01-20 20:08 - 2021-01-20 20:08 - 000947989 _____ C:\Users\vondr\Downloads\Elen Vrajová hodnocení 1. pololetí.pdf
2021-01-20 20:04 - 2021-01-20 20:04 - 000175730 _____ C:\Users\vondr\Documents\img20210120_20041257.pdf
2021-01-20 20:01 - 2021-01-20 20:01 - 000131319 _____ C:\Users\vondr\Documents\img20210120_20011630.pdf
2021-01-20 20:00 - 2021-01-20 20:00 - 000152357 _____ C:\Users\vondr\Documents\img20210120_20002051.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000949615 _____ C:\Users\vondr\Downloads\Lýdie Vrajová hodnocení 1. pololetí.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000170524 _____ C:\Users\vondr\Documents\img20210120_19593500.pdf
2021-01-20 19:58 - 2021-01-20 19:58 - 000326312 _____ C:\Users\vondr\Documents\img20210120_19583054.pdf
2021-01-20 13:28 - 2021-01-20 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 13:53 - 2021-01-19 13:53 - 001658948 _____ C:\Users\vondr\Downloads\prilohy_5832.zip
2021-01-16 22:22 - 2021-01-16 22:22 - 000667464 _____ C:\Users\vondr\Downloads\Otázky specka skupina X.pdf
2021-01-16 10:47 - 2021-01-16 10:47 - 000002402 _____ C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-16 10:47 - 2021-01-16 10:47 - 000002394 _____ C:\Users\vondr\Desktop\Microsoft Teams.lnk
2021-01-16 09:39 - 2021-01-16 09:39 - 008934985 _____ C:\Users\vondr\Downloads\Daniel - Metodika hudební výchovy.pdf
2021-01-16 09:18 - 2021-01-16 09:18 - 000000000 ____D C:\Users\vondr\Downloads\metodika hudební výchovy
2021-01-14 21:25 - 2021-01-14 21:25 - 003221282 _____ C:\Users\vondr\Downloads\svp_zakladni_skola(1).pdf
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-01-13 21:14 - 2021-01-13 21:14 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2021-01-13 21:14 - 2021-01-13 21:14 - 000094720 _____ C:\Windows\system32\VirtualMonitorManager.dll
2021-01-13 21:14 - 2021-01-13 21:14 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 001101312 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000696832 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000455680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000294912 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000208384 _____ C:\Windows\SysWOW64\HeatCore.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000053248 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2021-01-13 21:12 - 2021-01-13 21:12 - 002590720 _____ C:\Windows\system32\dwmscene.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000549888 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-01-13 21:12 - 2021-01-13 21:12 - 000331264 _____ C:\Windows\SysWOW64\ssdm.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000266752 _____ C:\Windows\system32\HeatCore.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000186368 _____ C:\Windows\system32\BthpanContextHandler.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000164864 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-01-13 21:11 - 2021-01-13 21:11 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-01-13 21:11 - 2021-01-13 21:11 - 000453632 _____ C:\Windows\system32\ssdm.dll
2021-01-13 21:11 - 2021-01-13 21:11 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-01-13 21:11 - 2021-01-13 21:11 - 000061440 _____ C:\Windows\system32\rdsxvmaudio.dll
2021-01-13 14:37 - 2021-01-13 14:38 - 238280628 _____ C:\Users\vondr\Downloads\VID_20210113_105618.mp4
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\vondr\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\Public\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\ProgramData\Documents\Blackmagic Design
2021-01-13 14:35 - 2021-01-13 14:35 - 000000000 ____D C:\Users\vondr\AppData\Roaming\Blackmagic Design
2021-01-13 14:30 - 2021-01-13 15:53 - 1479669340 _____ C:\Users\vondr\Downloads\Seherezada a gentleman 1 (1990).avi
2021-01-12 22:16 - 2021-01-12 22:19 - 229196490 _____ C:\Users\vondr\Downloads\Požehnej nám, Pane.mp4
2021-01-12 18:41 - 2021-01-12 18:41 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-01-12 17:41 - 2021-01-12 18:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-12 17:41 - 2021-01-12 18:41 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-12 17:41 - 2021-01-12 18:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-11 21:56 - 2021-01-11 21:56 - 000012629 _____ C:\ProgramData\mijprvzl.ern
2021-01-11 21:56 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\AgentInformer
2021-01-11 21:43 - 2021-01-11 21:43 - 000000000 ____D C:\ProgramData\Movavi
2021-01-11 21:04 - 2021-01-11 21:44 - 000000000 ____D C:\Users\vondr\AppData\Roaming\MOVAVI
2021-01-11 21:02 - 2021-01-11 21:02 - 000000000 ___HD C:\Users\vondr\AppData\Local\Downloaded Installations
2021-01-11 20:58 - 2021-01-11 20:58 - 000000000 ___HD C:\Users\vondr\AppData\Local\cache
2021-01-11 20:53 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\Movavi
2021-01-11 20:53 - 2021-01-11 20:53 - 000012763 _____ C:\ProgramData\juutbubq.wrj
2021-01-11 20:53 - 2021-01-11 20:53 - 000000016 _____ C:\ProgramData\mntemp
2021-01-11 20:53 - 2021-01-11 20:53 - 000000000 ___HD C:\Users\vondr\AppData\Local\VideoEditorPlus
2021-01-10 15:31 - 2021-01-10 16:39 - 000000000 ____D C:\Users\vondr\Downloads\Talentové zkoušky 12. 1. Reg. č. 37
2021-01-08 22:47 - 2021-01-08 22:47 - 001188732 _____ C:\Users\vondr\Downloads\Ze zrna chléb.ppsx
2021-01-07 13:22 - 2021-01-07 13:22 - 000085189 _____ C:\Users\vondr\Downloads\REKTION DER VERBEN (2) (1).pdf
2021-01-06 18:05 - 2021-01-06 18:05 - 010458055 _____ C:\Users\vondr\Downloads\Ze zrna chléb 3. třída.pdf
2021-01-06 18:02 - 2021-01-09 09:12 - 001188788 _____ C:\Users\vondr\Downloads\Ze zrna chléb.pptx
2021-01-06 18:02 - 2021-01-06 18:02 - 008905203 _____ C:\Users\vondr\Downloads\Ze zrna chléb přílohy.pdf
2021-01-06 18:02 - 2021-01-06 18:02 - 007323433 _____ C:\Users\vondr\Downloads\Ze zrna chléb 4. třída.pdf
2021-01-03 20:38 - 2021-01-03 20:38 - 000040306 _____ C:\Users\vondr\Downloads\Terminologie- prezentace.pptx
2021-01-03 20:03 - 2021-01-03 20:03 - 000233607 _____ C:\Users\vondr\Downloads\Specialni_pedagogika (1).pdf
2021-01-01 13:14 - 2021-01-01 13:17 - 875328632 _____ C:\Users\vondr\Downloads\Photos(31).zip
2021-01-01 13:12 - 2021-01-01 13:14 - 566918143 _____ C:\Users\vondr\Downloads\Photos(30).zip
2021-01-01 13:09 - 2021-01-01 13:09 - 075316402 _____ C:\Users\vondr\Downloads\Photos(29).zip
2021-01-01 13:03 - 2021-01-01 13:05 - 709800516 _____ C:\Users\vondr\Downloads\Photos(28).zip
2021-01-01 12:57 - 2021-01-01 12:58 - 231462310 _____ C:\Users\vondr\Downloads\Photos(27).zip
2021-01-01 12:52 - 2021-01-01 12:53 - 272690407 _____ C:\Users\vondr\Downloads\Photos(26).zip
2021-01-01 12:49 - 2021-01-01 12:50 - 046862024 _____ C:\Users\vondr\Downloads\Photos(25).zip
2021-01-01 12:43 - 2021-01-01 12:43 - 080102189 _____ C:\Users\vondr\Downloads\Photos(24).zip
2021-01-01 12:36 - 2021-01-01 12:36 - 042234807 _____ C:\Users\vondr\Downloads\Photos(23).zip
2021-01-01 12:35 - 2021-01-01 12:35 - 002547399 _____ C:\Users\vondr\Downloads\Photos(22).zip
2021-01-01 12:34 - 2021-01-01 12:35 - 059813674 _____ C:\Users\vondr\Downloads\Photos(21).zip
2021-01-01 12:33 - 2021-01-01 12:34 - 145034378 _____ C:\Users\vondr\Downloads\Photos(20).zip
2021-01-01 12:23 - 2021-01-01 12:25 - 303354575 _____ C:\Users\vondr\Downloads\Photos(19).zip
2021-01-01 12:20 - 2021-01-01 12:22 - 402008563 _____ C:\Users\vondr\Downloads\Photos(18).zip
2021-01-01 12:17 - 2021-01-01 12:21 - 930500063 _____ C:\Users\vondr\Downloads\Photos(17).zip
2021-01-01 12:13 - 2021-01-01 12:15 - 586408013 _____ C:\Users\vondr\Downloads\Photos(16).zip
2021-01-01 12:03 - 2021-01-01 12:05 - 730303733 _____ C:\Users\vondr\Downloads\Photos(15).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 008095447 _____ C:\Users\vondr\Downloads\Photos(14).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 006039894 _____ C:\Users\vondr\Downloads\Photos(13).zip
2021-01-01 11:55 - 2021-01-01 11:55 - 028306500 _____ C:\Users\vondr\Downloads\Photos(12).zip
2021-01-01 11:54 - 2021-01-01 11:54 - 021209297 _____ C:\Users\vondr\Downloads\Photos(11).zip
2021-01-01 11:53 - 2021-01-01 11:54 - 071520486 _____ C:\Users\vondr\Downloads\Photos(10).zip
2021-01-01 11:48 - 2021-01-01 11:51 - 714091045 _____ C:\Users\vondr\Downloads\Photos(9).zip
2021-01-01 11:45 - 2021-01-01 11:45 - 106831176 _____ C:\Users\vondr\Downloads\Photos(8).zip
2021-01-01 11:28 - 2021-01-01 11:29 - 464833017 _____ C:\Users\vondr\Downloads\Photos(7).zip
2021-01-01 10:51 - 2021-01-01 10:55 - 532913154 _____ C:\Users\vondr\Downloads\Photos(6).zip
2021-01-01 10:50 - 2021-01-01 10:54 - 548419463 _____ C:\Users\vondr\Downloads\Photos(5).zip
2021-01-01 10:49 - 2021-01-01 10:56 - 777901906 _____ C:\Users\vondr\Downloads\Photos(4).zip
2021-01-01 10:18 - 2021-01-01 10:22 - 1150225471 _____ C:\Users\vondr\Downloads\Photos(3).zip
2021-01-01 10:14 - 2021-01-01 10:15 - 122609245 _____ C:\Users\vondr\Downloads\Photos(2).zip
2021-01-01 10:13 - 2021-01-01 10:13 - 037763002 _____ C:\Users\vondr\Downloads\Photos.zip
2021-01-01 10:12 - 2021-01-01 10:12 - 020014540 _____ C:\Users\vondr\Downloads\Photos(1).zip
2020-12-30 16:42 - 2020-12-30 18:08 - 861230662 _____ C:\Users\vondr\Downloads\Zorro Tajemná tvář (1998) CZ-dabing.avi
2020-12-28 22:21 - 2020-12-28 22:21 - 000230832 _____ C:\Windows\system32\spacedeskSrvLibConnectorUsb.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-23 12:00 - 2019-10-26 19:51 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-23 12:00 - 2019-07-18 13:46 - 000718198 _____ C:\Windows\system32\perfh005.dat
2021-01-23 12:00 - 2019-07-18 13:46 - 000145242 _____ C:\Windows\system32\perfc005.dat
2021-01-23 12:00 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2021-01-23 11:57 - 2020-03-22 08:07 - 000000000 ___HD C:\Users\vondr\AppData\Local\CrashDumps
2021-01-23 11:55 - 2020-03-20 15:01 - 000000000 ____D C:\Program Files\CCleaner
2021-01-23 11:53 - 2020-03-21 05:35 - 000000000 ___RD C:\Users\vondr\OneDrive
2021-01-23 11:53 - 2020-03-21 05:33 - 000000000 __SHD C:\Users\vondr\IntelGraphicsProfiles
2021-01-23 11:53 - 2020-03-20 14:37 - 000000000 ___HD C:\Users\vondr\AppData\LocalLow\Mozilla
2021-01-23 11:53 - 2019-10-26 19:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-23 11:53 - 2019-10-26 19:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-01-23 11:53 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-23 11:37 - 2020-03-21 05:21 - 000000000 ____D C:\Users\vondr
2021-01-23 11:00 - 2020-03-21 10:23 - 000000000 ____D C:\Users\vondr\Documents\MyHeritage
2021-01-23 09:36 - 2020-03-21 05:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\Packages
2021-01-23 09:14 - 2020-03-20 18:42 - 000000000 ___HD C:\Users\vondr\AppData\Local\Deployment
2021-01-23 09:11 - 2020-03-21 05:21 - 000000000 ___HD C:\Users\vondr\AppData\Local\Host App Service
2021-01-23 09:08 - 2020-06-14 20:46 - 000000916 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-23 09:08 - 2020-06-14 20:46 - 000000912 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-22 21:16 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2021-01-22 18:31 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-22 15:01 - 2020-06-14 20:46 - 000003976 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 15:01 - 2020-06-14 20:46 - 000003744 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-22 15:01 - 2020-06-09 18:13 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-21 18:54 - 2020-03-20 16:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-20 23:00 - 2020-09-30 09:07 - 000002296 _____ C:\Windows\system32\Tasks\Power Button
2021-01-20 23:00 - 2020-09-30 09:07 - 000002222 _____ C:\Windows\system32\Tasks\Quick Access
2021-01-20 23:00 - 2020-06-09 18:13 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-20 23:00 - 2020-06-09 18:13 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-20 23:00 - 2020-05-25 15:32 - 000002728 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-01-20 23:00 - 2020-05-05 21:09 - 000002596 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTaskCore
2021-01-20 23:00 - 2020-03-22 09:31 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-01-20 23:00 - 2020-03-22 07:36 - 000003482 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-01-20 23:00 - 2020-03-21 05:13 - 000003692 _____ C:\Windows\system32\Tasks\AcerCMUpdateTask2.1.16258
2021-01-20 23:00 - 2020-03-20 15:01 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-01-20 23:00 - 2020-03-20 15:01 - 000002236 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-01-20 23:00 - 2020-03-20 14:54 - 000003400 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-20 23:00 - 2020-03-20 14:54 - 000003176 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-20 23:00 - 2020-03-20 14:52 - 000003250 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2021-01-20 23:00 - 2019-10-26 20:28 - 000002712 _____ C:\Windows\system32\Tasks\UEIPInvitation
2021-01-20 23:00 - 2019-10-26 20:23 - 000004302 _____ C:\Windows\system32\Tasks\Software Update Application
2021-01-20 23:00 - 2019-10-26 20:23 - 000003852 _____ C:\Windows\system32\Tasks\ACCAgent
2021-01-20 23:00 - 2019-10-26 20:23 - 000002730 _____ C:\Windows\system32\Tasks\ACC
2021-01-20 23:00 - 2019-10-26 20:23 - 000002408 _____ C:\Windows\system32\Tasks\App Explorer
2021-01-20 23:00 - 2019-10-26 20:23 - 000002328 _____ C:\Windows\system32\Tasks\ACCBackgroundApplication
2021-01-20 17:12 - 2020-10-14 13:40 - 000000000 ____D C:\Users\vondr\Desktop\Kubova složka
2021-01-20 15:07 - 2020-03-28 08:23 - 000000000 ____D C:\Users\vondr\AppData\Roaming\vlc
2021-01-20 14:56 - 2020-05-08 07:25 - 000000000 ____D C:\Users\vondr\Desktop\Lydinka
2021-01-20 13:28 - 2020-06-14 20:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-16 23:10 - 2020-10-23 18:12 - 000000000 ___RD C:\Users\vondr\Documents\MEGAsync
2021-01-16 23:09 - 2020-03-22 14:18 - 000000000 ____D C:\Users\vondr\Documents\Učitelství 1. stupeň ZŠ
2021-01-16 10:47 - 2020-04-28 20:55 - 000000000 ___HD C:\Users\vondr\AppData\Local\SquirrelTemp
2021-01-15 21:13 - 2020-10-18 14:34 - 000000000 ____D C:\Users\vondr\Desktop\Elen
2021-01-15 14:50 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2021-01-15 09:56 - 2020-10-17 05:51 - 000002379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2021-01-14 11:34 - 2020-03-20 14:51 - 000000000 ____D C:\ProgramData\AVG
2021-01-14 11:24 - 2020-03-21 05:33 - 000000000 __RHD C:\Users\vondr\3D Objects
2021-01-14 11:24 - 2019-10-26 19:43 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-13 22:17 - 2019-10-26 19:40 - 000585688 _____ C:\Windows\system32\FNTCACHE.DAT
2021-01-13 22:17 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2021-01-13 22:17 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\system32\config\BBI
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 21:21 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2021-01-13 21:19 - 2020-03-21 07:36 - 000000000 ____D C:\Windows\system32\MRT
2021-01-13 21:17 - 2020-03-21 07:36 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-13 21:11 - 2019-10-26 19:42 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2021-01-13 19:25 - 2020-03-20 15:18 - 000000000 ____D C:\Users\vondr\Desktop\Programy
2021-01-13 19:15 - 2020-03-20 15:11 - 000000000 ___HD C:\Users\vondr\AppData\Local\MEGAsync
2021-01-12 18:41 - 2020-06-06 13:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\ElevatedDiagnostics
2021-01-12 16:50 - 2020-06-26 19:30 - 000000000 ___HD C:\Users\vondr\AppData\Local\D3DSCache
2021-01-12 08:57 - 2020-03-20 14:55 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-12 08:52 - 2020-06-14 20:52 - 000000000 ___RD C:\Users\vondr\Dropbox
2021-01-11 22:37 - 2020-04-09 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-11 20:59 - 2020-03-24 14:38 - 000000806 _____ C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2021-01-11 20:59 - 2020-03-24 14:38 - 000000000 ___HD C:\Users\vondr\AppData\Local\Pinnacle
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\ProgramData\Documents\PCLECHAL.INI
2021-01-10 16:26 - 2020-12-08 14:15 - 000001768 _____ C:\Users\vondr\Desktop\DaVinci Resolve Project Server.lnk
2021-01-10 16:26 - 2020-12-08 14:15 - 000001748 _____ C:\Users\vondr\Desktop\Resolve.lnk
2021-01-10 16:26 - 2020-11-01 19:01 - 000001165 _____ C:\Users\vondr\Desktop\MuseScore 3.lnk
2021-01-10 16:26 - 2020-09-05 20:27 - 000002228 _____ C:\Users\vondr\Desktop\Proclaim.lnk
2021-01-10 16:26 - 2020-06-06 07:10 - 000001008 _____ C:\Users\vondr\Desktop\Open Broadcaster Software.lnk
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Macromed
2021-01-08 12:34 - 2020-12-16 19:37 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2021-01-05 10:23 - 2020-03-21 05:35 - 000000000 ___HD C:\Users\vondr\AppData\Local\PlaceholderTileLogoFolder
2021-01-05 09:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ServiceState
2021-01-04 11:38 - 2020-06-06 07:10 - 000000000 ____D C:\Users\vondr\AppData\Roaming\OBS
2021-01-02 10:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories ========
2020-03-24 14:38 - 2021-01-11 20:59 - 000000806 _____ () C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2020-03-24 14:38 - 2020-03-24 14:49 - 000000678 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManager.log
2020-03-24 14:38 - 2020-03-24 14:47 - 000000647 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManagerPrevious.log
2020-05-18 21:12 - 2020-05-18 21:15 - 000000716 _____ () C:\Users\vondr\AppData\Roaming\{E4A5EDDB-14CF-DFF1-5402-0DB91944F0C4}
2020-03-24 14:39 - 2020-06-04 19:42 - 000003584 ____H () C:\Users\vondr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-01-2021
Ran by vondr (23-01-2021 12:04:50)
Running from C:\Users\vondr\Downloads
Windows 10 Home Version 1909 18363.1316 (X64) (2020-03-21 04:13:15)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3501418858-3935017464-633493477-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3501418858-3935017464-633493477-503 - Limited - Disabled)
evraj (S-1-5-21-3501418858-3935017464-633493477-1002 - Limited - Disabled)
Guest (S-1-5-21-3501418858-3935017464-633493477-501 - Limited - Enabled)
vondr (S-1-5-21-3501418858-3935017464-633493477-1001 - Administrator - Enabled) => C:\Users\vondr
WDAGUtilityAccount (S-1-5-21-3501418858-3935017464-633493477-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Security Ultra (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Jumpstart (HKLM-x32\...\{4335EAF1-21F1-43D3-8F6F-D7E481E6959A}) (Version: 3.3.19180.60 - Acer)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
App Explorer (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Host App Service) (Version: 0.273.4.186 - SweetLabs) <==== ATTENTION
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 87.0.7485.90 - Autoři prohlížeče AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1066.0 - AVG Technologies) Hidden
Avidemux VC++ 64bits (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\{958c1728-e7f8-47a4-980a-8dafc359bffe}) (Version: 2.7.5 - Mean)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
calibre (HKLM-x32\...\{13EA2450-6C59-4732-97E5-0BD1D17C8C16}) (Version: 4.12.0 - Kovid Goyal)
calibre 64bit (HKLM\...\{0FD8DB9D-5D78-4919-9413-0940F43334DD}) (Version: 4.23.0 - Kovid Goyal)
Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3019 - Acer Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Corel Update Manager (HKLM-x32\...\{FB8387EF-D663-4152-A13E-6B963AC1052A}) (Version: 2.3 - Corel corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DaVinci Resolve (HKLM\...\{8CD009CC-08AB-4873-BA5C-DC4AEA8BACEB}) (Version: 16.2.7010 - Blackmagic Design)
Dazzle Video Capture DVC100 X64 Driver 1.06 (HKLM-x32\...\{BFF23267-1D19-444E-93E2-E5059BE805EA}) (Version: 1.06.0000 - Pinnacle)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Discord (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated)
Dropbox (HKLM-x32\...\Dropbox) (Version: 113.4.507 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 5.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 5.2.1.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Media Creator Student (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Media Creator Student) (Version: - NOVÁ ŠKOLA, s.r.o.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\Proplus2019Retail - cs-cz) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\Proplus2019Retail - en-us) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.2 - Mozilla)
MuseScore 3 (HKLM\...\{0595F182-4FEF-48B9-B32A-7FB2B58B4D40}) (Version: 3.5.2.311459983 - Werner Schweer and Others)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8580 - MyHeritage.com)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Pinnacle Studio 21 (HKLM\...\{41C196DB-9ED2-449E-A056-20E67255BFC8}) (Version: 21.1.0.132 - Corel Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd)
Proclaim (HKLM-x32\...\{1FC10733-55C3-4306-BCE2-FAEAB6234DB9}) (Version: 3.0.32 - Faithlife Corporation)
Quick Access Service (HKLM\...\{AB25551C-74EF-4BAB-9989-891517FCF9FF}) (Version: 3.00.3017 - Acer Incorporated)
SMART Czech Handwriting Resources (HKLM-x32\...\{65A75580-36A0-4490-8181-0967DD6C1464}) (Version: 15.1.10.0 - SMART Technologies ULC)
SMART Gallery Essentials (HKLM-x32\...\{B1BCD573-39C5-48CD-A2A7-F6525BB7072B}) (Version: 2.0.2.0 - SMART Technologies ULC)
SMART Ink (HKLM-x32\...\{431EB801-5D66-409A-B208-AEF76AD7F677}) (Version: 5.6.132.0 - SMART Technologies ULC)
SMART Lesson Activity Toolkit (HKLM-x32\...\{8AD57A09-153E-4F6D-A269-0AD8AC54B82A}) (Version: 2.0.7.0 - SMART Technologies ULC)
SMART Notebook (HKLM-x32\...\{F0215213-10A6-43DB-9BE4-3FD3DB5D8E53}) (Version: 19.1.2790.0 - SMART Technologies ULC)
SMART Ovladače produktů (HKLM-x32\...\{8F02AE90-9219-42E6-AD41-0C0055227B9B}) (Version: 12.15.139.0 - SMART Technologies ULC)
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
User Experience Improvement Program Service (HKLM\...\{E9495FD3-F73D-4D33-A104-047F9E8BE6C7}) (Version: 4.00.3106 - Acer Incorporated)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4 [2020-12-25] (Acer Incorporated)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2020-12-18] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.50.3.0_x86__kgqvnymyfvs32 [2021-01-22] (king.com)
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3019.0_x64__48frkmn4z8aw4 [2020-09-02] (Acer Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-22] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.6.9.0_x86__q4d96b2w5wcc2 [2021-01-15] (Evernote)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2020-12-04] (GoTrustID Inc.)
InspIS SETmobile -> C:\Program Files\WindowsApps\57320732D6B4D.InspISSETmobile_1.10.20098.0_x86__beccaw7yyhy3g [2020-06-06] (Itelligence-cz, a.s.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-26] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-03-22] (LinkedIn)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-15] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.11214.5532.0_x64__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation)
Movie & Audio Studio -> C:\Program Files\WindowsApps\MAGIXSoftwareGmbH.MovieAudioStudio_1.1.4.0_x64__awcgk3qbzve1y [2019-10-26] (MAGIX Software GmbH)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-14] (Netflix, Inc.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3017.0_x64__48frkmn4z8aw4 [2020-09-30] (Acer Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.9.205.0_x64__dt26b99r8h8gj [2020-04-03] (Realtek Semiconductor Corp)
Simple Mahjong -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleMahjong_6.0.46.0_x64__kx24dqmazqk8j [2020-11-23] (Random Salad Games LLC)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.0.0.0_x64__kx24dqmazqk8j [2020-12-10] (Random Salad Games LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-11] (Spotify AB) [Startup Task]
User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3106.0_x64__48frkmn4z8aw4 [2019-10-26] (Acer Incorporated)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{C1340C88-050F-43F2-90D8-A4737F931936} -> [MEGA] => C:\MEGA [2020-03-20 15:14]
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{D7523B04-701A-444C-8BB8-30CAC820E23E} -> [MEGAsync] => C:\Users\vondr\Documents\MEGAsync [2020-10-23 18:12]
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\vondr\Dropbox [2020-06-14 20:52]
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => pvmjpgx40.dll
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media Creator Student\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()
Shortcut: C:\Users\Public\Desktop\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()
==================== Loaded Modules (Whitelisted) =============
2020-03-20 18:19 - 2020-03-20 18:19 - 000649360 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCP120.dll
2020-03-20 18:19 - 2020-03-20 18:19 - 000952464 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCR120.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-3501418858-3935017464-633493477-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\sharepoint.com -> hxxps://sgocz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\acer01.jpg
DNS Servers: 217.170.96.24 - 217.170.96.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "sbsdk-server"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\StartupApproved\Run: => "Discord"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{AFA40E3C-3A4B-4D65-8CA6-2F2B538ADC7C}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C2693F67-7F90-47E8-BAC5-D21DDCD29430}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{625B6298-3E39-4BEC-A378-34A10B5D7E6B}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C9FC2339-E561-4842-9402-4D5258E73E35}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{51C9519E-14B3-4F3D-A4B1-0A71D350B899}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{D72A7625-1716-4338-B3B5-95DD8614EB91}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{09D6004D-C58D-490B-92DA-528EFADFE65E}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{542580BC-9B62-4D86-96A9-F3D4A9037CCA}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{43EBF8B2-78A5-478F-8737-CD4E37CA9E7A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{787DE9E6-18DE-4520-AC9C-C763A57D9E06}] => (Allow) LPort=2869
FirewallRules: [{48745246-F828-4CCF-9F54-2C2579EBD72E}] => (Allow) LPort=1900
FirewallRules: [{EE2BAC3B-FB30-41F8-8090-77100E129D37}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D6771A49-9327-41B2-A4D0-64947F8B8919}] => (Allow) C:\Users\vondr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0F000823-23F3-43F9-A139-CE3F64959B36}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{26B391DD-70F9-469C-814E-56B10A122B9E}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{AF476B1F-839F-46A0-A1C2-091B1864670F}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{8F9789AB-7DAC-43F0-B841-04CAF38381E2}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{3C588922-5C1D-4EE4-B940-C8C369183531}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{20C929A6-B975-46FB-A382-9158625F9A33}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [TCP Query User{91B19305-4BCC-4AD6-AB10-CB5D60170EEF}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{7C1324A5-6FAA-43D2-AF0D-DD6C0B0A5196}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B928F4C-4ACC-4C04-92B0-186D1440FED9}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{831393B5-BA13-44CE-9606-EFB19A4E36BF}] => (Allow) C:\Program Files\davinci\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{E25C9EDF-66FE-4BA1-865F-82F1837CABBF}] => (Allow) C:\Program Files\davinci\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{30D2C5AB-8965-42D6-A687-AE4AC40BA1C0}] => (Allow) C:\Program Files\davinci\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C234F19C-AF58-4FE5-A281-81D84501DDE7}] => (Allow) C:\Program Files\davinci\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C7226308-2E81-419B-9F35-935FDC831C1C}] => (Allow) C:\Program Files\davinci\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B44025CC-6B06-43E3-BAB1-6746DE8F8B6D}] => (Allow) C:\Program Files\davinci\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{49FC318C-4341-47A6-92BB-8D630F47434E}] => (Allow) C:\Program Files\davinci\ElementsPanelDaemon.exe => No File
FirewallRules: [{52DC84E4-B8EC-4B01-A719-6251941F5C3D}] => (Allow) C:\Program Files\davinci\OxygenPanelDaemon.exe => No File
FirewallRules: [{2D6BA5AB-6B51-421E-840C-B339012E5546}] => (Allow) C:\Program Files\davinci\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{BECE0FFE-EB35-403A-A8E2-0AF257719E09}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe => No File
FirewallRules: [{FD129A87-620A-43BF-911F-653068019978}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7999DFAB-C0D8-4548-847A-8ABD0D9B60BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{917CE632-2F9F-459F-8421-E82CDE1A019B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E332BB6-CCF1-4EE7-B94B-4F72F702E1EB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{43530F86-3C03-4AC1-AC0E-21104197E8FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32D0840B-EA7A-4C0F-9CA8-2E0AEC438823}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{80C6F615-431D-4F32-9E08-C56AC6AFF3FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1F87DB70-2A00-4255-9E90-20B4A9FDFFB7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{907BB384-1F31-4BF9-85E7-0309FE0A2DE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{60569595-7D50-4349-B3C9-214CDDFCBCF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F2CB1F22-4353-4BD8-8123-9B9005E931BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3103ADEF-248D-4235-8303-8A36BDE6BBCE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D740F461-293F-40A7-8466-57B9374A709F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2DBC9A17-6817-44FD-8CD8-298EBD2D11B7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5A92702F-6A10-40DC-B73C-FF31767C0BBC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{91E4FA52-F20F-433F-902B-0B59B1A89E3B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{97D81E44-7E64-4A4C-8A8D-BE4D0A091E53}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{232C1E3C-E03D-4DC7-9955-504E53AC69C4}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{A412419D-5F4D-426F-B274-3FB19BDAD14F}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, LLC -> AVG Technologies)
FirewallRules: [{B37A68AD-CE85-465D-A121-751962EDF1A5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Restore Points =========================
20-01-2021 16:45:59 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/23/2021 11:57:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2e5c
Čas spuštění chybující aplikace: 0x01d6f1760d9e9def
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: b3a5f487-e96f-4199-ac41-dd399c110882
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/23/2021 11:53:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x261c
Čas spuštění chybující aplikace: 0x01d6f1760289df63
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: a56583ca-a11b-4911-86c2-9c4ef1c0faa0
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration
Error: (01/23/2021 09:38:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x20dc
Čas spuštění chybující aplikace: 0x01d6f16324fd7245
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: fa664e4e-085a-474f-9555-c6770fac6933
Úplný název chybujícího balíčku: Microsoft.People_10.1909.10841.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x
Error: (01/23/2021 09:14:07 AM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (10896,G,0) Pokus o otevření souboru C:\Users\vondr\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).
Error: (01/23/2021 09:09:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2b04
Čas spuštění chybující aplikace: 0x01d6f15f00e3940d
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 14ae9055-4c5a-45a7-bdef-4ddd8febf5f1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/23/2021 09:08:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x250c
Čas spuštění chybující aplikace: 0x01d6f15ef6027d8b
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 9594b515-6c3c-4ebb-85fd-39a672d67afb
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration
Error: (01/23/2021 08:40:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x3574
Čas spuštění chybující aplikace: 0x01d6f15b10213421
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 8bab9574-687e-489c-99e6-b6a36b43fea5
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration
Error: (01/22/2021 04:06:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x445c
Čas spuštění chybující aplikace: 0x01d6f0c722b4ae57
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 3c6e8e51-a018-462f-92a4-af0d59076bea
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (01/23/2021 11:58:37 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 11:55:04 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 11:53:42 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 11:53:24 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (11:08:22, 23.01.2021) bylo neočekávané.
Error: (01/23/2021 11:53:17 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.
Error: (01/23/2021 09:38:37 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 09:10:02 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 09:08:42 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-03-21 05:15:53.826
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0
CodeIntegrity:
===================================
Date: 2021-01-23 11:55:28.208
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-01-23 11:55:28.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-01-23 11:55:28.182
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-01-23 11:54:29.838
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.826
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.813
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.802
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.789
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Insyde Corp. V1.12 08/23/2019
Motherboard: CML Doc_WC
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 84%
Total physical RAM: 7908.93 MB
Available physical RAM: 1203.04 MB
Total Virtual: 12772.93 MB
Available Virtual: 5729.8 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:952.75 GB) (Free:755.21 GB) NTFS
\\?\Volume{1d5ebf39-7363-46c2-85c5-6d21b232b7ac}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS
\\?\Volume{c3e08722-726c-4ee4-9a79-cd22e2eab3a5}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-01-2021
Ran by vondr (administrator) on ACER (Acer Aspire A515-54) (23-01-2021 12:02:55)
Running from C:\Users\vondr\Downloads
Loaded Profiles: vondr
Platform: Windows 10 Home Version 1909 18363.1316 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler.exe
(AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ea63d1eddd5853b5\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SMART Technologies ULC -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe
(SweetLabs Inc. -> SweetLabs, Inc) C:\Users\vondr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [953120 2019-12-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [209856 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2772416 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [654272 2019-12-01] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [68544 2019-11-08] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [287680 2019-12-11] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [17860720 2020-06-09] (MyHeritage (USA) Inc. -> MyHeritage)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455872 2020-06-22] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1938296 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [Discord] => C:\Users\vondr\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Run: [movavi_suite_agent] => "C:\Users\vondr\AppData\Roaming\Movavi Video Suite 21\AgentInformer.exe"
HKLM\...\Print\Monitors\SMART Local Port: C:\Windows\system32\smrtlocalmon.dll [38336 2019-12-11] (SMART Technologies ULC -> SMART Technologies ULC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\Installer\chrmstp.exe [2021-01-15] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
Startup: C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-03-20]
ShortcutTarget: MEGAsync.lnk -> C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {04F3C3E4-866C-4D2A-A7BA-911D1AAEB0F2} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [42024 2020-07-27] (Acer Incorporated -> )
Task: {063E0D4F-A169-42D1-B0D0-6D23A17987C4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {096D3188-360A-44AE-AD0E-A8B12CA94972} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {1726979B-C5CD-489F-BE1F-D13C2B9D105C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {2022ACBC-9B6B-4E83-845A-D644A1F7F084} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2051A499-55AF-40E9-A3B3-8D20AD3BB528} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3A63133B-6693-4CB2-B7A7-FCC88C32D7BE} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2178360 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {402F12A1-9F43-47BD-BE21-DA3EE8817383} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4829224 2020-07-27] (Acer Incorporated -> )
Task: {41DE8B83-1F4F-40C9-B643-4F880FCCAEB0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {4DDAADA0-4CA2-4DE4-8B4C-7E6C550DF545} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {5FE2E219-EBA8-46B6-A95A-F81054A8CA79} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {6FADE556-B535-4B09-9300-5260E40CA893} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {73136951-D3EA-421A-8B36-39C07D0E4620} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2962984 2020-07-27] (Acer Incorporated -> )
Task: {76207EF4-D7A4-476C-AAF1-D17A3C9F2BB7} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1589696 2016-08-25] (Corel Corporation -> Corel Corporation)
Task: {7B966F81-F4DC-4EA6-B885-3D140F0354AF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7E2B130B-E9BA-439E-ACBB-9AC688F759D4} - System32\Tasks\App Explorer => C:\Users\vondr\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7968424 2020-12-03] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {7F4414B9-004D-4202-B52B-04C054268D56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {834D74AC-9B61-4762-8C0A-E88BCDEBF722} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770984 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {8DE0C78B-7DCE-45AA-9BF5-7EE547BF8A77} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {9E4C7CCA-BDC2-4302-AB00-9C22CC5CEC55} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2776440 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4817966-D9C3-4129-A180-DD0E4D3EA406} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268096 2019-01-10] (Acer Incorporated -> Acer Incorporated)
Task: {AA11E31D-FB1D-4214-9E59-64592C4E120F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AEFA965A-3D04-44F5-8DB6-235B26A89664} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B254A56A-7DA6-4E18-9839-8F87C485448E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {C7540E9F-992B-49BA-BD6F-B49A96C035A3} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {C89F0CE5-459B-4AF6-97B1-A17E6DCE98AA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9DE60DD-62E5-4B80-BD33-C9BB9757C30C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {D024C990-8584-4BE7-A555-0A4FAE095D04} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {DDF8A764-0C98-41FF-8073-91917C60210E} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {E3962082-6F97-4076-B540-EB981D5F9E24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED85F9E6-92A4-4947-89EA-CD2FB68DB28C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447528 2020-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {F057957B-3FB0-4C8F-8912-B23662056E9D} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211136 2019-01-10] (Acer Incorporated -> Acer Incorporated)
Task: {F529DC17-CC82-427D-916F-E08A16B4112E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-03-20] (Google Inc -> Google LLC)
Task: {F5D9ED7C-22FB-406A-AEB1-B54A25166D3B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FF5CD041-D220-4605-8D4D-5B53C3652B6D} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3501418858-3935017464-633493477-1001 => C:\Users\vondr\AppData\Local\MEGAsync\MEGAupdater.exe [1303800 2020-11-17] (Mega Limited -> Mega Limited)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{4e8c78d5-12f3-471b-bd12-26482e625aea}: [DhcpNameServer] 217.170.96.24 217.170.96.2 192.168.22.1
Tcpip\..\Interfaces\{774ed856-bf70-462c-ac71-60ea5fe1934c}: [DhcpNameServer] 40.33.1.66
Edge:
=======
Edge Profile: C:\Users\vondr\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-12]
FireFox:
========
FF DefaultProfile: gteda8g8.default
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\gteda8g8.default [2020-06-06]
FF NewTab: Mozilla\Firefox\Profiles\gteda8g8.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF ProfilePath: C:\Users\vondr\AppData\Roaming\Mozilla\Firefox\Profiles\3zlkr7ca.default-release [2021-01-23]
FF NewTab: Mozilla\Firefox\Profiles\3zlkr7ca.default-release -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default [2021-01-23]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Prezentace) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-20]
CHR Extension: (Dokumenty) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-20]
CHR Extension: (Disk Google) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-20]
CHR Extension: (Tabulky) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-20]
CHR Extension: (Gmail) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\vondr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR Profile: C:\Users\vondr\AppData\Local\Google\Chrome\User Data\System Profile [2020-07-10]
CHR HKU\S-1-5-21-3501418858-3935017464-633493477-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300584 2020-07-27] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-17] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\87.0.7485.90\elevation_service.exe [1409264 2020-12-15] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2021-01-03] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-02-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\FileSyncHelper.exe [2191224 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\OneDriveUpdaterService.exe [2556280 2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465960 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [526888 2020-09-10] (Acer Incorporated -> Acer Incorporated)
R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [635328 2019-12-10] (SMART Technologies ULC -> SMART Technologies)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [305984 2019-01-10] (Acer Incorporated -> Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [36936 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [208808 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [332944 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [247952 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [97424 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [16832 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42568 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [176528 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [522616 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [109064 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84640 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851392 2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469040 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [214936 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [325056 2021-01-08] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 SMARTMouseFilterx64; C:\Windows\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U1 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-23 12:01 - 2021-01-23 12:02 - 000053267 _____ C:\Users\vondr\Downloads\Addition.txt
2021-01-23 11:59 - 2021-01-23 12:03 - 000028648 _____ C:\Users\vondr\Downloads\FRST.txt
2021-01-23 11:59 - 2021-01-23 12:03 - 000000000 ____D C:\FRST
2021-01-23 11:58 - 2021-01-23 11:58 - 002296832 _____ (Farbar) C:\Users\vondr\Downloads\FRST64.exe
2021-01-23 11:23 - 2021-01-23 11:23 - 000491068 _____ C:\Users\vondr\Downloads\document(3).pdf
2021-01-23 11:21 - 2021-01-23 11:22 - 000193973 _____ C:\Users\vondr\Downloads\document(2).pdf
2021-01-23 11:21 - 2021-01-23 11:21 - 000201962 _____ C:\Users\vondr\Downloads\document(1).pdf
2021-01-23 11:18 - 2021-01-23 11:18 - 000256743 _____ C:\Users\vondr\Downloads\document.pdf
2021-01-22 21:48 - 2021-01-22 21:48 - 000000000 ____D C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ
2021-01-22 19:39 - 2021-01-22 21:19 - 1056279596 _____ C:\Users\vondr\Downloads\DIDAKTIKA VV pro NŠ.rar
2021-01-20 20:10 - 2021-01-20 20:10 - 000101126 _____ C:\Users\vondr\Downloads\Jakub Vraj - hodnocení 1. pololetí.pdf
2021-01-20 20:08 - 2021-01-20 20:08 - 000947989 _____ C:\Users\vondr\Downloads\Elen Vrajová hodnocení 1. pololetí.pdf
2021-01-20 20:04 - 2021-01-20 20:04 - 000175730 _____ C:\Users\vondr\Documents\img20210120_20041257.pdf
2021-01-20 20:01 - 2021-01-20 20:01 - 000131319 _____ C:\Users\vondr\Documents\img20210120_20011630.pdf
2021-01-20 20:00 - 2021-01-20 20:00 - 000152357 _____ C:\Users\vondr\Documents\img20210120_20002051.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000949615 _____ C:\Users\vondr\Downloads\Lýdie Vrajová hodnocení 1. pololetí.pdf
2021-01-20 19:59 - 2021-01-20 19:59 - 000170524 _____ C:\Users\vondr\Documents\img20210120_19593500.pdf
2021-01-20 19:58 - 2021-01-20 19:58 - 000326312 _____ C:\Users\vondr\Documents\img20210120_19583054.pdf
2021-01-20 13:28 - 2021-01-20 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 13:53 - 2021-01-19 13:53 - 001658948 _____ C:\Users\vondr\Downloads\prilohy_5832.zip
2021-01-16 22:22 - 2021-01-16 22:22 - 000667464 _____ C:\Users\vondr\Downloads\Otázky specka skupina X.pdf
2021-01-16 10:47 - 2021-01-16 10:47 - 000002402 _____ C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-01-16 10:47 - 2021-01-16 10:47 - 000002394 _____ C:\Users\vondr\Desktop\Microsoft Teams.lnk
2021-01-16 09:39 - 2021-01-16 09:39 - 008934985 _____ C:\Users\vondr\Downloads\Daniel - Metodika hudební výchovy.pdf
2021-01-16 09:18 - 2021-01-16 09:18 - 000000000 ____D C:\Users\vondr\Downloads\metodika hudební výchovy
2021-01-14 21:25 - 2021-01-14 21:25 - 003221282 _____ C:\Users\vondr\Downloads\svp_zakladni_skola(1).pdf
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-01-13 21:14 - 2021-01-13 21:14 - 000568320 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-01-13 21:14 - 2021-01-13 21:14 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2021-01-13 21:14 - 2021-01-13 21:14 - 000094720 _____ C:\Windows\system32\VirtualMonitorManager.dll
2021-01-13 21:14 - 2021-01-13 21:14 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 001101312 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000696832 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000576512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000455680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000294912 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000208384 _____ C:\Windows\SysWOW64\HeatCore.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax
2021-01-13 21:13 - 2021-01-13 21:13 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-01-13 21:13 - 2021-01-13 21:13 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-01-13 21:13 - 2021-01-13 21:13 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000053248 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-01-13 21:13 - 2021-01-13 21:13 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2021-01-13 21:12 - 2021-01-13 21:12 - 002590720 _____ C:\Windows\system32\dwmscene.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000549888 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-01-13 21:12 - 2021-01-13 21:12 - 000331264 _____ C:\Windows\SysWOW64\ssdm.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000266752 _____ C:\Windows\system32\HeatCore.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000186368 _____ C:\Windows\system32\BthpanContextHandler.dll
2021-01-13 21:12 - 2021-01-13 21:12 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-01-13 21:12 - 2021-01-13 21:12 - 000164864 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-01-13 21:11 - 2021-01-13 21:11 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-01-13 21:11 - 2021-01-13 21:11 - 000453632 _____ C:\Windows\system32\ssdm.dll
2021-01-13 21:11 - 2021-01-13 21:11 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-01-13 21:11 - 2021-01-13 21:11 - 000061440 _____ C:\Windows\system32\rdsxvmaudio.dll
2021-01-13 14:37 - 2021-01-13 14:38 - 238280628 _____ C:\Users\vondr\Downloads\VID_20210113_105618.mp4
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\vondr\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\Users\Public\Documents\Blackmagic Design
2021-01-13 14:36 - 2021-01-13 14:36 - 000000000 ____D C:\ProgramData\Documents\Blackmagic Design
2021-01-13 14:35 - 2021-01-13 14:35 - 000000000 ____D C:\Users\vondr\AppData\Roaming\Blackmagic Design
2021-01-13 14:30 - 2021-01-13 15:53 - 1479669340 _____ C:\Users\vondr\Downloads\Seherezada a gentleman 1 (1990).avi
2021-01-12 22:16 - 2021-01-12 22:19 - 229196490 _____ C:\Users\vondr\Downloads\Požehnej nám, Pane.mp4
2021-01-12 18:41 - 2021-01-12 18:41 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-01-12 17:41 - 2021-01-12 18:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-12 17:41 - 2021-01-12 18:41 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-12 17:41 - 2021-01-12 18:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-11 21:56 - 2021-01-11 21:56 - 000012629 _____ C:\ProgramData\mijprvzl.ern
2021-01-11 21:56 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\AgentInformer
2021-01-11 21:43 - 2021-01-11 21:43 - 000000000 ____D C:\ProgramData\Movavi
2021-01-11 21:04 - 2021-01-11 21:44 - 000000000 ____D C:\Users\vondr\AppData\Roaming\MOVAVI
2021-01-11 21:02 - 2021-01-11 21:02 - 000000000 ___HD C:\Users\vondr\AppData\Local\Downloaded Installations
2021-01-11 20:58 - 2021-01-11 20:58 - 000000000 ___HD C:\Users\vondr\AppData\Local\cache
2021-01-11 20:53 - 2021-01-11 21:56 - 000000000 ___HD C:\Users\vondr\AppData\Local\Movavi
2021-01-11 20:53 - 2021-01-11 20:53 - 000012763 _____ C:\ProgramData\juutbubq.wrj
2021-01-11 20:53 - 2021-01-11 20:53 - 000000016 _____ C:\ProgramData\mntemp
2021-01-11 20:53 - 2021-01-11 20:53 - 000000000 ___HD C:\Users\vondr\AppData\Local\VideoEditorPlus
2021-01-10 15:31 - 2021-01-10 16:39 - 000000000 ____D C:\Users\vondr\Downloads\Talentové zkoušky 12. 1. Reg. č. 37
2021-01-08 22:47 - 2021-01-08 22:47 - 001188732 _____ C:\Users\vondr\Downloads\Ze zrna chléb.ppsx
2021-01-07 13:22 - 2021-01-07 13:22 - 000085189 _____ C:\Users\vondr\Downloads\REKTION DER VERBEN (2) (1).pdf
2021-01-06 18:05 - 2021-01-06 18:05 - 010458055 _____ C:\Users\vondr\Downloads\Ze zrna chléb 3. třída.pdf
2021-01-06 18:02 - 2021-01-09 09:12 - 001188788 _____ C:\Users\vondr\Downloads\Ze zrna chléb.pptx
2021-01-06 18:02 - 2021-01-06 18:02 - 008905203 _____ C:\Users\vondr\Downloads\Ze zrna chléb přílohy.pdf
2021-01-06 18:02 - 2021-01-06 18:02 - 007323433 _____ C:\Users\vondr\Downloads\Ze zrna chléb 4. třída.pdf
2021-01-03 20:38 - 2021-01-03 20:38 - 000040306 _____ C:\Users\vondr\Downloads\Terminologie- prezentace.pptx
2021-01-03 20:03 - 2021-01-03 20:03 - 000233607 _____ C:\Users\vondr\Downloads\Specialni_pedagogika (1).pdf
2021-01-01 13:14 - 2021-01-01 13:17 - 875328632 _____ C:\Users\vondr\Downloads\Photos(31).zip
2021-01-01 13:12 - 2021-01-01 13:14 - 566918143 _____ C:\Users\vondr\Downloads\Photos(30).zip
2021-01-01 13:09 - 2021-01-01 13:09 - 075316402 _____ C:\Users\vondr\Downloads\Photos(29).zip
2021-01-01 13:03 - 2021-01-01 13:05 - 709800516 _____ C:\Users\vondr\Downloads\Photos(28).zip
2021-01-01 12:57 - 2021-01-01 12:58 - 231462310 _____ C:\Users\vondr\Downloads\Photos(27).zip
2021-01-01 12:52 - 2021-01-01 12:53 - 272690407 _____ C:\Users\vondr\Downloads\Photos(26).zip
2021-01-01 12:49 - 2021-01-01 12:50 - 046862024 _____ C:\Users\vondr\Downloads\Photos(25).zip
2021-01-01 12:43 - 2021-01-01 12:43 - 080102189 _____ C:\Users\vondr\Downloads\Photos(24).zip
2021-01-01 12:36 - 2021-01-01 12:36 - 042234807 _____ C:\Users\vondr\Downloads\Photos(23).zip
2021-01-01 12:35 - 2021-01-01 12:35 - 002547399 _____ C:\Users\vondr\Downloads\Photos(22).zip
2021-01-01 12:34 - 2021-01-01 12:35 - 059813674 _____ C:\Users\vondr\Downloads\Photos(21).zip
2021-01-01 12:33 - 2021-01-01 12:34 - 145034378 _____ C:\Users\vondr\Downloads\Photos(20).zip
2021-01-01 12:23 - 2021-01-01 12:25 - 303354575 _____ C:\Users\vondr\Downloads\Photos(19).zip
2021-01-01 12:20 - 2021-01-01 12:22 - 402008563 _____ C:\Users\vondr\Downloads\Photos(18).zip
2021-01-01 12:17 - 2021-01-01 12:21 - 930500063 _____ C:\Users\vondr\Downloads\Photos(17).zip
2021-01-01 12:13 - 2021-01-01 12:15 - 586408013 _____ C:\Users\vondr\Downloads\Photos(16).zip
2021-01-01 12:03 - 2021-01-01 12:05 - 730303733 _____ C:\Users\vondr\Downloads\Photos(15).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 008095447 _____ C:\Users\vondr\Downloads\Photos(14).zip
2021-01-01 11:58 - 2021-01-01 11:58 - 006039894 _____ C:\Users\vondr\Downloads\Photos(13).zip
2021-01-01 11:55 - 2021-01-01 11:55 - 028306500 _____ C:\Users\vondr\Downloads\Photos(12).zip
2021-01-01 11:54 - 2021-01-01 11:54 - 021209297 _____ C:\Users\vondr\Downloads\Photos(11).zip
2021-01-01 11:53 - 2021-01-01 11:54 - 071520486 _____ C:\Users\vondr\Downloads\Photos(10).zip
2021-01-01 11:48 - 2021-01-01 11:51 - 714091045 _____ C:\Users\vondr\Downloads\Photos(9).zip
2021-01-01 11:45 - 2021-01-01 11:45 - 106831176 _____ C:\Users\vondr\Downloads\Photos(8).zip
2021-01-01 11:28 - 2021-01-01 11:29 - 464833017 _____ C:\Users\vondr\Downloads\Photos(7).zip
2021-01-01 10:51 - 2021-01-01 10:55 - 532913154 _____ C:\Users\vondr\Downloads\Photos(6).zip
2021-01-01 10:50 - 2021-01-01 10:54 - 548419463 _____ C:\Users\vondr\Downloads\Photos(5).zip
2021-01-01 10:49 - 2021-01-01 10:56 - 777901906 _____ C:\Users\vondr\Downloads\Photos(4).zip
2021-01-01 10:18 - 2021-01-01 10:22 - 1150225471 _____ C:\Users\vondr\Downloads\Photos(3).zip
2021-01-01 10:14 - 2021-01-01 10:15 - 122609245 _____ C:\Users\vondr\Downloads\Photos(2).zip
2021-01-01 10:13 - 2021-01-01 10:13 - 037763002 _____ C:\Users\vondr\Downloads\Photos.zip
2021-01-01 10:12 - 2021-01-01 10:12 - 020014540 _____ C:\Users\vondr\Downloads\Photos(1).zip
2020-12-30 16:42 - 2020-12-30 18:08 - 861230662 _____ C:\Users\vondr\Downloads\Zorro Tajemná tvář (1998) CZ-dabing.avi
2020-12-28 22:21 - 2020-12-28 22:21 - 000230832 _____ C:\Windows\system32\spacedeskSrvLibConnectorUsb.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-23 12:00 - 2019-10-26 19:51 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-23 12:00 - 2019-07-18 13:46 - 000718198 _____ C:\Windows\system32\perfh005.dat
2021-01-23 12:00 - 2019-07-18 13:46 - 000145242 _____ C:\Windows\system32\perfc005.dat
2021-01-23 12:00 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2021-01-23 11:57 - 2020-03-22 08:07 - 000000000 ___HD C:\Users\vondr\AppData\Local\CrashDumps
2021-01-23 11:55 - 2020-03-20 15:01 - 000000000 ____D C:\Program Files\CCleaner
2021-01-23 11:53 - 2020-03-21 05:35 - 000000000 ___RD C:\Users\vondr\OneDrive
2021-01-23 11:53 - 2020-03-21 05:33 - 000000000 __SHD C:\Users\vondr\IntelGraphicsProfiles
2021-01-23 11:53 - 2020-03-20 14:37 - 000000000 ___HD C:\Users\vondr\AppData\LocalLow\Mozilla
2021-01-23 11:53 - 2019-10-26 19:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-23 11:53 - 2019-10-26 19:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-01-23 11:53 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-23 11:37 - 2020-03-21 05:21 - 000000000 ____D C:\Users\vondr
2021-01-23 11:00 - 2020-03-21 10:23 - 000000000 ____D C:\Users\vondr\Documents\MyHeritage
2021-01-23 09:36 - 2020-03-21 05:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\Packages
2021-01-23 09:14 - 2020-03-20 18:42 - 000000000 ___HD C:\Users\vondr\AppData\Local\Deployment
2021-01-23 09:11 - 2020-03-21 05:21 - 000000000 ___HD C:\Users\vondr\AppData\Local\Host App Service
2021-01-23 09:08 - 2020-06-14 20:46 - 000000916 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-23 09:08 - 2020-06-14 20:46 - 000000912 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-22 21:16 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2021-01-22 18:31 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-22 15:01 - 2020-06-14 20:46 - 000003976 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 15:01 - 2020-06-14 20:46 - 000003744 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-22 15:01 - 2020-06-09 18:13 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-21 18:54 - 2020-03-20 16:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-20 23:00 - 2020-09-30 09:07 - 000002296 _____ C:\Windows\system32\Tasks\Power Button
2021-01-20 23:00 - 2020-09-30 09:07 - 000002222 _____ C:\Windows\system32\Tasks\Quick Access
2021-01-20 23:00 - 2020-06-09 18:13 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-20 23:00 - 2020-06-09 18:13 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-20 23:00 - 2020-05-25 15:32 - 000002728 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-01-20 23:00 - 2020-05-05 21:09 - 000002596 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTaskCore
2021-01-20 23:00 - 2020-03-22 09:31 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-01-20 23:00 - 2020-03-22 07:36 - 000003482 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-01-20 23:00 - 2020-03-21 05:13 - 000003692 _____ C:\Windows\system32\Tasks\AcerCMUpdateTask2.1.16258
2021-01-20 23:00 - 2020-03-20 15:01 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-01-20 23:00 - 2020-03-20 15:01 - 000002236 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-01-20 23:00 - 2020-03-20 14:54 - 000003400 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-20 23:00 - 2020-03-20 14:54 - 000003176 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-20 23:00 - 2020-03-20 14:52 - 000003250 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2021-01-20 23:00 - 2019-10-26 20:28 - 000002712 _____ C:\Windows\system32\Tasks\UEIPInvitation
2021-01-20 23:00 - 2019-10-26 20:23 - 000004302 _____ C:\Windows\system32\Tasks\Software Update Application
2021-01-20 23:00 - 2019-10-26 20:23 - 000003852 _____ C:\Windows\system32\Tasks\ACCAgent
2021-01-20 23:00 - 2019-10-26 20:23 - 000002730 _____ C:\Windows\system32\Tasks\ACC
2021-01-20 23:00 - 2019-10-26 20:23 - 000002408 _____ C:\Windows\system32\Tasks\App Explorer
2021-01-20 23:00 - 2019-10-26 20:23 - 000002328 _____ C:\Windows\system32\Tasks\ACCBackgroundApplication
2021-01-20 17:12 - 2020-10-14 13:40 - 000000000 ____D C:\Users\vondr\Desktop\Kubova složka
2021-01-20 15:07 - 2020-03-28 08:23 - 000000000 ____D C:\Users\vondr\AppData\Roaming\vlc
2021-01-20 14:56 - 2020-05-08 07:25 - 000000000 ____D C:\Users\vondr\Desktop\Lydinka
2021-01-20 13:28 - 2020-06-14 20:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-16 23:10 - 2020-10-23 18:12 - 000000000 ___RD C:\Users\vondr\Documents\MEGAsync
2021-01-16 23:09 - 2020-03-22 14:18 - 000000000 ____D C:\Users\vondr\Documents\Učitelství 1. stupeň ZŠ
2021-01-16 10:47 - 2020-04-28 20:55 - 000000000 ___HD C:\Users\vondr\AppData\Local\SquirrelTemp
2021-01-15 21:13 - 2020-10-18 14:34 - 000000000 ____D C:\Users\vondr\Desktop\Elen
2021-01-15 14:50 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2021-01-15 09:56 - 2020-10-17 05:51 - 000002379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2021-01-14 11:34 - 2020-03-20 14:51 - 000000000 ____D C:\ProgramData\AVG
2021-01-14 11:24 - 2020-03-21 05:33 - 000000000 __RHD C:\Users\vondr\3D Objects
2021-01-14 11:24 - 2019-10-26 19:43 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-13 22:17 - 2019-10-26 19:40 - 000585688 _____ C:\Windows\system32\FNTCACHE.DAT
2021-01-13 22:17 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2021-01-13 22:17 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\system32\config\BBI
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 07:20 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 21:21 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2021-01-13 21:19 - 2020-03-21 07:36 - 000000000 ____D C:\Windows\system32\MRT
2021-01-13 21:17 - 2020-03-21 07:36 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-13 21:11 - 2019-10-26 19:42 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2021-01-13 19:25 - 2020-03-20 15:18 - 000000000 ____D C:\Users\vondr\Desktop\Programy
2021-01-13 19:15 - 2020-03-20 15:11 - 000000000 ___HD C:\Users\vondr\AppData\Local\MEGAsync
2021-01-12 18:41 - 2020-06-06 13:33 - 000000000 ___HD C:\Users\vondr\AppData\Local\ElevatedDiagnostics
2021-01-12 16:50 - 2020-06-26 19:30 - 000000000 ___HD C:\Users\vondr\AppData\Local\D3DSCache
2021-01-12 08:57 - 2020-03-20 14:55 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-12 08:52 - 2020-06-14 20:52 - 000000000 ___RD C:\Users\vondr\Dropbox
2021-01-11 22:37 - 2020-04-09 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-11 20:59 - 2020-03-24 14:38 - 000000806 _____ C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2021-01-11 20:59 - 2020-03-24 14:38 - 000000000 ___HD C:\Users\vondr\AppData\Local\Pinnacle
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2021-01-11 20:59 - 2020-03-24 14:36 - 000000349 _____ C:\ProgramData\Documents\PCLECHAL.INI
2021-01-10 16:26 - 2020-12-08 14:15 - 000001768 _____ C:\Users\vondr\Desktop\DaVinci Resolve Project Server.lnk
2021-01-10 16:26 - 2020-12-08 14:15 - 000001748 _____ C:\Users\vondr\Desktop\Resolve.lnk
2021-01-10 16:26 - 2020-11-01 19:01 - 000001165 _____ C:\Users\vondr\Desktop\MuseScore 3.lnk
2021-01-10 16:26 - 2020-09-05 20:27 - 000002228 _____ C:\Users\vondr\Desktop\Proclaim.lnk
2021-01-10 16:26 - 2020-06-06 07:10 - 000001008 _____ C:\Users\vondr\Desktop\Open Broadcaster Software.lnk
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-01-09 20:09 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Macromed
2021-01-08 12:34 - 2020-12-16 19:37 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2021-01-08 12:34 - 2020-03-20 14:51 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2021-01-05 10:23 - 2020-03-21 05:35 - 000000000 ___HD C:\Users\vondr\AppData\Local\PlaceholderTileLogoFolder
2021-01-05 09:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ServiceState
2021-01-04 11:38 - 2020-06-06 07:10 - 000000000 ____D C:\Users\vondr\AppData\Roaming\OBS
2021-01-02 10:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories ========
2020-03-24 14:38 - 2021-01-11 20:59 - 000000806 _____ () C:\Users\vondr\AppData\Roaming\ACER.MTBF.txt
2020-03-24 14:38 - 2020-03-24 14:49 - 000000678 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManager.log
2020-03-24 14:38 - 2020-03-24 14:47 - 000000647 _____ () C:\Users\vondr\AppData\Roaming\__AvidCloudManagerPrevious.log
2020-05-18 21:12 - 2020-05-18 21:15 - 000000716 _____ () C:\Users\vondr\AppData\Roaming\{E4A5EDDB-14CF-DFF1-5402-0DB91944F0C4}
2020-03-24 14:39 - 2020-06-04 19:42 - 000003584 ____H () C:\Users\vondr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-01-2021
Ran by vondr (23-01-2021 12:04:50)
Running from C:\Users\vondr\Downloads
Windows 10 Home Version 1909 18363.1316 (X64) (2020-03-21 04:13:15)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3501418858-3935017464-633493477-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3501418858-3935017464-633493477-503 - Limited - Disabled)
evraj (S-1-5-21-3501418858-3935017464-633493477-1002 - Limited - Disabled)
Guest (S-1-5-21-3501418858-3935017464-633493477-501 - Limited - Enabled)
vondr (S-1-5-21-3501418858-3935017464-633493477-1001 - Administrator - Enabled) => C:\Users\vondr
WDAGUtilityAccount (S-1-5-21-3501418858-3935017464-633493477-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Security Ultra (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Jumpstart (HKLM-x32\...\{4335EAF1-21F1-43D3-8F6F-D7E481E6959A}) (Version: 3.3.19180.60 - Acer)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
App Explorer (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Host App Service) (Version: 0.273.4.186 - SweetLabs) <==== ATTENTION
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 87.0.7485.90 - Autoři prohlížeče AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1066.0 - AVG Technologies) Hidden
Avidemux VC++ 64bits (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\{958c1728-e7f8-47a4-980a-8dafc359bffe}) (Version: 2.7.5 - Mean)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
calibre (HKLM-x32\...\{13EA2450-6C59-4732-97E5-0BD1D17C8C16}) (Version: 4.12.0 - Kovid Goyal)
calibre 64bit (HKLM\...\{0FD8DB9D-5D78-4919-9413-0940F43334DD}) (Version: 4.23.0 - Kovid Goyal)
Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3019 - Acer Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Corel Update Manager (HKLM-x32\...\{FB8387EF-D663-4152-A13E-6B963AC1052A}) (Version: 2.3 - Corel corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DaVinci Resolve (HKLM\...\{8CD009CC-08AB-4873-BA5C-DC4AEA8BACEB}) (Version: 16.2.7010 - Blackmagic Design)
Dazzle Video Capture DVC100 X64 Driver 1.06 (HKLM-x32\...\{BFF23267-1D19-444E-93E2-E5059BE805EA}) (Version: 1.06.0000 - Pinnacle)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Discord (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated)
Dropbox (HKLM-x32\...\Dropbox) (Version: 113.4.507 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 5.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 5.2.1.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Media Creator Student (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Media Creator Student) (Version: - NOVÁ ŠKOLA, s.r.o.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\Proplus2019Retail - cs-cz) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\Proplus2019Retail - en-us) (Version: 16.0.13530.20376 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.2 - Mozilla)
MuseScore 3 (HKLM\...\{0595F182-4FEF-48B9-B32A-7FB2B58B4D40}) (Version: 3.5.2.311459983 - Werner Schweer and Others)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8580 - MyHeritage.com)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.13530.20376 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Pinnacle Studio 21 (HKLM\...\{41C196DB-9ED2-449E-A056-20E67255BFC8}) (Version: 21.1.0.132 - Corel Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd)
Proclaim (HKLM-x32\...\{1FC10733-55C3-4306-BCE2-FAEAB6234DB9}) (Version: 3.0.32 - Faithlife Corporation)
Quick Access Service (HKLM\...\{AB25551C-74EF-4BAB-9989-891517FCF9FF}) (Version: 3.00.3017 - Acer Incorporated)
SMART Czech Handwriting Resources (HKLM-x32\...\{65A75580-36A0-4490-8181-0967DD6C1464}) (Version: 15.1.10.0 - SMART Technologies ULC)
SMART Gallery Essentials (HKLM-x32\...\{B1BCD573-39C5-48CD-A2A7-F6525BB7072B}) (Version: 2.0.2.0 - SMART Technologies ULC)
SMART Ink (HKLM-x32\...\{431EB801-5D66-409A-B208-AEF76AD7F677}) (Version: 5.6.132.0 - SMART Technologies ULC)
SMART Lesson Activity Toolkit (HKLM-x32\...\{8AD57A09-153E-4F6D-A269-0AD8AC54B82A}) (Version: 2.0.7.0 - SMART Technologies ULC)
SMART Notebook (HKLM-x32\...\{F0215213-10A6-43DB-9BE4-3FD3DB5D8E53}) (Version: 19.1.2790.0 - SMART Technologies ULC)
SMART Ovladače produktů (HKLM-x32\...\{8F02AE90-9219-42E6-AD41-0C0055227B9B}) (Version: 12.15.139.0 - SMART Technologies ULC)
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
User Experience Improvement Program Service (HKLM\...\{E9495FD3-F73D-4D33-A104-047F9E8BE6C7}) (Version: 4.00.3106 - Acer Incorporated)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4 [2020-12-25] (Acer Incorporated)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2020-12-18] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.50.3.0_x86__kgqvnymyfvs32 [2021-01-22] (king.com)
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3019.0_x64__48frkmn4z8aw4 [2020-09-02] (Acer Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-22] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.6.9.0_x86__q4d96b2w5wcc2 [2021-01-15] (Evernote)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2020-12-04] (GoTrustID Inc.)
InspIS SETmobile -> C:\Program Files\WindowsApps\57320732D6B4D.InspISSETmobile_1.10.20098.0_x86__beccaw7yyhy3g [2020-06-06] (Itelligence-cz, a.s.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-26] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-03-22] (LinkedIn)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-15] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.11214.5532.0_x64__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation)
Movie & Audio Studio -> C:\Program Files\WindowsApps\MAGIXSoftwareGmbH.MovieAudioStudio_1.1.4.0_x64__awcgk3qbzve1y [2019-10-26] (MAGIX Software GmbH)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-14] (Netflix, Inc.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2019-10-26] (CYBERLINK COM CORP)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3017.0_x64__48frkmn4z8aw4 [2020-09-30] (Acer Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.9.205.0_x64__dt26b99r8h8gj [2020-04-03] (Realtek Semiconductor Corp)
Simple Mahjong -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleMahjong_6.0.46.0_x64__kx24dqmazqk8j [2020-11-23] (Random Salad Games LLC)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.0.0.0_x64__kx24dqmazqk8j [2020-12-10] (Random Salad Games LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-11] (Spotify AB) [Startup Task]
User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3106.0_x64__48frkmn4z8aw4 [2019-10-26] (Acer Incorporated)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{C1340C88-050F-43F2-90D8-A4737F931936} -> [MEGA] => C:\MEGA [2020-03-20 15:14]
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\vondr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{D7523B04-701A-444C-8BB8-30CAC820E23E} -> [MEGAsync] => C:\Users\vondr\Documents\MEGAsync [2020-10-23 18:12]
CustomCLSID: HKU\S-1-5-21-3501418858-3935017464-633493477-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\vondr\Dropbox [2020-06-14 20:52]
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-05-19] (Free Time) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\vondr\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-17] (Mega Limited -> )
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => pvmjpgx40.dll
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\vondr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media Creator Student\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()
Shortcut: C:\Users\Public\Desktop\Media Creator Student.lnk -> C:\Program Files (x86)\Media Creator Student\mc.bat ()
==================== Loaded Modules (Whitelisted) =============
2020-03-20 18:19 - 2020-03-20 18:19 - 000649360 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCP120.dll
2020-03-20 18:19 - 2020-03-20 18:19 - 000952464 _____ (SMART Technologies ULC -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_smarttech.ms.vc120.crt_e7e76aadd9f46776_1.0.19.0_none_affc467131f8f86a\MSVCR120.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10378__200606
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-3501418858-3935017464-633493477-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\sharepoint.com -> hxxps://sgocz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\acer01.jpg
DNS Servers: 217.170.96.24 - 217.170.96.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "sbsdk-server"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKU\S-1-5-21-3501418858-3935017464-633493477-1001\...\StartupApproved\Run: => "Discord"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{AFA40E3C-3A4B-4D65-8CA6-2F2B538ADC7C}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C2693F67-7F90-47E8-BAC5-D21DDCD29430}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCGui.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{625B6298-3E39-4BEC-A378-34A10B5D7E6B}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{C9FC2339-E561-4842-9402-4D5258E73E35}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\UCService.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{51C9519E-14B3-4F3D-A4B1-0A71D350B899}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{D72A7625-1716-4338-B3B5-95DD8614EB91}] => (Allow) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTSNMPAgent.exe (SMART Technologies ULC -> SMART Technologies)
FirewallRules: [{09D6004D-C58D-490B-92DA-528EFADFE65E}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{542580BC-9B62-4D86-96A9-F3D4A9037CCA}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC)
FirewallRules: [{43EBF8B2-78A5-478F-8737-CD4E37CA9E7A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{787DE9E6-18DE-4520-AC9C-C763A57D9E06}] => (Allow) LPort=2869
FirewallRules: [{48745246-F828-4CCF-9F54-2C2579EBD72E}] => (Allow) LPort=1900
FirewallRules: [{EE2BAC3B-FB30-41F8-8090-77100E129D37}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D6771A49-9327-41B2-A4D0-64947F8B8919}] => (Allow) C:\Users\vondr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0F000823-23F3-43F9-A139-CE3F64959B36}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{26B391DD-70F9-469C-814E-56B10A122B9E}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{AF476B1F-839F-46A0-A1C2-091B1864670F}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{8F9789AB-7DAC-43F0-B841-04CAF38381E2}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{3C588922-5C1D-4EE4-B940-C8C369183531}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{20C929A6-B975-46FB-A382-9158625F9A33}] => (Allow) C:\Program Files\Pinnacle\Studio 21\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [TCP Query User{91B19305-4BCC-4AD6-AB10-CB5D60170EEF}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{7C1324A5-6FAA-43D2-AF0D-DD6C0B0A5196}C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vondr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B928F4C-4ACC-4C04-92B0-186D1440FED9}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{831393B5-BA13-44CE-9606-EFB19A4E36BF}] => (Allow) C:\Program Files\davinci\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{E25C9EDF-66FE-4BA1-865F-82F1837CABBF}] => (Allow) C:\Program Files\davinci\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{30D2C5AB-8965-42D6-A687-AE4AC40BA1C0}] => (Allow) C:\Program Files\davinci\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C234F19C-AF58-4FE5-A281-81D84501DDE7}] => (Allow) C:\Program Files\davinci\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{C7226308-2E81-419B-9F35-935FDC831C1C}] => (Allow) C:\Program Files\davinci\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B44025CC-6B06-43E3-BAB1-6746DE8F8B6D}] => (Allow) C:\Program Files\davinci\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{49FC318C-4341-47A6-92BB-8D630F47434E}] => (Allow) C:\Program Files\davinci\ElementsPanelDaemon.exe => No File
FirewallRules: [{52DC84E4-B8EC-4B01-A719-6251941F5C3D}] => (Allow) C:\Program Files\davinci\OxygenPanelDaemon.exe => No File
FirewallRules: [{2D6BA5AB-6B51-421E-840C-B339012E5546}] => (Allow) C:\Program Files\davinci\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{BECE0FFE-EB35-403A-A8E2-0AF257719E09}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe => No File
FirewallRules: [{FD129A87-620A-43BF-911F-653068019978}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7999DFAB-C0D8-4548-847A-8ABD0D9B60BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{917CE632-2F9F-459F-8421-E82CDE1A019B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E332BB6-CCF1-4EE7-B94B-4F72F702E1EB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{43530F86-3C03-4AC1-AC0E-21104197E8FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{32D0840B-EA7A-4C0F-9CA8-2E0AEC438823}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{80C6F615-431D-4F32-9E08-C56AC6AFF3FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1F87DB70-2A00-4255-9E90-20B4A9FDFFB7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{907BB384-1F31-4BF9-85E7-0309FE0A2DE9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{60569595-7D50-4349-B3C9-214CDDFCBCF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F2CB1F22-4353-4BD8-8123-9B9005E931BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3103ADEF-248D-4235-8303-8A36BDE6BBCE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D740F461-293F-40A7-8466-57B9374A709F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2DBC9A17-6817-44FD-8CD8-298EBD2D11B7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5A92702F-6A10-40DC-B73C-FF31767C0BBC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{91E4FA52-F20F-433F-902B-0B59B1A89E3B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{97D81E44-7E64-4A4C-8A8D-BE4D0A091E53}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{232C1E3C-E03D-4DC7-9955-504E53AC69C4}C:\program files\davinci\fuscript.exe] => (Allow) C:\program files\davinci\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{A412419D-5F4D-426F-B274-3FB19BDAD14F}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, LLC -> AVG Technologies)
FirewallRules: [{B37A68AD-CE85-465D-A121-751962EDF1A5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Restore Points =========================
20-01-2021 16:45:59 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/23/2021 11:57:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2e5c
Čas spuštění chybující aplikace: 0x01d6f1760d9e9def
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: b3a5f487-e96f-4199-ac41-dd399c110882
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/23/2021 11:53:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x261c
Čas spuštění chybující aplikace: 0x01d6f1760289df63
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: a56583ca-a11b-4911-86c2-9c4ef1c0faa0
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration
Error: (01/23/2021 09:38:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x20dc
Čas spuštění chybující aplikace: 0x01d6f16324fd7245
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: fa664e4e-085a-474f-9555-c6770fac6933
Úplný název chybujícího balíčku: Microsoft.People_10.1909.10841.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x
Error: (01/23/2021 09:14:07 AM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (10896,G,0) Pokus o otevření souboru C:\Users\vondr\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).
Error: (01/23/2021 09:09:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x2b04
Čas spuštění chybující aplikace: 0x01d6f15f00e3940d
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 14ae9055-4c5a-45a7-bdef-4ddd8febf5f1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/23/2021 09:08:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x250c
Čas spuštění chybující aplikace: 0x01d6f15ef6027d8b
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 9594b515-6c3c-4ebb-85fd-39a672d67afb
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration
Error: (01/23/2021 08:40:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 10.0.18362.1, časové razítko: 0x533f8404
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.18362.1316, časové razítko: 0xf0e5c379
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000d0c68
ID chybujícího procesu: 0x3574
Čas spuštění chybující aplikace: 0x01d6f15b10213421
Cesta k chybující aplikaci: C:\Windows\system32\backgroundTaskHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\twinapi.appcore.dll
ID zprávy: 8bab9574-687e-489c-99e6-b6a36b43fea5
Úplný název chybujícího balíčku: AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4
ID aplikace související s chybujícím balíčkem: Acer.AcerRegistration
Error: (01/22/2021 04:06:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MEGAsync.exe, verze: 4.3.8.0, časové razítko: 0x5fb449e4
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.8.0, časové razítko: 0x5e82d0d9
Kód výjimky: 0xc0000409
Posun chyby: 0x00021af1
ID chybujícího procesu: 0x445c
Čas spuštění chybující aplikace: 0x01d6f0c722b4ae57
Cesta k chybující aplikaci: C:\Users\vondr\AppData\Local\MEGAsync\MEGAsync.exe
Cesta k chybujícímu modulu: C:\Users\vondr\AppData\Local\MEGAsync\Qt5Core.dll
ID zprávy: 3c6e8e51-a018-462f-92a4-af0d59076bea
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (01/23/2021 11:58:37 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 11:55:04 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 11:53:42 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 11:53:24 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (11:08:22, 23.01.2021) bylo neočekávané.
Error: (01/23/2021 11:53:17 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.
Error: (01/23/2021 09:38:37 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 09:10:02 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/23/2021 09:08:42 AM) (Source: DCOM) (EventID: 10010) (User: ACER)
Description: Server Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-03-21 05:15:53.826
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o načtení bezpečnostních informací a pokusí se o obnovení poslední známé funkční verze.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0
CodeIntegrity:
===================================
Date: 2021-01-23 11:55:28.208
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-01-23 11:55:28.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-01-23 11:55:28.182
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-01-23 11:54:29.838
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.826
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.813
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.802
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-23 11:54:29.789
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Insyde Corp. V1.12 08/23/2019
Motherboard: CML Doc_WC
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 84%
Total physical RAM: 7908.93 MB
Available physical RAM: 1203.04 MB
Total Virtual: 12772.93 MB
Available Virtual: 5729.8 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:952.75 GB) (Free:755.21 GB) NTFS
\\?\Volume{1d5ebf39-7363-46c2-85c5-6d21b232b7ac}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS
\\?\Volume{c3e08722-726c-4ee4-9a79-cd22e2eab3a5}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: